How APIs Can Empower Users to Manage Their Digital Footprint
Data protection used to be viewed majorly as an understanding of the legal requirements — something that was appreciated but not deemed very significant for any business. Today, however, that mentality...
View ArticleAPI Misconfigurations Can Easily Expose Sensitive Data
APIs are incredibly powerful. They offer a way for systems to talk with one another, opening a world of collaborative, cross-functional solutions. These systems are also incredibly ubiquitous, with...
View ArticleImplementing Zero Trust to Improve API Security
Application programming interfaces (APIs) are the essential building blocks that transform how organizations drive innovation, modernize their infrastructure, and connect with customers and partners. A...
View ArticleHow to Add SSL/TLS Encryption to APIs
Treblle’s Anatomy of an API 2024 report revealed a disturbing trend. Despite existing for over 30 years, only 45% of API developers use HTTPS to send or receive data. To make matters worse, that’s down...
View ArticleClik here to view.
Securing Cloud-Native Workloads With SPIFFE and SPIRE
When it comes to the modern API landscape, identity is a critical element of machine-to-machine communication. Being able to identify a source and destination machine in a flow allows for trusted and...
View ArticleThe Art of Deception: Luring Hackers With API Honeypots
In API security, a strong offense is… a carefully crafted illusion. We obsess over API firewalls and authorization, but what if we took a more clever approach? We spend so much time building barriers,...
View ArticleClik here to view.
Behind ‘Cloud Native Data Security with OAuth’: Highlights from the Authors
Cloud Native Data Security With OAuth We recently spent over a year writing a consumer-focused book on the big picture of modern application security. O’Reilly has now published the book, Cloud Native...
View ArticleClik here to view.
How APIs Should Respond to Data Sovereignty
Countless country-specific data privacy and handling laws have emerged on the tech scene in recent years. GDPR, CCPA, and others demand strict adherence, complicating operations for...
View Article10+ Data Regulations All API Developers Should Know About
For too long, as soon as they were able to do so, businesses took the following approach to gathering data: ‘Harvest what we can now, and figure out what we’re going to do with it later.’ The concept...
View Article5 Random API Key Generators (And Why You Might Use Them)
API keys are a staple of API development, offering a methodology to identify traffic sources and interactions. Sometimes, however, you need API keys for reasons that aren’t consistent or repeatable —...
View Article