From Batter to Cake: Bake your Own Security Model in API Management

  IJCTT-book-cover
 
         
 
© 2020 by IJCTT Journal
Volume-68 Issue-10
Year of Publication : 2020
Authors : Bharathan Kasthuri Rengan
DOI :  10.14445/22312803/IJCTT-V68I10P103

How to Cite?

Bharathan Kasthuri Rengan, "From Batter to Cake: Bake your Own Security Model in API Management," International Journal of Computer Trends and Technology, vol. 68, no. 10, pp. 14-19, 2020. Crossref, 10.14445/22312803/IJCTT-V68I10P103

Abstract
APIs` growth originates from an elementary need for a better way to encapsulate and share information and enable transaction processing between elements in the solution stack. Unfortunately, APIs have often been treated as tactical assets until relatively recently. The idea behind APIs has existed since the beginning of computing; however, in the last 10 years, they have grown significantly in number and sophistication. They are increasingly scalable, monetized, and ubiquitous, with more than 12,000 listed on Web, which manages a global API directory. Defining API security is more than a strategy, as it has to have an immediate impact through the tactical solution. Defining a key security framework extending the API Management platform`s vendor products is key to API adoption success. This whitepaper covers the security framework guidelines, reference implementation (end to end from API development to deployment and governance) for a large enterprise.

Reference
[1] ProgrammableWeb, http://www.programmableweb.com
[2] Gartner Reports of APIM
[3] SAST, DAST Medium post for reference
[4] https://medium.com/e-t/sast-vs-dast-understanding-the-differences-between-them-406c21d95c79
[5] http://www.internationaljournalssrg.org/ssrg-journals.html
[6] Basic Grant type OAuth reference

Keywords
API Security, Custom Security, API Management, API Governance, API Gateway