API Security for Everyone
See your APIs. Know your APIs. Protect your APIs. Agentless or from in-app.
For everyone, forever
- API Discovery & API Insights
- API DNA & API Risk
- Signature-based detection & blocking filtered by ML
- API vulnerability detection
- Call & error metrics
- Up to 50 API endpoints
- Community support
per API endpoint/month
For Product & DevOps teams
For larger InfoSec & DevSecOps teams
What is Traceable AI’s definition of an endpoint?
APIs allow distributed applications, services, and network components to communicate. API endpoints are important aspects of how APIs interact with distributed applications, as they specify where resources and methods can be accessed remotely. Usually, the access is via a URI to which HTTP requests are posted, and from which the response is thus expected.
Traceable defines a unique API endpoint as a combination of a host or service, API version, access method (sometimes called verbs), and the path to the actual resource. An API Endpoint might be external or internal. Parameters of any type do not constitute a new endpoint.
Is there any grace period if you reach a limit?
Short answer, yes. We will provide notification and updates if you’re approaching an important threshold. But, we know things happen. So, we allocate between 10-20% flex usage to ensure you’re properly protected and can make updates to your plan.
On the Team plan, what happens when I hit my limits (endpoints or edge calls)?
For the Team plan, when you hit your limit of endpoints we will notify you and after a grace period, we will bill you in increments of 25 according to the plan. For edge calls (the unit of measure for Advanced Protection and Analytics) we will revert down to Standard processing after 120% of your purchased call count is reached. (i.e. 1.2M calls if you purchased 1M calls).
On the Enterprise plan, what happens when I hit my limits (endpoints or edge calls)?
For the Enterprise plan, when you hit your limit of endpoints we will notify you and after a grace period, we will bill you in increments of 100 according to the plan. For edge calls (the unit of measure for Advanced Protection and Analytics) we will revert down to Standard processing after 120% of your purchased call count is reached. (i.e. 1.2M calls if you purchased 1M calls).
Is there ever a point when Traceable will stop protecting my APIs?
Yes, if you exceed 200% of what you purchased, we will stop protecting your application.
What capabilities do I get with Advanced Protection and Analytics?
Advanced Protection and Analytics is the name of the data processing setting that sends all trace data to our cloud servers for our AI engine to learn and derive insights about your apps and environment. Advanced Protection and Analytics brings even greater security and protection to your APIs. The usage unit of ACP is measured in edge calls and purchased in MEC (millions of edge calls).
ACP enables the following capabilities: Full payload content (request & response), Trace Explorer (deeper visibility), Sensitive data auto-detection, User behavior anomaly detection, and detection and blocking of advanced API attacks (eg. BOLA).