The importance of API security is growing daily due to the extreme pace of API adoption. Enterprises everywhere are moving workloads to the cloud, transforming applications to cloud native and relying on distributed applications. The result is a proliferation of APIs that expose business logic and potentially sensitive data, making the need for API-centric security a top priority.
Traditional security tools, such as WAF, CDN, Layer 4 firewalls, and SAST simply do not cover API-specific threat vectors. Furthermore they do not evaluate API usage for conformance to API specifications. In many ways, this is driving enterprises to seek purpose-built API security solutions to augment their runtime and their development security.
Who should read this?
Both IT and Security leaders considering API security, this GigaOm report will help you to understand the market and what to consider when evaluating API Security solutions.
GigaOm Radar for API Security
Author of the report, Analyst, Don Macvittie writes, “Our recommendation is to look first at products that offer a broad solution set. The most complete products offer discovery, static analysis, dynamic testing, and protection, while others focus on one or two features and aim to do them really well.”
This GigaOm report is one of a series of documents that helps IT organizations assess competing solutions in the context of well-defined features and criteria.