SlideShare a Scribd company logo

The Science of APIs in a Mobile World – Security, Control, and Quality

Download as PPTX, PDF
Akana
Akana

Based on the combined SOA Software and API Science solution, this presentation examines the issues inherent in managing and monitoring APIs from both the provider and consumer sides, including getting on top of security, quality, and control. - Learn about managing and monitoring APIs in a mobile world - See how SOA Software with API Science lets you see the full picture of how your APIs are performing - See how you can monitor complex multi-step API transactions

Software
1 of 39
The Science of APIs in a Mobile World – Security, Control, and Quality
Introductions Laura Heritage Director of API Strategy SOA Software In this role, she works with customer to establish API Business strategies and implement API and SOA Platforms. Previously Ms. Heritage served as a Product Line Manager at IBM and was responsible for establishing IBM’s API Management business. Follow Laura on twitter at @heritagelaura
Introductions John Musser CEO API Science Founder of ProgrammableWeb John is an industry expert on APIs, quoted in the Wall Street Journal, New York Times, Forbes, and Wired, and speaking at conferences including SXSW, Dreamforce, and Web 2.0. He also consults on API strategy and trends with clients including Google, Microsoft, and Salesforce Follow John on twitter at @johnmusser John Put Picture here
50 billion connected devices by 2020
APIs Power the Digital World for Both Strategic and Operational Objectives OUTSIDEINSIDE Mobile Innovation Partners Internal
The Enterprise Ecosystems Is Not Contained You need to tap into an extended eco-system of developers It can’t be if you are are to succeed as a digital enterprise
A mobile app accessing your data has been compromised! How do you securely share APIs with an open developer community? Can you selectively revoke access for compromised Apps?
Realizing End-to-End Security Managing the User Experience Securing the App - PII, PHI Enabling Easy Developer Access Securing the Channel Securing the Backend
API Security 1 Authentication & Authorization 2 App Key Validation/ Licensing 3 Message Security 4 Threat Protection 5 Content Filtering 6 Rate Limiting Developers
The API Gateway Protects Your Enterprise Gateway Security Authentication Protection IAM Integration Encryption Mediation Quality of Service Paging/Caching Orchestration Scripting
Analytics ✓ Ensure 99.99% uptime ✓ Proactive Operations ✓ Identify bottleneck ✓ Prevent security breaches
Analytics for your Enterprise Business Analytics • Track product, customer and monetization trends • Identify new opportunities. Operational Analytics • Ensure operation excellence of your infrastructure • Analyze errors and response codes API Analytics • Identity top APIs by usage, monetization, app type etc. • Analyze API Licensing, monetization and fine- tune developer onboarding
The SOA Software Digital Business Platform
Monitoring, Auditing and Alerting Real time monitoring Inspect the request and response Usage Quotas Average response time per App
SLA Monitoring, Alerting and Enforcement Driven By Policies
Realizing End-to-End Quality API Monitoring + API Management
End-to-End Insight Improves Quality • Enables true consumer experience from various location around the world • Visibility into simulated multi-step developer actions such as CRUD sequences. • Visibility to pinpoint and resolve problems before they are an issue Integrated into SOA Software’s Dashboard
External Monitoring ✓ Measure performance ✓ Monitor availability ✓ Proactive alerting ✓ Identify and track trends
Why Monitor Your APIs? Things Can Go Wrong… SSL errors HTTP errors Invalid JSON or XML Authentication errors Content issues Data integrity errorsNetwork connectivity errors Slow call response time Server availability Latency spikes
My Web Server My Web Site
My Web Server My Web Site Monitor
My Web Server My Web Site Monitors
3rd Party APIs My APIsMy Web Server My Mobile Apps My Web Site 3rd Party Apps
3rd Party APIs My APIsMy Web Server My Mobile Apps My Web Site 3rd Party Apps Monitors Monitors Monitors
Past Future Web transactions API transactions Web login testing OAuth testing String validation XML & JSON validation Monitor our site Monitor our API + 3rd party APIs Isolated to our company Shared use of APIs Internal silos DevOps RUM: Real User Monitoring RDM: Real Developer Monitoring How monitoring is changing
Four Fundamentals of API Monitoring • Availability monitoring: is your API down? • Performance monitoring: is your API slow? • Content monitoring: is your API returning what it should? • Transaction monitoring: does the complex stuff work?
Find Issues Before Your Customers Do GET http://api.yourcompany.com/product/142
Find Issues Before Your Customers Do GET http://api.yourcompany.com/product/142
Find Issues Before Your Customers Do
Find Issues Before Your Customers Do
Find Issues Before Your Customers Do
Find Issues Before Your Customers Do
API Science: Advanced API monitoring  Uptime monitoring  Performance monitoring  Data quality checks  Global monitoring locations  User-defined validation rules  Real-time alerts  Secure SSL access  Clean, intuitive UI  Monitor grouping and filtering  Scriptable rules engine  Advanced multi-step monitoring  Fully scriptable API transactions  Multi-user team and enterprise accounts  Secure, role-based access control  Read-only permissions available  Full featured API  Customizable status pages  User-defined alert limit thresholds  3rd party integrations including PagerDuty  Customizable reports
API Management + API Monitoring • Get end-to-end visibility, analytics and monitoring • Combines API consumer + API provider analytics • See a global picture of how your API is performing • Find problems before your API consumers do
Demo 
Questions
API Resources and API University • Resource Center – http://resource.soa.com/ • Follow us on: www.facebook.com/soasoftware www.linkedin.com/company/soasoftware @soasoftwareinc
Authenticate Get record Add record Update record Delete record • Any number of steps • Run JavaScript before/after steps • Modify queries on the fly • Verify return values Multi-step testing
Realizing End-to-End Quality API Monitoring + API Management

Recommended

API Description Languages: Which is the Right One for Me?
API Description Languages: Which is the Right One for Me?API Description Languages: Which is the Right One for Me?
API Description Languages: Which is the Right One for Me?Akana
 
Is it time for a Connector-less Approach to Cloud Integration?
Is it time for a Connector-less Approach to Cloud Integration? Is it time for a Connector-less Approach to Cloud Integration?
Is it time for a Connector-less Approach to Cloud Integration? Akana
 
Platform for Secure Digital Business
Platform for Secure Digital BusinessPlatform for Secure Digital Business
Platform for Secure Digital BusinessAkana
 
Realizing SOA and API Convergence
Realizing SOA and API ConvergenceRealizing SOA and API Convergence
Realizing SOA and API ConvergenceAkana
 
Powering Internal API Communities
Powering Internal API CommunitiesPowering Internal API Communities
Powering Internal API CommunitiesAkana
 
Manage Your Mesh
Manage Your MeshManage Your Mesh
Manage Your MeshAkana
 
Api economy
Api economyApi economy
Api economyMarketing Fiorano
 
API Description Languages
API Description LanguagesAPI Description Languages
API Description LanguagesAkana
 

Recommended

API Description Languages: Which is the Right One for Me?
API Description Languages: Which is the Right One for Me?API Description Languages: Which is the Right One for Me?
API Description Languages: Which is the Right One for Me?Akana
 
Is it time for a Connector-less Approach to Cloud Integration?
Is it time for a Connector-less Approach to Cloud Integration? Is it time for a Connector-less Approach to Cloud Integration?
Is it time for a Connector-less Approach to Cloud Integration? Akana
 
Platform for Secure Digital Business
Platform for Secure Digital BusinessPlatform for Secure Digital Business
Platform for Secure Digital BusinessAkana
 
Realizing SOA and API Convergence
Realizing SOA and API ConvergenceRealizing SOA and API Convergence
Realizing SOA and API ConvergenceAkana
 
Powering Internal API Communities
Powering Internal API CommunitiesPowering Internal API Communities
Powering Internal API CommunitiesAkana
 
Manage Your Mesh
Manage Your MeshManage Your Mesh
Manage Your MeshAkana
 
Api economy
Api economyApi economy
Api economyMarketing Fiorano
 
API Description Languages
API Description LanguagesAPI Description Languages
API Description LanguagesAkana
 
APIs and the Creation of Wealth in the Digital Economy - APIDays Paris 2015 K...
APIs and the Creation of Wealth in the Digital Economy - APIDays Paris 2015 K...APIs and the Creation of Wealth in the Digital Economy - APIDays Paris 2015 K...
APIs and the Creation of Wealth in the Digital Economy - APIDays Paris 2015 K...3scale
 
API Frenzy: API Strategy 101
API Frenzy: API Strategy 101API Frenzy: API Strategy 101
API Frenzy: API Strategy 101Akana
 
If data is the new oil, then interfaces are the new delivery means -- Ignite ...
If data is the new oil, then interfaces are the new delivery means -- Ignite ...If data is the new oil, then interfaces are the new delivery means -- Ignite ...
If data is the new oil, then interfaces are the new delivery means -- Ignite ...3scale
 
Kill the fail whale for your API
Kill the fail whale for your APIKill the fail whale for your API
Kill the fail whale for your API3scale
 
IoT Usando Azure Como Backend
IoT Usando Azure Como BackendIoT Usando Azure Como Backend
IoT Usando Azure Como BackendJorge Maia
 
SnapLogic Live: IoT Integration
SnapLogic Live: IoT IntegrationSnapLogic Live: IoT Integration
SnapLogic Live: IoT IntegrationSnapLogic
 
Pitch
PitchPitch
PitchSoujanya Rachakonda
 
Lamdba micro service using Amazon Api Gateway
Lamdba micro service using Amazon Api GatewayLamdba micro service using Amazon Api Gateway
Lamdba micro service using Amazon Api GatewayMike Becker
 
Fiorano ESB: Integration Solution for Banks
Fiorano ESB: Integration Solution for BanksFiorano ESB: Integration Solution for Banks
Fiorano ESB: Integration Solution for BanksAshraf Imran
 
Module 10 - Session 2 ICTs and environmental observation 20110223
Module 10 - Session 2 ICTs and environmental observation 20110223Module 10 - Session 2 ICTs and environmental observation 20110223
Module 10 - Session 2 ICTs and environmental observation 20110223Richard Labelle
 
Delivering on Personalization with the Power of APIs
Delivering on Personalization with the Power of APIsDelivering on Personalization with the Power of APIs
Delivering on Personalization with the Power of APIsAkana
 
Integrating microservices in the cloud
Integrating microservices in the cloudIntegrating microservices in the cloud
Integrating microservices in the cloudJason Bloomberg
 
Are APIs and SOA Converging?
Are APIs and SOA Converging?Are APIs and SOA Converging?
Are APIs and SOA Converging?Akana
 
DataBearings: A semantic platform for data integration on IoT, Artem Katasonov
DataBearings: A semantic platform for data integration on IoT, Artem KatasonovDataBearings: A semantic platform for data integration on IoT, Artem Katasonov
DataBearings: A semantic platform for data integration on IoT, Artem KatasonovVTT Technical Research Centre of Finland Ltd
 
Best Practices: The Role of API Management
Best Practices: The Role of API ManagementBest Practices: The Role of API Management
Best Practices: The Role of API ManagementAkana
 
IOT Success depends on Integration
IOT Success depends on Integration IOT Success depends on Integration
IOT Success depends on Integration John Mathon
 
Narrative analytics white paper
Narrative analytics white paperNarrative analytics white paper
Narrative analytics white paperEric Espinosa
 
HP Wearables and IoT - Our Story - Christine Hawkins
HP Wearables and IoT - Our Story - Christine HawkinsHP Wearables and IoT - Our Story - Christine Hawkins
HP Wearables and IoT - Our Story - Christine HawkinsWithTheBest
 
A New Breed of Technical Leaders: The 101 to Defining Your API Business Stra...
A New Breed of Technical Leaders: The 101 to Defining Your API Business Stra...A New Breed of Technical Leaders: The 101 to Defining Your API Business Stra...
A New Breed of Technical Leaders: The 101 to Defining Your API Business Stra...Akana
 
The Business Value for Internal APIs in the Enterprise
The Business Value for Internal APIs in the EnterpriseThe Business Value for Internal APIs in the Enterprise
The Business Value for Internal APIs in the EnterpriseAkana
 
Lifecycle Manager and the Lifecycle API
Lifecycle Manager and the Lifecycle APILifecycle Manager and the Lifecycle API
Lifecycle Manager and the Lifecycle APIAkana
 
Enterprise API Adoption Patterns
Enterprise API Adoption PatternsEnterprise API Adoption Patterns
Enterprise API Adoption PatternsAkana
 

More Related Content

Viewers also liked

APIs and the Creation of Wealth in the Digital Economy - APIDays Paris 2015 K...
APIs and the Creation of Wealth in the Digital Economy - APIDays Paris 2015 K...APIs and the Creation of Wealth in the Digital Economy - APIDays Paris 2015 K...
APIs and the Creation of Wealth in the Digital Economy - APIDays Paris 2015 K...3scale
 
API Frenzy: API Strategy 101
API Frenzy: API Strategy 101API Frenzy: API Strategy 101
API Frenzy: API Strategy 101Akana
 
If data is the new oil, then interfaces are the new delivery means -- Ignite ...
If data is the new oil, then interfaces are the new delivery means -- Ignite ...If data is the new oil, then interfaces are the new delivery means -- Ignite ...
If data is the new oil, then interfaces are the new delivery means -- Ignite ...3scale
 
Kill the fail whale for your API
Kill the fail whale for your APIKill the fail whale for your API
Kill the fail whale for your API3scale
 
IoT Usando Azure Como Backend
IoT Usando Azure Como BackendIoT Usando Azure Como Backend
IoT Usando Azure Como BackendJorge Maia
 
SnapLogic Live: IoT Integration
SnapLogic Live: IoT IntegrationSnapLogic Live: IoT Integration
SnapLogic Live: IoT IntegrationSnapLogic
 
Lamdba micro service using Amazon Api Gateway
Lamdba micro service using Amazon Api GatewayLamdba micro service using Amazon Api Gateway
Lamdba micro service using Amazon Api GatewayMike Becker
 
Fiorano ESB: Integration Solution for Banks
Fiorano ESB: Integration Solution for BanksFiorano ESB: Integration Solution for Banks
Fiorano ESB: Integration Solution for BanksAshraf Imran
 
Module 10 - Session 2 ICTs and environmental observation 20110223
Module 10 - Session 2 ICTs and environmental observation 20110223Module 10 - Session 2 ICTs and environmental observation 20110223
Module 10 - Session 2 ICTs and environmental observation 20110223Richard Labelle
 
Delivering on Personalization with the Power of APIs
Delivering on Personalization with the Power of APIsDelivering on Personalization with the Power of APIs
Delivering on Personalization with the Power of APIsAkana
 
Integrating microservices in the cloud
Integrating microservices in the cloudIntegrating microservices in the cloud
Integrating microservices in the cloudJason Bloomberg
 
Are APIs and SOA Converging?
Are APIs and SOA Converging?Are APIs and SOA Converging?
Are APIs and SOA Converging?Akana
 
Best Practices: The Role of API Management
Best Practices: The Role of API ManagementBest Practices: The Role of API Management
Best Practices: The Role of API ManagementAkana
 
IOT Success depends on Integration
IOT Success depends on Integration IOT Success depends on Integration
IOT Success depends on Integration John Mathon
 
Narrative analytics white paper
Narrative analytics white paperNarrative analytics white paper
Narrative analytics white paperEric Espinosa
 
HP Wearables and IoT - Our Story - Christine Hawkins
HP Wearables and IoT - Our Story - Christine HawkinsHP Wearables and IoT - Our Story - Christine Hawkins
HP Wearables and IoT - Our Story - Christine HawkinsWithTheBest
 

Viewers also liked (18)

APIs and the Creation of Wealth in the Digital Economy - APIDays Paris 2015 K...
APIs and the Creation of Wealth in the Digital Economy - APIDays Paris 2015 K...APIs and the Creation of Wealth in the Digital Economy - APIDays Paris 2015 K...
APIs and the Creation of Wealth in the Digital Economy - APIDays Paris 2015 K...
 
API Frenzy: API Strategy 101
API Frenzy: API Strategy 101API Frenzy: API Strategy 101
API Frenzy: API Strategy 101
 
If data is the new oil, then interfaces are the new delivery means -- Ignite ...
If data is the new oil, then interfaces are the new delivery means -- Ignite ...If data is the new oil, then interfaces are the new delivery means -- Ignite ...
If data is the new oil, then interfaces are the new delivery means -- Ignite ...
 
Kill the fail whale for your API
Kill the fail whale for your APIKill the fail whale for your API
Kill the fail whale for your API
 
IoT Usando Azure Como Backend
IoT Usando Azure Como BackendIoT Usando Azure Como Backend
IoT Usando Azure Como Backend
 
SnapLogic Live: IoT Integration
SnapLogic Live: IoT IntegrationSnapLogic Live: IoT Integration
SnapLogic Live: IoT Integration
 
Pitch
PitchPitch
Pitch
 
Lamdba micro service using Amazon Api Gateway
Lamdba micro service using Amazon Api GatewayLamdba micro service using Amazon Api Gateway
Lamdba micro service using Amazon Api Gateway
 
Fiorano ESB: Integration Solution for Banks
Fiorano ESB: Integration Solution for BanksFiorano ESB: Integration Solution for Banks
Fiorano ESB: Integration Solution for Banks
 
Module 10 - Session 2 ICTs and environmental observation 20110223
Module 10 - Session 2 ICTs and environmental observation 20110223Module 10 - Session 2 ICTs and environmental observation 20110223
Module 10 - Session 2 ICTs and environmental observation 20110223
 
Delivering on Personalization with the Power of APIs
Delivering on Personalization with the Power of APIsDelivering on Personalization with the Power of APIs
Delivering on Personalization with the Power of APIs
 
Integrating microservices in the cloud
Integrating microservices in the cloudIntegrating microservices in the cloud
Integrating microservices in the cloud
 
Are APIs and SOA Converging?
Are APIs and SOA Converging?Are APIs and SOA Converging?
Are APIs and SOA Converging?
 
DataBearings: A semantic platform for data integration on IoT, Artem Katasonov
DataBearings: A semantic platform for data integration on IoT, Artem KatasonovDataBearings: A semantic platform for data integration on IoT, Artem Katasonov
DataBearings: A semantic platform for data integration on IoT, Artem Katasonov
 
Best Practices: The Role of API Management
Best Practices: The Role of API ManagementBest Practices: The Role of API Management
Best Practices: The Role of API Management
 
IOT Success depends on Integration
IOT Success depends on Integration IOT Success depends on Integration
IOT Success depends on Integration
 
Narrative analytics white paper
Narrative analytics white paperNarrative analytics white paper
Narrative analytics white paper
 
HP Wearables and IoT - Our Story - Christine Hawkins
HP Wearables and IoT - Our Story - Christine HawkinsHP Wearables and IoT - Our Story - Christine Hawkins
HP Wearables and IoT - Our Story - Christine Hawkins
 

More from Akana

A New Breed of Technical Leaders: The 101 to Defining Your API Business Stra...
A New Breed of Technical Leaders: The 101 to Defining Your API Business Stra...A New Breed of Technical Leaders: The 101 to Defining Your API Business Stra...
A New Breed of Technical Leaders: The 101 to Defining Your API Business Stra...Akana
 
The Business Value for Internal APIs in the Enterprise
The Business Value for Internal APIs in the EnterpriseThe Business Value for Internal APIs in the Enterprise
The Business Value for Internal APIs in the EnterpriseAkana
 
Lifecycle Manager and the Lifecycle API
Lifecycle Manager and the Lifecycle APILifecycle Manager and the Lifecycle API
Lifecycle Manager and the Lifecycle APIAkana
 
Enterprise API Adoption Patterns
Enterprise API Adoption PatternsEnterprise API Adoption Patterns
Enterprise API Adoption PatternsAkana
 
Intermediary for Microsoft: Product Overview and Demo
Intermediary for Microsoft: Product Overview and DemoIntermediary for Microsoft: Product Overview and Demo
Intermediary for Microsoft: Product Overview and DemoAkana
 
API Security: Securing Digital Channels and Mobile Apps Against Hacks
API Security: Securing Digital Channels and Mobile Apps Against HacksAPI Security: Securing Digital Channels and Mobile Apps Against Hacks
API Security: Securing Digital Channels and Mobile Apps Against HacksAkana
 
Driving Business Partner Adoption with APIs
Driving Business Partner Adoption with APIsDriving Business Partner Adoption with APIs
Driving Business Partner Adoption with APIsAkana
 
Jumping Ahead with Enterprise APIs
Jumping Ahead with Enterprise APIsJumping Ahead with Enterprise APIs
Jumping Ahead with Enterprise APIsAkana
 
API and SOA: Two Sides of the Same Coin?
API and SOA: Two Sides of the Same Coin?API and SOA: Two Sides of the Same Coin?
API and SOA: Two Sides of the Same Coin?Akana
 
The Datacenter API
The Datacenter APIThe Datacenter API
The Datacenter APIAkana
 
Turbo Charge DataPower to Reach Your SOA Goals
Turbo Charge DataPower to Reach Your SOA Goals Turbo Charge DataPower to Reach Your SOA Goals
Turbo Charge DataPower to Reach Your SOA Goals Akana
 
The API Economy is Here: Facebook, Twitter, Netflix and Your IT Enterprise
The API Economy is Here: Facebook, Twitter, Netflix and Your IT EnterpriseThe API Economy is Here: Facebook, Twitter, Netflix and Your IT Enterprise
The API Economy is Here: Facebook, Twitter, Netflix and Your IT EnterpriseAkana
 
Using APIs
Using APIsUsing APIs
Using APIsAkana
 
Using APIs for better Business Partnerships
Using APIs for better Business PartnershipsUsing APIs for better Business Partnerships
Using APIs for better Business PartnershipsAkana
 
API Security: Does My Business Need OAuth?
API Security: Does My Business Need OAuth?API Security: Does My Business Need OAuth?
API Security: Does My Business Need OAuth?Akana
 
API Management - A Transformation
API Management - A TransformationAPI Management - A Transformation
API Management - A TransformationAkana
 
A Peek Into The Future of Mobile-Enabled Health Care
A Peek Into The Future of Mobile-Enabled Health CareA Peek Into The Future of Mobile-Enabled Health Care
A Peek Into The Future of Mobile-Enabled Health CareAkana
 
Unified Security for Mobile, APIs and the Web
Unified Security for Mobile, APIs and the WebUnified Security for Mobile, APIs and the Web
Unified Security for Mobile, APIs and the WebAkana
 
API Frenzy: The Implications and Planning for a Successful API Strategy
API Frenzy: The Implications and Planning for a Successful API StrategyAPI Frenzy: The Implications and Planning for a Successful API Strategy
API Frenzy: The Implications and Planning for a Successful API StrategyAkana
 

More from Akana (19)

A New Breed of Technical Leaders: The 101 to Defining Your API Business Stra...
A New Breed of Technical Leaders: The 101 to Defining Your API Business Stra...A New Breed of Technical Leaders: The 101 to Defining Your API Business Stra...
A New Breed of Technical Leaders: The 101 to Defining Your API Business Stra...
 
The Business Value for Internal APIs in the Enterprise
The Business Value for Internal APIs in the EnterpriseThe Business Value for Internal APIs in the Enterprise
The Business Value for Internal APIs in the Enterprise
 
Lifecycle Manager and the Lifecycle API
Lifecycle Manager and the Lifecycle APILifecycle Manager and the Lifecycle API
Lifecycle Manager and the Lifecycle API
 
Enterprise API Adoption Patterns
Enterprise API Adoption PatternsEnterprise API Adoption Patterns
Enterprise API Adoption Patterns
 
Intermediary for Microsoft: Product Overview and Demo
Intermediary for Microsoft: Product Overview and DemoIntermediary for Microsoft: Product Overview and Demo
Intermediary for Microsoft: Product Overview and Demo
 
API Security: Securing Digital Channels and Mobile Apps Against Hacks
API Security: Securing Digital Channels and Mobile Apps Against HacksAPI Security: Securing Digital Channels and Mobile Apps Against Hacks
API Security: Securing Digital Channels and Mobile Apps Against Hacks
 
Driving Business Partner Adoption with APIs
Driving Business Partner Adoption with APIsDriving Business Partner Adoption with APIs
Driving Business Partner Adoption with APIs
 
Jumping Ahead with Enterprise APIs
Jumping Ahead with Enterprise APIsJumping Ahead with Enterprise APIs
Jumping Ahead with Enterprise APIs
 
API and SOA: Two Sides of the Same Coin?
API and SOA: Two Sides of the Same Coin?API and SOA: Two Sides of the Same Coin?
API and SOA: Two Sides of the Same Coin?
 
The Datacenter API
The Datacenter APIThe Datacenter API
The Datacenter API
 
Turbo Charge DataPower to Reach Your SOA Goals
Turbo Charge DataPower to Reach Your SOA Goals Turbo Charge DataPower to Reach Your SOA Goals
Turbo Charge DataPower to Reach Your SOA Goals
 
The API Economy is Here: Facebook, Twitter, Netflix and Your IT Enterprise
The API Economy is Here: Facebook, Twitter, Netflix and Your IT EnterpriseThe API Economy is Here: Facebook, Twitter, Netflix and Your IT Enterprise
The API Economy is Here: Facebook, Twitter, Netflix and Your IT Enterprise
 
Using APIs
Using APIsUsing APIs
Using APIs
 
Using APIs for better Business Partnerships
Using APIs for better Business PartnershipsUsing APIs for better Business Partnerships
Using APIs for better Business Partnerships
 
API Security: Does My Business Need OAuth?
API Security: Does My Business Need OAuth?API Security: Does My Business Need OAuth?
API Security: Does My Business Need OAuth?
 
API Management - A Transformation
API Management - A TransformationAPI Management - A Transformation
API Management - A Transformation
 
A Peek Into The Future of Mobile-Enabled Health Care
A Peek Into The Future of Mobile-Enabled Health CareA Peek Into The Future of Mobile-Enabled Health Care
A Peek Into The Future of Mobile-Enabled Health Care
 
Unified Security for Mobile, APIs and the Web
Unified Security for Mobile, APIs and the WebUnified Security for Mobile, APIs and the Web
Unified Security for Mobile, APIs and the Web
 
API Frenzy: The Implications and Planning for a Successful API Strategy
API Frenzy: The Implications and Planning for a Successful API StrategyAPI Frenzy: The Implications and Planning for a Successful API Strategy
API Frenzy: The Implications and Planning for a Successful API Strategy
 

Recently uploaded

Shapes for Sharing between Graph Data Spaces - and Epistemic Querying of RDF-...
Shapes for Sharing between Graph Data Spaces - and Epistemic Querying of RDF-...Shapes for Sharing between Graph Data Spaces - and Epistemic Querying of RDF-...
Shapes for Sharing between Graph Data Spaces - and Epistemic Querying of RDF-...Steffen Staab
 
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️Delhi Call girls
 
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...ICS
 
Diamond Application Development Crafting Solutions with Precision
Diamond Application Development Crafting Solutions with PrecisionDiamond Application Development Crafting Solutions with Precision
Diamond Application Development Crafting Solutions with PrecisionSolGuruz
 
CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️
CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️
CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️anilsa9823
 
Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...
Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...
Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...harshavardhanraghave
 
Right Money Management App For Your Financial Goals
Right Money Management App For Your Financial GoalsRight Money Management App For Your Financial Goals
Right Money Management App For Your Financial GoalsJhone kinadey
 
Hand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptxHand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptxbodapatigopi8531
 
Software Quality Assurance Interview Questions
Software Quality Assurance Interview QuestionsSoftware Quality Assurance Interview Questions
Software Quality Assurance Interview QuestionsArshad QA
 
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsUnveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsAlberto González Trastoy
 
The Ultimate Test Automation Guide_ Best Practices and Tips.pdf
The Ultimate Test Automation Guide_ Best Practices and Tips.pdfThe Ultimate Test Automation Guide_ Best Practices and Tips.pdf
The Ultimate Test Automation Guide_ Best Practices and Tips.pdfkalichargn70th171
 
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...Health
 
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfLearn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfkalichargn70th171
 
CALL ON ➥8923113531 🔝Call Girls Badshah Nagar Lucknow best Female service
CALL ON ➥8923113531 🔝Call Girls Badshah Nagar Lucknow best Female serviceCALL ON ➥8923113531 🔝Call Girls Badshah Nagar Lucknow best Female service
CALL ON ➥8923113531 🔝Call Girls Badshah Nagar Lucknow best Female serviceanilsa9823
 
TECUNIQUE: Success Stories: IT Service provider
TECUNIQUE: Success Stories: IT Service providerTECUNIQUE: Success Stories: IT Service provider
TECUNIQUE: Success Stories: IT Service providermohitmore19
 
5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdf5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdfWave PLM
 
W01_panagenda_Navigating-the-Future-with-The-Hitchhikers-Guide-to-Notes-and-D...
W01_panagenda_Navigating-the-Future-with-The-Hitchhikers-Guide-to-Notes-and-D...W01_panagenda_Navigating-the-Future-with-The-Hitchhikers-Guide-to-Notes-and-D...
W01_panagenda_Navigating-the-Future-with-The-Hitchhikers-Guide-to-Notes-and-D...panagenda
 
HR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comHR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comFatema Valibhai
 
SyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AI
SyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AISyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AI
SyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AIABDERRAOUF MEHENNI
 
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...OnePlan Solutions
 

Recently uploaded (20)

Shapes for Sharing between Graph Data Spaces - and Epistemic Querying of RDF-...
Shapes for Sharing between Graph Data Spaces - and Epistemic Querying of RDF-...Shapes for Sharing between Graph Data Spaces - and Epistemic Querying of RDF-...
Shapes for Sharing between Graph Data Spaces - and Epistemic Querying of RDF-...
 
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
 
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
 
Diamond Application Development Crafting Solutions with Precision
Diamond Application Development Crafting Solutions with PrecisionDiamond Application Development Crafting Solutions with Precision
Diamond Application Development Crafting Solutions with Precision
 
CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️
CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️
CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️
 
Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...
Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...
Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...
 
Right Money Management App For Your Financial Goals
Right Money Management App For Your Financial GoalsRight Money Management App For Your Financial Goals
Right Money Management App For Your Financial Goals
 
Hand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptxHand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptx
 
Software Quality Assurance Interview Questions
Software Quality Assurance Interview QuestionsSoftware Quality Assurance Interview Questions
Software Quality Assurance Interview Questions
 
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsUnveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
 
The Ultimate Test Automation Guide_ Best Practices and Tips.pdf
The Ultimate Test Automation Guide_ Best Practices and Tips.pdfThe Ultimate Test Automation Guide_ Best Practices and Tips.pdf
The Ultimate Test Automation Guide_ Best Practices and Tips.pdf
 
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
 
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfLearn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
 
CALL ON ➥8923113531 🔝Call Girls Badshah Nagar Lucknow best Female service
CALL ON ➥8923113531 🔝Call Girls Badshah Nagar Lucknow best Female serviceCALL ON ➥8923113531 🔝Call Girls Badshah Nagar Lucknow best Female service
CALL ON ➥8923113531 🔝Call Girls Badshah Nagar Lucknow best Female service
 
TECUNIQUE: Success Stories: IT Service provider
TECUNIQUE: Success Stories: IT Service providerTECUNIQUE: Success Stories: IT Service provider
TECUNIQUE: Success Stories: IT Service provider
 
5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdf5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdf
 
W01_panagenda_Navigating-the-Future-with-The-Hitchhikers-Guide-to-Notes-and-D...
W01_panagenda_Navigating-the-Future-with-The-Hitchhikers-Guide-to-Notes-and-D...W01_panagenda_Navigating-the-Future-with-The-Hitchhikers-Guide-to-Notes-and-D...
W01_panagenda_Navigating-the-Future-with-The-Hitchhikers-Guide-to-Notes-and-D...
 
HR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comHR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.com
 
SyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AI
SyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AISyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AI
SyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AI
 
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
 

The Science of APIs in a Mobile World – Security, Control, and Quality

  • 1. The Science of APIs in a Mobile World – Security, Control, and Quality
  • 2. Introductions Laura Heritage Director of API Strategy SOA Software In this role, she works with customer to establish API Business strategies and implement API and SOA Platforms. Previously Ms. Heritage served as a Product Line Manager at IBM and was responsible for establishing IBM’s API Management business. Follow Laura on twitter at @heritagelaura
  • 3. Introductions John Musser CEO API Science Founder of ProgrammableWeb John is an industry expert on APIs, quoted in the Wall Street Journal, New York Times, Forbes, and Wired, and speaking at conferences including SXSW, Dreamforce, and Web 2.0. He also consults on API strategy and trends with clients including Google, Microsoft, and Salesforce Follow John on twitter at @johnmusser John Put Picture here
  • 5. APIs Power the Digital World for Both Strategic and Operational Objectives OUTSIDEINSIDE Mobile Innovation Partners Internal
  • 6. The Enterprise Ecosystems Is Not Contained You need to tap into an extended eco-system of developers It can’t be if you are are to succeed as a digital enterprise
  • 7. A mobile app accessing your data has been compromised! How do you securely share APIs with an open developer community? Can you selectively revoke access for compromised Apps?
  • 8. Realizing End-to-End Security Managing the User Experience Securing the App - PII, PHI Enabling Easy Developer Access Securing the Channel Securing the Backend
  • 9. API Security 1 Authentication & Authorization 2 App Key Validation/ Licensing 3 Message Security 4 Threat Protection 5 Content Filtering 6 Rate Limiting Developers
  • 10. The API Gateway Protects Your Enterprise Gateway Security Authentication Protection IAM Integration Encryption Mediation Quality of Service Paging/Caching Orchestration Scripting
  • 11. Analytics ✓ Ensure 99.99% uptime ✓ Proactive Operations ✓ Identify bottleneck ✓ Prevent security breaches
  • 12. Analytics for your Enterprise Business Analytics • Track product, customer and monetization trends • Identify new opportunities. Operational Analytics • Ensure operation excellence of your infrastructure • Analyze errors and response codes API Analytics • Identity top APIs by usage, monetization, app type etc. • Analyze API Licensing, monetization and fine- tune developer onboarding
  • 13. The SOA Software Digital Business Platform
  • 14. Monitoring, Auditing and Alerting Real time monitoring Inspect the request and response Usage Quotas Average response time per App
  • 15. SLA Monitoring, Alerting and Enforcement Driven By Policies
  • 17. End-to-End Insight Improves Quality • Enables true consumer experience from various location around the world • Visibility into simulated multi-step developer actions such as CRUD sequences. • Visibility to pinpoint and resolve problems before they are an issue Integrated into SOA Software’s Dashboard
  • 18. External Monitoring ✓ Measure performance ✓ Monitor availability ✓ Proactive alerting ✓ Identify and track trends
  • 19. Why Monitor Your APIs? Things Can Go Wrong… SSL errors HTTP errors Invalid JSON or XML Authentication errors Content issues Data integrity errorsNetwork connectivity errors Slow call response time Server availability Latency spikes
  • 20. My Web Server My Web Site
  • 21. My Web Server My Web Site Monitor
  • 22. My Web Server My Web Site Monitors
  • 23. 3rd Party APIs My APIsMy Web Server My Mobile Apps My Web Site 3rd Party Apps
  • 24. 3rd Party APIs My APIsMy Web Server My Mobile Apps My Web Site 3rd Party Apps Monitors Monitors Monitors
  • 25. Past Future Web transactions API transactions Web login testing OAuth testing String validation XML & JSON validation Monitor our site Monitor our API + 3rd party APIs Isolated to our company Shared use of APIs Internal silos DevOps RUM: Real User Monitoring RDM: Real Developer Monitoring How monitoring is changing
  • 26. Four Fundamentals of API Monitoring • Availability monitoring: is your API down? • Performance monitoring: is your API slow? • Content monitoring: is your API returning what it should? • Transaction monitoring: does the complex stuff work?
  • 27. Find Issues Before Your Customers Do GET http://api.yourcompany.com/product/142
  • 28. Find Issues Before Your Customers Do GET http://api.yourcompany.com/product/142
  • 29. Find Issues Before Your Customers Do
  • 30. Find Issues Before Your Customers Do
  • 31. Find Issues Before Your Customers Do
  • 32. Find Issues Before Your Customers Do
  • 33. API Science: Advanced API monitoring  Uptime monitoring  Performance monitoring  Data quality checks  Global monitoring locations  User-defined validation rules  Real-time alerts  Secure SSL access  Clean, intuitive UI  Monitor grouping and filtering  Scriptable rules engine  Advanced multi-step monitoring  Fully scriptable API transactions  Multi-user team and enterprise accounts  Secure, role-based access control  Read-only permissions available  Full featured API  Customizable status pages  User-defined alert limit thresholds  3rd party integrations including PagerDuty  Customizable reports
  • 34. API Management + API Monitoring • Get end-to-end visibility, analytics and monitoring • Combines API consumer + API provider analytics • See a global picture of how your API is performing • Find problems before your API consumers do
  • 37. API Resources and API University • Resource Center – http://resource.soa.com/ • Follow us on: www.facebook.com/soasoftware www.linkedin.com/company/soasoftware @soasoftwareinc
  • 38. Authenticate Get record Add record Update record Delete record • Any number of steps • Run JavaScript before/after steps • Modify queries on the fly • Verify return values Multi-step testing