{"id":48756,"date":"2022-09-01T13:57:26","date_gmt":"2022-09-01T17:57:26","guid":{"rendered":"https:\/\/sdtimes.com\/?p=48756"},"modified":"2022-09-06T13:11:43","modified_gmt":"2022-09-06T17:11:43","slug":"security-and-integration-are-key-concerns-for-api-management","status":"publish","type":"post","link":"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/","title":{"rendered":"Security and integration are key concerns for API management"},"content":{"rendered":"<p><span style=\"font-weight: 400;\">The use of APIs has skyrocketed over the years and with organizations using so many different types of APIs on a normal basis, API management has become essential for managing the API attack surface.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Fifty-one percent of respondents said that more than half of their organizations\u2019 development effort is spent on APIs\u2014compared with 40% of respondents in 2020 and 49% last year, according to the 2022 <\/span><a href=\"https:\/\/www.postman.com\/state-of-api\/\"><span style=\"font-weight: 400;\">State of the API Report <\/span><\/a><span style=\"font-weight: 400;\">that surveyed 37,332 developers and API professionals and included aggregated data from the Postman API Platform over approximately four weeks in June and July 2022.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u201cThis year, we found not only are most organizations\u2019 development efforts focused on APIs, but firms that go even further and establish an API-first approach tend to outperform and have a more optimistic business outlook. As organizations navigate an uncertain economy, API-first strategies are becoming the backbone that allows organizations to respond rapidly and seamlessly,\u201d said Abhinav Asthana, co-founder and CEO of Postman.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Despite two-thirds of C-level executives in the study thinking that the economy is turning sour, the vast majority say that API investment is par for the course and will even grow in the next year.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">This vast expansion has led companies to be more API consumers than producers,<\/span> <span style=\"font-weight: 400;\">which has amped up the need for API management to handle many of the tasks surrounding APIs more than ever before.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">If Plato had to decide what the ultimate Form of API management is, it would probably be something along the lines of a process that oversees all APIs in a secure, scalable environment with tools and services that enable developers to build, deploy, secure and manage APIs. However in practice, this has proven to be very difficult.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">So much so that <\/span><a href=\"https:\/\/www.gartner.com\/en\/documents\/4009103\"><span style=\"font-weight: 400;\">Gartner research<\/span><\/a><span style=\"font-weight: 400;\"> estimates that by 2025, less than half of enterprise APIs will be managed, as explosive growth in APIs surpasses the capabilities of API management tools and \u201csecurity controls try to apply old paradigms to new problems.\u201d<\/span><\/p>\n<p><strong>RELATED CONTENT: <a href=\"https:\/\/sdtimes.com\/api\/a-guide-to-api-management-tools-2\/\">A guide to API management tools<\/a><\/strong><\/p>\n<p><b>Security is a major concern for API management<\/b><\/p>\n<p><span style=\"font-weight: 400;\">While on the one hand, API management problems stem from the sprawl of APIs, the other problem is that the platforms that these companies are using were built around the concept of a single gateway, according to Mark O\u2019Neill, a VP analyst and chief of research for software engineering at Gartner.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u201c[With a single gateway], you put an API gateway in your architecture, and you try to funnel your API traffic through that gateway and the problem with that architecture is, when organizations have lots of different teams and applications that are producing and consuming APIs, there&#8217;s no one place to put the gateway,\u201d O\u2019Neill said. \u201cAnd of course, if you&#8217;re using multiple cloud platforms, it&#8217;s even worse. On the one hand, the sprawl, on the other hand, you have many API management products that are outdated in their architecture.\u201d<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In its recent Magic Quadrant, Gartner included API management tools that weren\u2019t tied to a particular gateway &#8211; to the surprise of some people.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u201cThe reason for that is because we now see this multi-gateway world being a reality. We hear people talk about what we would call the \u2018Bring Your Own Gateway\u2019 model, where you already have a gateway, but you need the API lifecycle management that goes with that,\u201d O\u2019Neill added.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">At the same time, some of the traditional API management vendors start to add at least verbal support for other gateways.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">All in all, the two things that are essential to managing API security are strong inventory and real-time discovery to gain visibility into APIs. Although there are some specialized security controls, their API discovery features are limited and don\u2019t have the application logic awareness to create relevant security policies, according to Gartner\u2019s research.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u201cFor APIs, this means that application security teams will deploy perimeter controls with threat inspection capabilities, but will be limited to generic policies and detection signatures,\u201d the research stated.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The API management tools that are so focused on a single gateway actually leave many APIs exposed.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In a lot of scenarios in a typical modern web application stack where one has their front end using React, Angular, or another frontend framework and a lot of APIs in the backend, there usually isn\u2019t a gateway in between, O\u2019Neill explained. Although it would not make sense to put a heavyweight gateway there, those API&#8217;s often are falling victim to attack because people reverse engineer the front end, and they directly access the APIs. In many cases of breaches, affected APIs were not even going through an application firewall.<\/span><\/p>\n<p><b>API management encompasses a wide variety of APIs<\/b><\/p>\n<p><span style=\"font-weight: 400;\">There\u2019s a wide range of APIs that companies use to carry out business tasks on a daily basis: internal APIs to represent coarse- and fine-grained service interfaces, data elements, and private and public APIs. Most organizations are also net consumers of APIs, notably third-party APIs \u2013 while convenient, these can pose security and dependency issues.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">By 2025, Gartner predicts that the percentage of third-party APIs used in applications will average 30%, up from less than 10% in 2021, complicating dependency management.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u201cThe first thing you should do is get visibility of your APIs and understand the attack surface by discovering all your APIs,\u201d O\u2019Neill said.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Then there are really two choices, O\u2019Neill explained. One is to put API gateways everywhere and the API management vendors are adapting to this by adding the functionality where they can have distributed API management. The other approach is to tell developers that they\u2019re free to use the API gateway that comes with the platform that they\u2019re building the APIs on, whether that\u2019s the Amazon API Gateway, Azure API Gateway, etc.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u201cThe developers are happy to use the API management that comes with the platform. But of course, the problem then is, you need to have a way to do the overall management of the APIs and to have a consistent way that you&#8217;re doing security and consistent design for those APIs,\u201d O\u2019Neill explained.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Another challenge with API management is that getting higher-ups on board to invest in API security can be a hard sell for software engineering leaders. Many organizations continue to believe that general-purpose API management tools sufficiently address API security. By the time the security team gets funding and builds an RFP for a product, hundreds of APIs might already be in production, Gartner\u2019s research continued.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The lackadaisical security surrounding APIs are also ironically the strength of APIs that led them to be so popular in the first place according to O\u2019Neill.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u201cSo it&#8217;s like a Greek or Roman tragedy in that APIs are designed to enable quick and easy access to data or access to application functionality. But from a security point of view, of course, those are concerns. If you&#8217;re making it easy to access your data and application functionality, then the worry is you&#8217;re making it easy for malicious entities to access your data and your applications,\u201d O\u2019Neill said.\u00a0<\/span><\/p>\n<p><b>Not just a developers\u2019 game<\/b><\/p>\n<p><span style=\"font-weight: 400;\">The 2022 State of the API Report found that there was an almost even split with developer and non-developer roles as to who worked with APIs in an organization.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Full stack developers were the largest single group at 25% of respondents, down slightly from last year\u2019s 27%. Backend developers showed a bit stronger representation at 19%, compared with 17% in 2021. Meanwhile, the non-developers included CEOs, business analysts, customer success staff, and more.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u201cHistorically, it has been development teams \u2013 either the developers themselves would make the choices regarding API management, or the organization has had an API Center of Excellence, an overall API platform team, or sometimes that would be part of it a digital team that managed the APIs,\u201d O\u2019Neill said.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">More recently, security teams have realized that APIs are a major point of weakness and\u00a0 vulnerability.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u201cThey are telling us that they want to take control of API security. They don&#8217;t trust that either the developers or the API teams, such as API Centers of Excellence, are strong enough on security, to protect APIs,\u201d O\u2019Neill said. \u201cSo we&#8217;ll see this trend where security teams want to educate themselves about API security and take control of that in the same way that they\u2019re protecting web, mobile and other types of applications.\u201d<\/span><\/p>\n<p><b>Integration is key\u00a0<\/b><\/p>\n<p><span style=\"font-weight: 400;\">The biggest factor in companies deciding whether to consume or produce APIs, according to the 2022 State of the API report, is how well they integrate with internal apps and systems.\u00a0 This corresponds to the report\u2019s finding that the number of integrated APIs across enterprise teams has jumped twentyfold.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u201cAs more companies recognize APIs as the building blocks of modern software, API tools and services are evolving to meet their needs. These offerings span the API lifecycle, including design, testing, and security. They also include repositories for source code, API gateways, application performance monitoring, and CI\/CD\u2014all of which must integrate with API platforms to achieve optimal results,\u201d the report stated.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Integrating APIs can be tricky as users must first define inputs and outputs, and may also have to configure the authentication settings. It can also be a barrier to entry for non-technical users.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Demands for API integration in highly regulated industries have had a big impact in driving the usage of APIs, according to O\u2019Neill.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u201cThe most famous instance is around open banking. So it started in the UK and Europe and then in many other parts of the world there have been open banking regulations. Number one, that required banks to have APIs and then of course being banks they\u2019re naturally concerned about security,\u201d O\u2019Neill said. \u201cBut then also, many of the regulations have quite complex requirements for how the access to the APIs is managed. Open banking is all about putting the customer in charge of how their banking information is accessed. That brings in the standards like OAuth and OpenID Connect, so it drives the usage of API management products that support those.\u201d\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In the healthcare industry, the United States requires healthcare payers and providers to have API-based integrations as well. This is another field where there is a big focus around security, particularly related to privacy where APIs are being used to access customer information.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u201cOpen banking and healthcare regulations continue to move around the world and become more mature. And that&#8217;s been a big driver of API management,\u201d O\u2019Neill said.\u00a0<\/span><\/p>\n<!-- AddThis Advanced Settings generic via filter on the_content --><!-- AddThis Share Buttons generic via filter on the_content -->","protected":false},"excerpt":{"rendered":"<p>The use of APIs has skyrocketed over the years and with organizations using so many different types of APIs on a normal basis, API management has become essential for managing the API attack surface.\u00a0 Fifty-one percent of respondents said that more than half of their organizations\u2019 development effort is spent on APIs\u2014compared with 40% of  &hellip; <a class=\"read-more\" href=\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/\">continue reading<\/a><!-- AddThis Advanced Settings generic via filter on get_the_excerpt --><!-- AddThis Share Buttons generic via filter on get_the_excerpt --><\/p>\n","protected":false},"author":871,"featured_media":48784,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"om_disable_all_campaigns":false,"cybocfi_hide_featured_image":"","footnotes":"","_links_to":"","_links_to_target":""},"categories":[2398,1],"tags":[1823,3678,45],"coauthors":[14818],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.8 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Security and integration are key concerns for API management - SD Times<\/title>\n<meta name=\"description\" content=\"The use of APIs has skyrocketed over the years and with organizations using so many different types of APIs on a normal basis, API management has become essential for managing the API attack surface.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Security and integration are key concerns for API management - SD Times\" \/>\n<meta property=\"og:description\" content=\"The use of APIs has skyrocketed over the years and with organizations using so many different types of APIs on a normal basis, API management has become essential for managing the API attack surface.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/\" \/>\n<meta property=\"og:site_name\" content=\"SD Times\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/SDTimesD2\" \/>\n<meta property=\"article:published_time\" content=\"2022-09-01T17:57:26+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-09-06T17:11:43+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/sdtimes.com\/wp-content\/uploads\/2022\/09\/Screen-Shot-2022-09-06-at-1.10.27-PM.png\" \/>\n\t<meta property=\"og:image:width\" content=\"650\" \/>\n\t<meta property=\"og:image:height\" content=\"345\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Jakub Lewkowicz\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@sdtimes\" \/>\n<meta name=\"twitter:site\" content=\"@sdtimes\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Jakub Lewkowicz\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"9 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/\"},\"author\":{\"name\":\"Jakub Lewkowicz\",\"@id\":\"https:\/\/sdtimes.com\/#\/schema\/person\/0ccf41924f263cbae6638a4df0210f42\"},\"headline\":\"Security and integration are key concerns for API management\",\"datePublished\":\"2022-09-01T17:57:26+00:00\",\"dateModified\":\"2022-09-06T17:11:43+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/\"},\"wordCount\":1749,\"publisher\":{\"@id\":\"https:\/\/sdtimes.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/sdtimes.com\/wp-content\/uploads\/2022\/09\/Screen-Shot-2022-09-06-at-1.10.27-PM.png\",\"keywords\":[\"API\",\"integration\",\"security\"],\"articleSection\":[\"Buyers Guide\",\"Latest News\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/\",\"url\":\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/\",\"name\":\"Security and integration are key concerns for API management - SD Times\",\"isPartOf\":{\"@id\":\"https:\/\/sdtimes.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/sdtimes.com\/wp-content\/uploads\/2022\/09\/Screen-Shot-2022-09-06-at-1.10.27-PM.png\",\"datePublished\":\"2022-09-01T17:57:26+00:00\",\"dateModified\":\"2022-09-06T17:11:43+00:00\",\"description\":\"The use of APIs has skyrocketed over the years and with organizations using so many different types of APIs on a normal basis, API management has become essential for managing the API attack surface.\",\"breadcrumb\":{\"@id\":\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/#primaryimage\",\"url\":\"https:\/\/sdtimes.com\/wp-content\/uploads\/2022\/09\/Screen-Shot-2022-09-06-at-1.10.27-PM.png\",\"contentUrl\":\"https:\/\/sdtimes.com\/wp-content\/uploads\/2022\/09\/Screen-Shot-2022-09-06-at-1.10.27-PM.png\",\"width\":650,\"height\":345},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/sdtimes.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Security and integration are key concerns for API management\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/sdtimes.com\/#website\",\"url\":\"https:\/\/sdtimes.com\/\",\"name\":\"SD Times\",\"description\":\"Software Development News\",\"publisher\":{\"@id\":\"https:\/\/sdtimes.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/sdtimes.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/sdtimes.com\/#organization\",\"name\":\"SD Times\",\"url\":\"https:\/\/sdtimes.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/sdtimes.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/sdtimes.com\/wp-content\/uploads\/2014\/05\/deafaultlogo.png\",\"contentUrl\":\"https:\/\/sdtimes.com\/wp-content\/uploads\/2014\/05\/deafaultlogo.png\",\"width\":225,\"height\":90,\"caption\":\"SD Times\"},\"image\":{\"@id\":\"https:\/\/sdtimes.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/SDTimesD2\",\"https:\/\/x.com\/sdtimes\",\"https:\/\/www.linkedin.com\/company\/sdtimes\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/sdtimes.com\/#\/schema\/person\/0ccf41924f263cbae6638a4df0210f42\",\"name\":\"Jakub Lewkowicz\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/sdtimes.com\/#\/schema\/person\/image\/a061823dfc0b893ed859b59dc9554372\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/fec6c7c06cf379ac99029d9c59940dab?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/fec6c7c06cf379ac99029d9c59940dab?s=96&d=mm&r=g\",\"caption\":\"Jakub Lewkowicz\"},\"description\":\"Jakub Lewkowicz is a multimedia journalist who loves all things tech. Polish-born and Long Island-bred, he is an Online and Social Media Editor for SD Times. He is also a Carnegie Hall pianist and music producer.\",\"url\":\"https:\/\/sdtimes.com\/author\/jakub-lewkowicz\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Security and integration are key concerns for API management - SD Times","description":"The use of APIs has skyrocketed over the years and with organizations using so many different types of APIs on a normal basis, API management has become essential for managing the API attack surface.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/","og_locale":"en_US","og_type":"article","og_title":"Security and integration are key concerns for API management - SD Times","og_description":"The use of APIs has skyrocketed over the years and with organizations using so many different types of APIs on a normal basis, API management has become essential for managing the API attack surface.","og_url":"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/","og_site_name":"SD Times","article_publisher":"https:\/\/www.facebook.com\/SDTimesD2","article_published_time":"2022-09-01T17:57:26+00:00","article_modified_time":"2022-09-06T17:11:43+00:00","og_image":[{"width":650,"height":345,"url":"https:\/\/sdtimes.com\/wp-content\/uploads\/2022\/09\/Screen-Shot-2022-09-06-at-1.10.27-PM.png","type":"image\/png"}],"author":"Jakub Lewkowicz","twitter_card":"summary_large_image","twitter_creator":"@sdtimes","twitter_site":"@sdtimes","twitter_misc":{"Written by":"Jakub Lewkowicz","Est. reading time":"9 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/#article","isPartOf":{"@id":"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/"},"author":{"name":"Jakub Lewkowicz","@id":"https:\/\/sdtimes.com\/#\/schema\/person\/0ccf41924f263cbae6638a4df0210f42"},"headline":"Security and integration are key concerns for API management","datePublished":"2022-09-01T17:57:26+00:00","dateModified":"2022-09-06T17:11:43+00:00","mainEntityOfPage":{"@id":"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/"},"wordCount":1749,"publisher":{"@id":"https:\/\/sdtimes.com\/#organization"},"image":{"@id":"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/#primaryimage"},"thumbnailUrl":"https:\/\/sdtimes.com\/wp-content\/uploads\/2022\/09\/Screen-Shot-2022-09-06-at-1.10.27-PM.png","keywords":["API","integration","security"],"articleSection":["Buyers Guide","Latest News"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/","url":"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/","name":"Security and integration are key concerns for API management - SD Times","isPartOf":{"@id":"https:\/\/sdtimes.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/#primaryimage"},"image":{"@id":"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/#primaryimage"},"thumbnailUrl":"https:\/\/sdtimes.com\/wp-content\/uploads\/2022\/09\/Screen-Shot-2022-09-06-at-1.10.27-PM.png","datePublished":"2022-09-01T17:57:26+00:00","dateModified":"2022-09-06T17:11:43+00:00","description":"The use of APIs has skyrocketed over the years and with organizations using so many different types of APIs on a normal basis, API management has become essential for managing the API attack surface.","breadcrumb":{"@id":"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/#primaryimage","url":"https:\/\/sdtimes.com\/wp-content\/uploads\/2022\/09\/Screen-Shot-2022-09-06-at-1.10.27-PM.png","contentUrl":"https:\/\/sdtimes.com\/wp-content\/uploads\/2022\/09\/Screen-Shot-2022-09-06-at-1.10.27-PM.png","width":650,"height":345},{"@type":"BreadcrumbList","@id":"https:\/\/sdtimes.com\/api\/security-and-integration-are-key-concerns-for-api-management\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/sdtimes.com\/"},{"@type":"ListItem","position":2,"name":"Security and integration are key concerns for API management"}]},{"@type":"WebSite","@id":"https:\/\/sdtimes.com\/#website","url":"https:\/\/sdtimes.com\/","name":"SD Times","description":"Software Development News","publisher":{"@id":"https:\/\/sdtimes.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/sdtimes.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/sdtimes.com\/#organization","name":"SD Times","url":"https:\/\/sdtimes.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/sdtimes.com\/#\/schema\/logo\/image\/","url":"https:\/\/sdtimes.com\/wp-content\/uploads\/2014\/05\/deafaultlogo.png","contentUrl":"https:\/\/sdtimes.com\/wp-content\/uploads\/2014\/05\/deafaultlogo.png","width":225,"height":90,"caption":"SD Times"},"image":{"@id":"https:\/\/sdtimes.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/SDTimesD2","https:\/\/x.com\/sdtimes","https:\/\/www.linkedin.com\/company\/sdtimes\/"]},{"@type":"Person","@id":"https:\/\/sdtimes.com\/#\/schema\/person\/0ccf41924f263cbae6638a4df0210f42","name":"Jakub Lewkowicz","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/sdtimes.com\/#\/schema\/person\/image\/a061823dfc0b893ed859b59dc9554372","url":"https:\/\/secure.gravatar.com\/avatar\/fec6c7c06cf379ac99029d9c59940dab?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/fec6c7c06cf379ac99029d9c59940dab?s=96&d=mm&r=g","caption":"Jakub Lewkowicz"},"description":"Jakub Lewkowicz is a multimedia journalist who loves all things tech. Polish-born and Long Island-bred, he is an Online and Social Media Editor for SD Times. He is also a Carnegie Hall pianist and music producer.","url":"https:\/\/sdtimes.com\/author\/jakub-lewkowicz\/"}]}},"_links":{"self":[{"href":"https:\/\/sdtimes.com\/wp-json\/wp\/v2\/posts\/48756"}],"collection":[{"href":"https:\/\/sdtimes.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sdtimes.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sdtimes.com\/wp-json\/wp\/v2\/users\/871"}],"replies":[{"embeddable":true,"href":"https:\/\/sdtimes.com\/wp-json\/wp\/v2\/comments?post=48756"}],"version-history":[{"count":3,"href":"https:\/\/sdtimes.com\/wp-json\/wp\/v2\/posts\/48756\/revisions"}],"predecessor-version":[{"id":48763,"href":"https:\/\/sdtimes.com\/wp-json\/wp\/v2\/posts\/48756\/revisions\/48763"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sdtimes.com\/wp-json\/wp\/v2\/media\/48784"}],"wp:attachment":[{"href":"https:\/\/sdtimes.com\/wp-json\/wp\/v2\/media?parent=48756"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sdtimes.com\/wp-json\/wp\/v2\/categories?post=48756"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sdtimes.com\/wp-json\/wp\/v2\/tags?post=48756"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/sdtimes.com\/wp-json\/wp\/v2\/coauthors?post=48756"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}