API Security

Organizations are developing and deploying distributed services across the hybrid cloud and are facing four major issues which we will be addressing in this two-part series. Bridging traditional and cloud-native API services with an identity-centric security and request routingStandardized approach for authorization and sensitive privacy data security in cloud-first organizationsMeeting compliance standards for authorization and...

Cloudentity provides a robust set of tools to manage Identity and API security, or the complete chain from Authentication with our CIAM platform and Authorization with our API security enforcement gateways, sidecars and other tools. But even when we think of Authentication as Identity and Authorization as Enforcement, there’s still confusion about where AuthN leaves...

Abstract: This white paper examines the OWASP API Security Top 10 list providing analysis and recommendations for enterprises, including how a context-aware security model can protect you against these vulnerabilities.  About the OWASP and the Top 10 Web Application Security Risks  Open Web Application Security Project (OWASP) is a non-profit, collaborative organization that publishes awareness...

Open Banking is coming to the rest of the world, and Cloudentity's Identity and Authorization for APIs provides the required mix of tools to automate the process of developers connecting to banking APIs while securing access down the the consumer consent of individual kinds of activities. Here's a walkthrough of how some of these features...

There are many ways to describe the different ways organizations use cloud computing, but “cloud hybrid” is quickly becoming the de facto standard.  In Ofer Schreiber’s article Why leading cyber-executives see massive potential in securing hybrid clouds, he describes cloud-hybrid as “huge sprawl across multiple cloud providers, across multiple cloud accounts that need to be accounted for and properly...