cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Caute_cautim
Community Champion

API Security and good practices

Hi All

 

An interesting discussion on API Security from ex head of Twistlock and Podcast:

 

https://thenewstack.io/where-is-cloud-native-security-going-in-the-long-run/

 

Regards

 

Caute_Cautim

2 Replies
AppDefects
Community Champion

Great recommendations. My favorite is "Use an API Gateway". I love it when developers tell me that the gateway is a security boundary control, but they have no idea what controls if any are turned on or off. Sadly, gateway appliances are often a white elephant that does not have enough resources to properly manage and govern enterprise APIs.

Caute_cautim
Community Champion

@AppDefectsBut look at the definition of an API Gateway for instance:

https://www.redhat.com/en/topics/api/what-does-an-api-gateway-do

 

It's a blooming reverse proxy....  

 

Regards

 

Caute_cautim