Senior Engineering Manager Cybersecurity at a computer software company with 1,001-5,000 employees
Real User
Top 5
2024-12-13T09:10:00Z
Dec 13, 2024
The challenge I found was with contextualization and how analytics are generated. Reports were sent in a raw format without proper analytics. There was no mechanism to identify which APIs will always have PII information, such as those with PCI data. Tuning to skip known APIs wasn't available.
It would be beneficial to use machine learning and API throttling together to identify how the APIs are called and whether it's coming from the right person or the wrong person. Akamai is developing that type of feature called URL protection, which is a mixture of API throttling and machine learning. Before blocking everything, this feature would check and first block requests coming from a hosting provider with a bad reputation.
API Security is crucial in protecting the integrity of online systems. It ensures APIs are safeguarded from malicious attacks and data breaches, which can significantly impact businesses. Organizations must adopt robust security strategies to maintain trust and protect their digital assets.API Security strategies focus on verifying the identity of users, ensuring data integrity, and maintaining confidentiality. These systems implement authentication and authorization mechanisms to control...
The challenge I found was with contextualization and how analytics are generated. Reports were sent in a raw format without proper analytics. There was no mechanism to identify which APIs will always have PII information, such as those with PCI data. Tuning to skip known APIs wasn't available.
It would be beneficial to use machine learning and API throttling together to identify how the APIs are called and whether it's coming from the right person or the wrong person. Akamai is developing that type of feature called URL protection, which is a mixture of API throttling and machine learning. Before blocking everything, this feature would check and first block requests coming from a hosting provider with a bad reputation.