Click here to close now.




















Welcome!

Related Topics: Microservices Expo, Java IoT, Microsoft Cloud, Containers Expo Blog, IoT User Interface, @BigDataExpo

Microservices Expo: Blog Feed Post

API Management Is the Dog

This question of why spurred me to do some deeper thinking on APIs in the larger business context

Eric Knipp’s fantastic post (Don’t let API Management Wag the Dog) on cautioning clients on selecting a strategy prior to jumping in with an API Management vendor was excellent. It seems that many of the popular API management vendors are doing a great job of marketing, so much so that Gartner’s clients are asking about buying the technology set before thinking about why.

This question of why  spurred me to do some deeper thinking on APIs in the larger business context. It’s no mystery that Intel has a complete API Management product and service (we have the marketing leading on-prem and cloud API management offering by any measure), and as such, you can expect some self promotion of APIs coming from Intel and our partners, but I wanted to think a bit more clearly about the business view of APIs in general and that always starts with asking the fundamental question of why.

Why should I expose an API? Any new project costs money. What returns do I expect? Further, there are costs involved in an API program. Aside from technology choice there are a number of human factors, such as hiring the proper developer community managers and new support and service processes to manage and communicate with “finicky” developers. Moreover, if you are pursuing an on-prem program you will have to absorb some changes in internal processes.

Also, given the growth of the space and the realities of competition, it’s likely that my competitors might also have APIs as well. If I’ve lost time to market advantages, how can APIs really help me compete and prevent an API project from being an also-ran? Are APIs a universal good as they are touted by all us vendors?

Of course, there are some very good answers to these questions. In fact, you might hear some vendors tell you just why you need to expose an API. Here are some common answers you will hear. Many are convincing!  All are fallacious in some fatal way.

1. The world is moving from a direct to indirect business model, APIs enable that. (If you don’t jump in on API Management you’ll get left behind!)

2. APIs enable third party developers to innovate for you – you can outsource your innovation. (You outsource everything else, right?)

3. The world is changing too fast for you to plan a product, it’s just too complex, open an API instead, let the crowd innovate for you. (You don’t really know your own customers and world is just movin’ to fast)

4. APIs enable a new revenue channel – you can “charge by the drink.” (If you build it, they will come!)

5. Do you have a website? Of course you do. Do you have an API? Of course you do (Musser’s famous argument, one of my favorites)

6. First  businesses  moved from brick & mortar to web, and now they are moving from web to mobile.  Mobile requires APIs, therefore, you need an API management solution. (Can every business benefit equally from mobile?)

7. When your developer community builds potentially thousands of apps, you can reach consumers in ways you can’t even dream of. (Because you just aren’t that good of dreaming of ways to reach your customers)

So if it ‘ain’t’ these arguments, what would make an organization or Enterprise seriously consider API Management? When is it a truly strategic decision?

As a company goes to market, there are two elements of strategy it needs to consider. The first is a strong offense to attain a competitive market position and the second is the ability to defend the source of this advantage against rivals. If we cast the problem in terms of API management the important question is: Is an API program a source of competitive advantage or is it an isolating mechanism, or is it both, and how does it apply for your business specifically?  This is the important why question that you should be asking.

For an API program to be a source of competitive advantage it needs to allow the organization to increase value offered to customers and partners, resulting in higher customer willingness to pay or allow the organization to reduce costs so it can reduce price to offer more value. Reduced prices increase buyer’s surplus, or bang for their buck, increasing value offered.

For an API program to be an isolating mechanism, it must either help retain customers and prevent them from defecting to rival products and services or it must help prevent imitation. A strong ecosystem alone is a defensive, isolating mechanism.

In other words, if I have a community of developers developing against my APIs, they have invested in learning my method calls and how to parse my data, as well as how to merge my data into something useful, such as a mobile application. It’s not necessary that the mobile application transform my business or become a source of revenue generation. In the case of the isolating mechanism, you are raising the barrier to entry for competitors, not living out some marketing metaphor.

I think that once you can tie your API program to any these factors you can make a great argument for the business value of APIs. This is why in all of our discussions and interactions with customers we try and get to the bottom of the business side first, and then talk about technology, whether it is a 100% on-prem solution, a hybrid solution, or a 100% cloud solution (Again, Intel has all three models, plus others).

Blake

The post API Management is the Dog appeared first on Application Security.

Read the original blog entry...

More Stories By Application Security

This blog references our expert posts on application and web services security.

Latest Stories
For IoT to grow as quickly as analyst firms’ project, a lot is going to fall on developers to quickly bring applications to market. But the lack of a standard development platform threatens to slow growth and make application development more time consuming and costly, much like we’ve seen in the mobile space. In his session at @ThingsExpo, Mike Weiner, Product Manager of the Omega DevCloud with KORE Telematics Inc., discussed the evolving requirements for developers as IoT matures and conducte...
The Software Defined Data Center (SDDC), which enables organizations to seamlessly run in a hybrid cloud model (public + private cloud), is here to stay. IDC estimates that the software-defined networking market will be valued at $3.7 billion by 2016. Security is a key component and benefit of the SDDC, and offers an opportunity to build security 'from the ground up' and weave it into the environment from day one. In his session at 16th Cloud Expo, Reuven Harrison, CTO and Co-Founder of Tufin,...
With SaaS use rampant across organizations, how can IT departments track company data and maintain security? More and more departments are commissioning their own solutions and bypassing IT. A cloud environment is amorphous and powerful, allowing you to set up solutions for all of your user needs: document sharing and collaboration, mobile access, e-mail, even industry-specific applications. In his session at 16th Cloud Expo, Shawn Mills, President and a founder of Green House Data, discussed h...
Mobile, social, Big Data, and cloud have fundamentally changed the way we live. “Anytime, anywhere” access to data and information is no longer a luxury; it’s a requirement, in both our personal and professional lives. For IT organizations, this means pressure has never been greater to deliver meaningful services to the business and customers.
Container technology is sending shock waves through the world of cloud computing. Heralded as the 'next big thing,' containers provide software owners a consistent way to package their software and dependencies while infrastructure operators benefit from a standard way to deploy and run them. Containers present new challenges for tracking usage due to their dynamic nature. They can also be deployed to bare metal, virtual machines and various cloud platforms. How do software owners track the usag...
The Internet of Everything (IoE) brings together people, process, data and things to make networked connections more relevant and valuable than ever before – transforming information into knowledge and knowledge into wisdom. IoE creates new capabilities, richer experiences, and unprecedented opportunities to improve business and government operations, decision making and mission support capabilities.
There are many considerations when moving applications from on-premise to cloud. It is critical to understand the benefits and also challenges of this migration. A successful migration will result in lower Total Cost of Ownership, yet offer the same or higher level of robustness. In his session at 15th Cloud Expo, Michael Meiner, an Engineering Director at Oracle, Corporation, analyzed a range of cloud offerings (IaaS, PaaS, SaaS) and discussed the benefits/challenges of migrating to each offe...
Puppet Labs has announced the next major update to its flagship product: Puppet Enterprise 2015.2. This release includes new features providing DevOps teams with clarity, simplicity and additional management capabilities, including an all-new user interface, an interactive graph for visualizing infrastructure code, a new unified agent and broader infrastructure support.
Chuck Piluso presented a study of cloud adoption trends and the power and flexibility of IBM Power and Pureflex cloud solutions. Prior to Secure Infrastructure and Services, Mr. Piluso founded North American Telecommunication Corporation, a facilities-based Competitive Local Exchange Carrier licensed by the Public Service Commission in 10 states, serving as the company's chairman and president from 1997 to 2000. Between 1990 and 1997, Mr. Piluso served as chairman & founder of International Te...
One of the hottest areas in cloud right now is DRaaS and related offerings. In his session at 16th Cloud Expo, Dale Levesque, Disaster Recovery Product Manager with Windstream's Cloud and Data Center Marketing team, will discuss the benefits of the cloud model, which far outweigh the traditional approach, and how enterprises need to ensure that their needs are properly being met.
SYS-CON Events announced today that MobiDev, a software development company, will exhibit at the 17th International Cloud Expo®, which will take place November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. MobiDev is a software development company with representative offices in Atlanta (US), Sheffield (UK) and Würzburg (Germany); and development centers in Ukraine. Since 2009 it has grown from a small group of passionate engineers and business managers to a full-scale mobi...
Learn how to solve the problem of keeping files in sync between multiple Docker containers. In his session at 16th Cloud Expo, Aaron Brongersma, Senior Infrastructure Engineer at Modulus, discussed using rsync, GlusterFS, EBS and Bit Torrent Sync. He broke down the tools that are needed to help create a seamless user experience. In the end, can we have an environment where we can easily move Docker containers, servers, and volumes without impacting our applications? He shared his results so yo...
Palerra, the cloud security automation company, announced enhanced support for Amazon AWS, allowing IT security and DevOps teams to automate activity and configuration monitoring, anomaly detection, and orchestrated remediation, thereby meeting compliance mandates within complex infrastructure deployments. "Monitoring and threat detection for AWS is a non-trivial task. While Amazon's flexible environment facilitates successful DevOps implementations, it adds another layer, which can become a ...
In a recent research, analyst firm IDC found that the average cost of a critical application failure is $500,000 to $1 million per hour and the average total cost of unplanned application downtime is $1.25 billion to $2.5 billion per year for Fortune 1000 companies. In addition to the findings on the cost of the downtime, the research also highlighted best practices for development, testing, application support, infrastructure, and operations teams.
In their session at 17th Cloud Expo, Hal Schwartz, CEO of Secure Infrastructure & Services (SIAS), and Chuck Paolillo, CTO of Secure Infrastructure & Services (SIAS), provide a study of cloud adoption trends and the power and flexibility of IBM Power and Pureflex cloud solutions. In his role as CEO of Secure Infrastructure & Services (SIAS), Hal Schwartz provides leadership and direction for the company.