Welcome!

News Feed Item

SOA Software Extends API Security and Threat Protection Capabilities

SOA Software, an API Management and SOA Governance leader, today announced a major new release of its API Gateway with significantly upgraded security and threat protection capabilities to provide a comprehensive, hardened, and integrated API security solution. This release establishes a new standard for an integrated solution that combines security, integration, and mediation capabilities delivered both in the cloud and on-premise.

“Enterprises are rapidly shifting the way they do business by embracing new digital channels and opening their data and applications through APIs, both internally and externally,” said Alistair Farquharson, Chief Technology Officer at SOA Software. “With this new release, customers can securely extend their business processes and data for consumption as APIs by leveraging the API Gateway’s unique ability to mitigate threat risk across platforms, devices, and channels. They can now protect their APIs from sophisticated attacks, hacks and a myriad of other threats. API Security has never been so powerful and comprehensive, and yet easy to enforce.”

SOA Software’s API Gateway provides a comprehensive security and threat protection solution for enterprise APIs. It covers a wide range of use cases, including threats related to identity and access, message encryption, and compliance. The API Gateway streamlines development, management, and operation of APIs; enhancing security and regulatory compliance through authentication, authorization and audit capabilities. It is available in the cloud, on-premise, or as a virtual appliance for ease of installation and configuration.

The latest release of SOA Software’s API Gateway includes:

  • Threat Protection: Protect APIs against unintentional or intentional attacks and abuse including Denial-of-Service, SQL and JavaScript or XPath Query attacks. The API Gateway provides a content firewall that defends against malicious content like viruses, or malformed JSON or XML data structures.
  • Authentication and Authorization: Choose from a wide array of authentication schemes, standards and token types to ensure that only valid users and applications can access APIs. The API Gateway supports integration with leading single-sign-on and Identity and Access management providers
  • Transport and Message Level Security: Ensure the privacy of customers’ data in flight and at rest (a key requirement for PCI compliance). The API Gateway supports SSL & TLS with comprehensive key and certificate generation, distribution and management using built-in PKI services.
  • Advanced Scripting: Make changes easily and quickly without the need to rebuild or redeploy services or applications using common scripting languages, such as JavaScript. Powerful server-side scripting capabilities enable users to define additional customizations.
  • Wide Support of Security Standards: Make integration and security administration seamless. The API Gateway provides extensive support for standards like OAuth, SAML, SHA, LDAP, Kerberos, HMAC, X.509 certificates, WS-Security and SSL client authentication.
  • PCI DSS 2.0 Compliant: Satisfy PCI criteria for a compliant network. SOA Software’s PCI-compliant cloud offers an extensive, secure network coupled with 24/7 technical support to mitigate risks that can compromise sensitive data security.

For more information about SOA Software API Gateway, see www.soa.com/solutions/api-gateway.

About SOA Software

SOA Software is a leading provider of API Management and SOA Governance products that equip business to deliver APIs and SOA together to drive their company to meet its business strategy quickly and effectively. SOA Software’s technology helps businesses to accelerate their digital channels with APIs, drive partner adoption, monetize their assets, and achieve agility and operational excellence across their applications and datacenters. Some of the world’s largest companies including Bank of America, Pfizer, and Verizon use SOA Software products. SOA Software is also recognized as a “Leader” by Gartner in Application Services Governance MQ and as a leader by other analyst firms. For more information on SOA Software’s API Platform, see http://www.soa.com

All product and company names herein may be trademarks of their registered owners.

SOA Software, Community Manager, API Gateway, Lifecycle Manager, OAuth Server, Policy Manager, Portfolio Manager, Repository Manager, Service Manager, API Manager, and SOLA are trademarks of SOA Software, Inc.

For more information, please contact: [email protected]

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
"ReadyTalk is an audio and web video conferencing provider. We've really come to embrace WebRTC as the platform for our future of technology," explained Dan Cunningham, CTO of ReadyTalk, in this SYS-CON.tv interview at WebRTC Summit at 19th Cloud Expo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
20th Cloud Expo, taking place June 6-8, 2017, at the Javits Center in New York City, NY, will feature technical sessions from a rock star conference faculty and the leading industry players in the world. Cloud computing is now being embraced by a majority of enterprises of all sizes. Yesterday's debate about public vs. private has transformed into the reality of hybrid cloud: a recent survey shows that 74% of enterprises have a hybrid cloud strategy.
IoT solutions exploit operational data generated by Internet-connected smart “things” for the purpose of gaining operational insight and producing “better outcomes” (for example, create new business models, eliminate unscheduled maintenance, etc.). The explosive proliferation of IoT solutions will result in an exponential growth in the volume of IoT data, precipitating significant Information Governance issues: who owns the IoT data, what are the rights/duties of IoT solutions adopters towards t...
"We are a modern development application platform and we have a suite of products that allow you to application release automation, we do version control, and we do application life cycle management," explained Flint Brenton, CEO of CollabNet, in this SYS-CON.tv interview at DevOps at 19th Cloud Expo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
Regulatory requirements exist to promote the controlled sharing of information, while protecting the privacy and/or security of the information. Regulations for each type of information have their own set of rules, policies, and guidelines. Cloud Service Providers (CSP) are faced with increasing demand for services at decreasing prices. Demonstrating and maintaining compliance with regulations is a nontrivial task and doing so against numerous sets of regulatory requirements can be daunting task...
SYS-CON Events announced today that Dataloop.IO, an innovator in cloud IT-monitoring whose products help organizations save time and money, has been named “Bronze Sponsor” of SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Dataloop.IO is an emerging software company on the cutting edge of major IT-infrastructure trends including cloud computing and microservices. The company, founded in the UK but now based in San Fran...
WebRTC is the future of browser-to-browser communications, and continues to make inroads into the traditional, difficult, plug-in web communications world. The 6th WebRTC Summit continues our tradition of delivering the latest and greatest presentations within the world of WebRTC. Topics include voice calling, video chat, P2P file sharing, and use cases that have already leveraged the power and convenience of WebRTC.
CloudJumper, a Workspace as a Service (WaaS) platform innovator for agile business IT, has been recognized with the Customer Value Leadership Award for its nWorkSpace platform by Frost & Sullivan. The company was also featured in a new report(1) by the industry research firm titled, “Desktop-as-a-Service Buyer’s Guide, 2016,” which provides a comprehensive comparison of DaaS providers, including CloudJumper, Amazon, VMware, and Microsoft.
Application transformation and DevOps practices are two sides of the same coin. Enterprises that want to capture value faster, need to deliver value faster – time value of money principle. To do that enterprises need to build cloud-native apps as microservices by empowering teams to build, ship, and run in production. In his session at @DevOpsSummit at 19th Cloud Expo, Neil Gehani, senior product manager at HPE, discussed what every business should plan for how to structure their teams to delive...
Without lifecycle traceability and visibility across the tool chain, stakeholders from Planning-to-Ops have limited insight and answers to who, what, when, why and how across the DevOps lifecycle. This impacts the ability to deliver high quality software at the needed velocity to drive positive business outcomes. In his general session at @DevOpsSummit at 19th Cloud Expo, Phil Hombledal, Solution Architect at CollabNet, discussed how customers are able to achieve a level of transparency that e...
SYS-CON Events announced today that Fusion, a leading provider of cloud services, will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Fusion, a leading provider of integrated cloud solutions to small, medium and large businesses, is the industry’s single source for the cloud. Fusion’s advanced, proprietary cloud service platform enables the integration of leading edge solutions in the cloud, including clou...
Unsecured IoT devices were used to launch crippling DDOS attacks in October 2016, targeting services such as Twitter, Spotify, and GitHub. Subsequent testimony to Congress about potential attacks on office buildings, schools, and hospitals raised the possibility for the IoT to harm and even kill people. What should be done? Does the government need to intervene? This panel at @ThingExpo New York brings together leading IoT and security experts to discuss this very serious topic.
Without a clear strategy for cost control and an architecture designed with cloud services in mind, costs and operational performance can quickly get out of control. To avoid multiple architectural redesigns requires extensive thought and planning. Boundary (now part of BMC) launched a new public-facing multi-tenant high resolution monitoring service on Amazon AWS two years ago, facing challenges and learning best practices in the early days of the new service. In his session at 19th Cloud Exp...
Fact: storage performance problems have only gotten more complicated, as applications not only have become largely virtualized, but also have moved to cloud-based infrastructures. Storage performance in virtualized environments isn’t just about IOPS anymore. Instead, you need to guarantee performance for individual VMs, helping applications maintain performance as the number of VMs continues to go up in real time. In his session at Cloud Expo, Dhiraj Sehgal, Product and Marketing at Tintri, sha...
In his keynote at 18th Cloud Expo, Andrew Keys, Co-Founder of ConsenSys Enterprise, provided an overview of the evolution of the Internet and the Database and the future of their combination – the Blockchain. Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life sett...