Welcome!

News Feed Item

SOA Software Extends API Security and Threat Protection Capabilities

SOA Software, an API Management and SOA Governance leader, today announced a major new release of its API Gateway with significantly upgraded security and threat protection capabilities to provide a comprehensive, hardened, and integrated API security solution. This release establishes a new standard for an integrated solution that combines security, integration, and mediation capabilities delivered both in the cloud and on-premise.

“Enterprises are rapidly shifting the way they do business by embracing new digital channels and opening their data and applications through APIs, both internally and externally,” said Alistair Farquharson, Chief Technology Officer at SOA Software. “With this new release, customers can securely extend their business processes and data for consumption as APIs by leveraging the API Gateway’s unique ability to mitigate threat risk across platforms, devices, and channels. They can now protect their APIs from sophisticated attacks, hacks and a myriad of other threats. API Security has never been so powerful and comprehensive, and yet easy to enforce.”

SOA Software’s API Gateway provides a comprehensive security and threat protection solution for enterprise APIs. It covers a wide range of use cases, including threats related to identity and access, message encryption, and compliance. The API Gateway streamlines development, management, and operation of APIs; enhancing security and regulatory compliance through authentication, authorization and audit capabilities. It is available in the cloud, on-premise, or as a virtual appliance for ease of installation and configuration.

The latest release of SOA Software’s API Gateway includes:

  • Threat Protection: Protect APIs against unintentional or intentional attacks and abuse including Denial-of-Service, SQL and JavaScript or XPath Query attacks. The API Gateway provides a content firewall that defends against malicious content like viruses, or malformed JSON or XML data structures.
  • Authentication and Authorization: Choose from a wide array of authentication schemes, standards and token types to ensure that only valid users and applications can access APIs. The API Gateway supports integration with leading single-sign-on and Identity and Access management providers
  • Transport and Message Level Security: Ensure the privacy of customers’ data in flight and at rest (a key requirement for PCI compliance). The API Gateway supports SSL & TLS with comprehensive key and certificate generation, distribution and management using built-in PKI services.
  • Advanced Scripting: Make changes easily and quickly without the need to rebuild or redeploy services or applications using common scripting languages, such as JavaScript. Powerful server-side scripting capabilities enable users to define additional customizations.
  • Wide Support of Security Standards: Make integration and security administration seamless. The API Gateway provides extensive support for standards like OAuth, SAML, SHA, LDAP, Kerberos, HMAC, X.509 certificates, WS-Security and SSL client authentication.
  • PCI DSS 2.0 Compliant: Satisfy PCI criteria for a compliant network. SOA Software’s PCI-compliant cloud offers an extensive, secure network coupled with 24/7 technical support to mitigate risks that can compromise sensitive data security.

For more information about SOA Software API Gateway, see www.soa.com/solutions/api-gateway.

About SOA Software

SOA Software is a leading provider of API Management and SOA Governance products that equip business to deliver APIs and SOA together to drive their company to meet its business strategy quickly and effectively. SOA Software’s technology helps businesses to accelerate their digital channels with APIs, drive partner adoption, monetize their assets, and achieve agility and operational excellence across their applications and datacenters. Some of the world’s largest companies including Bank of America, Pfizer, and Verizon use SOA Software products. SOA Software is also recognized as a “Leader” by Gartner in Application Services Governance MQ and as a leader by other analyst firms. For more information on SOA Software’s API Platform, see http://www.soa.com

All product and company names herein may be trademarks of their registered owners.

SOA Software, Community Manager, API Gateway, Lifecycle Manager, OAuth Server, Policy Manager, Portfolio Manager, Repository Manager, Service Manager, API Manager, and SOLA are trademarks of SOA Software, Inc.

For more information, please contact: [email protected]

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
"We're bringing out a new application monitoring system to the DevOps space. It manages large enterprise applications that are distributed throughout a node in many enterprises and we manage them as one collective," explained Kevin Barnes, President of eCube Systems, in this SYS-CON.tv interview at DevOps at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
SYS-CON Events announced today that CA Technologies has been named "Platinum Sponsor" of SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, New York, and 21st International Cloud Expo, which will take place in November in Silicon Valley, California.
SYS-CON Events announced today that delaPlex will exhibit at SYS-CON's @CloudExpo, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. delaPlex pioneered Software Development as a Service (SDaaS), which provides scalable resources to build, test, and deploy software. It’s a fast and more reliable way to develop a new product or expand your in-house team.
With major technology companies and startups seriously embracing IoT strategies, now is the perfect time to attend @ThingsExpo 2016 in New York. Learn what is going on, contribute to the discussions, and ensure that your enterprise is as "IoT-Ready" as it can be! Internet of @ThingsExpo, taking place June 6-8, 2017, at the Javits Center in New York City, New York, is co-located with 20th Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry p...
Extreme Computing is the ability to leverage highly performant infrastructure and software to accelerate Big Data, machine learning, HPC, and Enterprise applications. High IOPS Storage, low-latency networks, in-memory databases, GPUs and other parallel accelerators are being used to achieve faster results and help businesses make better decisions. In his session at 18th Cloud Expo, Michael O'Neill, Strategic Business Development at NVIDIA, focused on some of the unique ways extreme computing is...
The explosion of new web/cloud/IoT-based applications and the data they generate are transforming our world right before our eyes. In this rush to adopt these new technologies, organizations are often ignoring fundamental questions concerning who owns the data and failing to ask for permission to conduct invasive surveillance of their customers. Organizations that are not transparent about how their systems gather data telemetry without offering shared data ownership risk product rejection, regu...
WebRTC sits at the intersection between VoIP and the Web. As such, it poses some interesting challenges for those developing services on top of it, but also for those who need to test and monitor these services. In his session at WebRTC Summit, Tsahi Levent-Levi, co-founder of testRTC, reviewed the various challenges posed by WebRTC when it comes to testing and monitoring and on ways to overcome them.
Every successful software product evolves from an idea to an enterprise system. Notably, the same way is passed by the product owner's company. In his session at 20th Cloud Expo, Oleg Lola, CEO of MobiDev, will provide a generalized overview of the evolution of a software product, the product owner, the needs that arise at various stages of this process, and the value brought by a software development partner to the product owner as a response to these needs.
The Internet of Things can drive efficiency for airlines and airports. In their session at @ThingsExpo, Shyam Varan Nath, Principal Architect with GE, and Sudip Majumder, senior director of development at Oracle, discussed the technical details of the connected airline baggage and related social media solutions. These IoT applications will enhance travelers' journey experience and drive efficiency for the airlines and the airports.
For organizations that have amassed large sums of software complexity, taking a microservices approach is the first step toward DevOps and continuous improvement / development. Integrating system-level analysis with microservices makes it easier to change and add functionality to applications at any time without the increase of risk. Before you start big transformation projects or a cloud migration, make sure these changes won’t take down your entire organization.
In his keynote at @ThingsExpo, Chris Matthieu, Director of IoT Engineering at Citrix and co-founder and CTO of Octoblu, focused on building an IoT platform and company. He provided a behind-the-scenes look at Octoblu’s platform, business, and pivots along the way (including the Citrix acquisition of Octoblu).
In the first article of this three-part series on hybrid cloud security, we discussed the Shared Responsibility Model and examined how the most common attack strategies persist, are amplified, or are mitigated as assets move from data centers to the cloud. Today, we’ll look at some of the unique security challenges that are introduced by public cloud environments. While cloud computing delivers many operational, cost-saving and security benefits, it takes place in a public, shared and on-demand ...
In his session at @ThingsExpo, Sudarshan Krishnamurthi, a Senior Manager, Business Strategy, at Cisco Systems, will discuss how IT and operational technology (OT) work together, as opposed to being in separate siloes as once was traditional. Attendees will learn how to fully leverage the power of IoT in their organization by bringing the two sides together and bridging the communication gap. He will also look at what good leadership must entail in order to accomplish this, and how IT managers ca...
In his keynote at @ThingsExpo, Chris Matthieu, Director of IoT Engineering at Citrix and co-founder and CTO of Octoblu, focused on building an IoT platform and company. He provided a behind-the-scenes look at Octoblu’s platform, business, and pivots along the way (including the Citrix acquisition of Octoblu).
SYS-CON Events announced today that CA Technologies has been named “Platinum Sponsor” of SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY, and the 21st International Cloud Expo®, which will take place October 31-November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. CA Technologies helps customers succeed in a future where every business – from apparel to energy – is being rewritten by software. From ...