Welcome!

News Feed Item

SOA Software Extends API Security and Threat Protection Capabilities

SOA Software, an API Management and SOA Governance leader, today announced a major new release of its API Gateway with significantly upgraded security and threat protection capabilities to provide a comprehensive, hardened, and integrated API security solution. This release establishes a new standard for an integrated solution that combines security, integration, and mediation capabilities delivered both in the cloud and on-premise.

“Enterprises are rapidly shifting the way they do business by embracing new digital channels and opening their data and applications through APIs, both internally and externally,” said Alistair Farquharson, Chief Technology Officer at SOA Software. “With this new release, customers can securely extend their business processes and data for consumption as APIs by leveraging the API Gateway’s unique ability to mitigate threat risk across platforms, devices, and channels. They can now protect their APIs from sophisticated attacks, hacks and a myriad of other threats. API Security has never been so powerful and comprehensive, and yet easy to enforce.”

SOA Software’s API Gateway provides a comprehensive security and threat protection solution for enterprise APIs. It covers a wide range of use cases, including threats related to identity and access, message encryption, and compliance. The API Gateway streamlines development, management, and operation of APIs; enhancing security and regulatory compliance through authentication, authorization and audit capabilities. It is available in the cloud, on-premise, or as a virtual appliance for ease of installation and configuration.

The latest release of SOA Software’s API Gateway includes:

  • Threat Protection: Protect APIs against unintentional or intentional attacks and abuse including Denial-of-Service, SQL and JavaScript or XPath Query attacks. The API Gateway provides a content firewall that defends against malicious content like viruses, or malformed JSON or XML data structures.
  • Authentication and Authorization: Choose from a wide array of authentication schemes, standards and token types to ensure that only valid users and applications can access APIs. The API Gateway supports integration with leading single-sign-on and Identity and Access management providers
  • Transport and Message Level Security: Ensure the privacy of customers’ data in flight and at rest (a key requirement for PCI compliance). The API Gateway supports SSL & TLS with comprehensive key and certificate generation, distribution and management using built-in PKI services.
  • Advanced Scripting: Make changes easily and quickly without the need to rebuild or redeploy services or applications using common scripting languages, such as JavaScript. Powerful server-side scripting capabilities enable users to define additional customizations.
  • Wide Support of Security Standards: Make integration and security administration seamless. The API Gateway provides extensive support for standards like OAuth, SAML, SHA, LDAP, Kerberos, HMAC, X.509 certificates, WS-Security and SSL client authentication.
  • PCI DSS 2.0 Compliant: Satisfy PCI criteria for a compliant network. SOA Software’s PCI-compliant cloud offers an extensive, secure network coupled with 24/7 technical support to mitigate risks that can compromise sensitive data security.

For more information about SOA Software API Gateway, see www.soa.com/solutions/api-gateway.

About SOA Software

SOA Software is a leading provider of API Management and SOA Governance products that equip business to deliver APIs and SOA together to drive their company to meet its business strategy quickly and effectively. SOA Software’s technology helps businesses to accelerate their digital channels with APIs, drive partner adoption, monetize their assets, and achieve agility and operational excellence across their applications and datacenters. Some of the world’s largest companies including Bank of America, Pfizer, and Verizon use SOA Software products. SOA Software is also recognized as a “Leader” by Gartner in Application Services Governance MQ and as a leader by other analyst firms. For more information on SOA Software’s API Platform, see http://www.soa.com

All product and company names herein may be trademarks of their registered owners.

SOA Software, Community Manager, API Gateway, Lifecycle Manager, OAuth Server, Policy Manager, Portfolio Manager, Repository Manager, Service Manager, API Manager, and SOLA are trademarks of SOA Software, Inc.

For more information, please contact: pressroom@soa.com

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
In his session at @ThingsExpo, Eric Lachapelle, CEO of the Professional Evaluation and Certification Board (PECB), provided an overview of various initiatives to certify the security of connected devices and future trends in ensuring public trust of IoT. Eric Lachapelle is the Chief Executive Officer of the Professional Evaluation and Certification Board (PECB), an international certification body. His role is to help companies and individuals to achieve professional, accredited and worldwide re...
Amazon started as an online bookseller 20 years ago. Since then, it has evolved into a technology juggernaut that has disrupted multiple markets and industries and touches many aspects of our lives. It is a relentless technology and business model innovator driving disruption throughout numerous ecosystems. Amazon’s AWS revenues alone are approaching $16B a year making it one of the largest IT companies in the world. With dominant offerings in Cloud, IoT, eCommerce, Big Data, AI, Digital Assista...
When growing capacity and power in the data center, the architectural trade-offs between server scale-up vs. scale-out continue to be debated. Both approaches are valid: scale-out adds multiple, smaller servers running in a distributed computing model, while scale-up adds fewer, more powerful servers that are capable of running larger workloads. It’s worth noting that there are additional, unique advantages that scale-up architectures offer. One big advantage is large memory and compute capacity...
You know you need the cloud, but you’re hesitant to simply dump everything at Amazon since you know that not all workloads are suitable for cloud. You know that you want the kind of ease of use and scalability that you get with public cloud, but your applications are architected in a way that makes the public cloud a non-starter. You’re looking at private cloud solutions based on hyperconverged infrastructure, but you’re concerned with the limits inherent in those technologies.
Both SaaS vendors and SaaS buyers are going “all-in” to hyperscale IaaS platforms such as AWS, which is disrupting the SaaS value proposition. Why should the enterprise SaaS consumer pay for the SaaS service if their data is resident in adjacent AWS S3 buckets? If both SaaS sellers and buyers are using the same cloud tools, automation and pay-per-transaction model offered by IaaS platforms, then why not host the “shrink-wrapped” software in the customers’ cloud? Further, serverless computing, cl...
The taxi industry never saw Uber coming. Startups are a threat to incumbents like never before, and a major enabler for startups is that they are instantly “cloud ready.” If innovation moves at the pace of IT, then your company is in trouble. Why? Because your data center will not keep up with frenetic pace AWS, Microsoft and Google are rolling out new capabilities. In his session at 20th Cloud Expo, Don Browning, VP of Cloud Architecture at Turner, posited that disruption is inevitable for comp...
Internet of @ThingsExpo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 21st Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The Internet of Things (IoT) is the most profound change in personal and enterprise IT since the creation of the Worldwide Web more than 20 years ago. All major researchers estimate there will be tens of billions devic...
IoT solutions exploit operational data generated by Internet-connected smart “things” for the purpose of gaining operational insight and producing “better outcomes” (for example, create new business models, eliminate unscheduled maintenance, etc.). The explosive proliferation of IoT solutions will result in an exponential growth in the volume of IoT data, precipitating significant Information Governance issues: who owns the IoT data, what are the rights/duties of IoT solutions adopters towards t...
It is ironic, but perhaps not unexpected, that many organizations who want the benefits of using an Agile approach to deliver software use a waterfall approach to adopting Agile practices: they form plans, they set milestones, and they measure progress by how many teams they have engaged. Old habits die hard, but like most waterfall software projects, most waterfall-style Agile adoption efforts fail to produce the results desired. The problem is that to get the results they want, they have to ch...
Wooed by the promise of faster innovation, lower TCO, and greater agility, businesses of every shape and size have embraced the cloud at every layer of the IT stack – from apps to file sharing to infrastructure. The typical organization currently uses more than a dozen sanctioned cloud apps and will shift more than half of all workloads to the cloud by 2018. Such cloud investments have delivered measurable benefits. But they’ve also resulted in some unintended side-effects: complexity and risk. ...
With the introduction of IoT and Smart Living in every aspect of our lives, one question has become relevant: What are the security implications? To answer this, first we have to look and explore the security models of the technologies that IoT is founded upon. In his session at @ThingsExpo, Nevi Kaja, a Research Engineer at Ford Motor Company, discussed some of the security challenges of the IoT infrastructure and related how these aspects impact Smart Living. The material was delivered interac...
No hype cycles or predictions of zillions of things here. IoT is big. You get it. You know your business and have great ideas for a business transformation strategy. What comes next? Time to make it happen. In his session at @ThingsExpo, Jay Mason, Associate Partner at M&S Consulting, presented a step-by-step plan to develop your technology implementation strategy. He discussed the evaluation of communication standards and IoT messaging protocols, data analytics considerations, edge-to-cloud tec...
The Internet giants are fully embracing AI. All the services they offer to their customers are aimed at drawing a map of the world with the data they get. The AIs from these companies are used to build disruptive approaches that cannot be used by established enterprises, which are threatened by these disruptions. However, most leaders underestimate the effect this will have on their businesses. In his session at 21st Cloud Expo, Rene Buest, Director Market Research & Technology Evangelism at Ara...
"When we talk about cloud without compromise what we're talking about is that when people think about 'I need the flexibility of the cloud' - it's the ability to create applications and run them in a cloud environment that's far more flexible,” explained Matthew Finnie, CTO of Interoute, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
A look across the tech landscape at the disruptive technologies that are increasing in prominence and speculate as to which will be most impactful for communications – namely, AI and Cloud Computing. In his session at 20th Cloud Expo, Curtis Peterson, VP of Operations at RingCentral, highlighted the current challenges of these transformative technologies and shared strategies for preparing your organization for these changes. This “view from the top” outlined the latest trends and developments i...