Weekly API Security Newsletter Launched
Want to learn more about the latest happenings in API security? Click here to access this week's API security newsletter.
Join the DZone community and get the full member experience.Join For Free
A new weekly newsletter at APISecurity.io brings easy-to-digest, summarized news on API security, vulnerabilities and breaches, standards, regulations, trends, and technology.
We live in the era of APIs: cloud computing, web applications, mobile applications, Internet of Things, microservice architectures, ecosystems, digital transformation, and integration projects — all add up to the API proliferation.
A combination of the immense pressure on developers to deliver new functionality quickly and API security being an emerging area of expertise leads to ever growing security risks. In fact, Gartner estimates that by 2022 APIs will become the most common attack vector.
No one is immune. Just over the past couple of months, there have been high profile API vulnerabilities reported for AWS, GoDaddy, Samsung, Google, Facebook, GitLab, Apple, Remini school mobile app, Shopify, Drupal, and VestaCP.
Technology vendors are trying to step into providing tools for API management, identity management, backend and mobile application analysis, and API assessment.
DevSecOps is emerging as the next generation of the DevOps process combined with ongoing security involvement in the software development and deployment process.
New standards such as the next iterations of OpenAPI and industry-specific ones in banking, healthcare, and other verticals get released.
Finally, governments are starting to pay attention and come up with new legislation that includes API requirements (such as the recent California IoT legislation.)
Check them out at APISecurity.io.
Opinions expressed by DZone contributors are their own.