Security

Explore these helpful resources on implementing security for APIs and microservices.

Latest Articles

How the Facebook API led to the Cambridge Analytica fiasco

How weak API terms of service, lack of transparency, and permissive API scopes led to the Facebook-Cambridge Analytica scandal

Mehdi Medjaoui on Aug 8, 2018

Applying and Extending DHARMA

This post gives some practical examples of the DHARMA method for API Security in a Microservice Architecture, and also shares some opportunities for extending the model.

Matt McLarty on Jul 9, 2018

Introducing DHARMA: Domain Hierarchy Access Regulation for Microservice Architecture

If you're looking for a model to aid in your microservices transformation, consider DHARMA.

Matt McLarty on Apr 5, 2018

API Security for Microservices

API Security for Microservices

A framework and guidance around securing microservice APIs

Matt McLarty on Mar 21, 2018

Pokémon STOP! Winning & Losing in the API Game

The case of Pokémon GO shows why digital enterprises need to get out of API denial

Matt McLarty on Aug 3, 2016

Lessons

API Management 301: OAuth-Based Access Control

Learn how OAuth provides standard patterns upon which you can deliver API access control

API Academy on Sep 14, 2015

API Management 201: API Security

Identify typical areas of API vulnerability and learn best practices for securing APIs

API Academy on Aug 28, 2015

Books and Guides

Securing Microservice APIs

This short eBook introduces an API access control model that you can implement on a single platform or across multiple platforms to provide cohesive security across your network of microservices.