In this conversation, Matt Johansen and Brian Joe discuss API security and its evolution from traditional application security.
First and foremost, they define what we mean by “API Security.” This involves a quick history lesson on the rise of microservices and decentralized applications.
They also highlight the challenges and vulnerabilities associated with API security, such as broken authentication and authorization.
We even get into how AI has impacted security testing and the need for innovation in response and enforcement!
Overall, the discussion provides insights into the current state and future of API security. Join us to explore the evolution of web application firewalls (WAFs) and what they can and can not do in the ever-growing world of APIs.
Matt’s favorite takeaway: Traditional WAFs inspected a single request and decided if it was good or bad. Next-gen WAFs added the dimension of looking at attack traffic over time instead of that single request. Impart, and modern API Security solutions are going beyond that 2nd dimension and bringing in a lot more context to make security decisions on API traffic.
Subscribe to newsletter
Want to learn more about API security? Subscribe to our newsletter for updates.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
*** This is a Security Bloggers Network syndicated blog from Impart Security Blog authored by Impart Security Blog. Read the original post at: https://www.impart.security/blog/the-future-of-appsec-is-apis