The Latest News On The API Economy
Searching: No Search Term , Filtered By Category: "Application Development", Category: "Security"
Microsoft has introduced a bug bounty program for its ElectionGuard SDK. ElectionGuard is an open source SDK that aims to make voting systems more secure. Microsoft introduced the SDK earlier this year, and has added the bounty program as another element of its Defending Democracy Program.
Fourteen APIs have been added to the ProgrammableWeb directory in categories including Authentication, Security, and WebRTC. Highlights include an API for automated, AI based real estate appraisals and an API for verifying phone numbers. Here's a rundown of the latest additions.
Instagram has announced an upcoming feature that will provide users with a simple way to manage which third-party applications have access to their personal data. The new in-app feature is expected to roll-out over the next six months and will increase visibility into how user data is being shared.
MuleSoft Releases Anypoint Service Mesh to Simplify Microservices Discovery, Security, and Management
MuleSoft has announced the release of Anypoint Service Mesh, an extension of the company’s Anypoint Platform that aims to simplify how companies discover, manage, and secure microservices. Additionally, Anypoint Service Mesh establishes a microservices marketplace.
Recent reports show that the Kubernetes API is vulnerable to the billion laughs attack. The attack is a specific type of DoS attack targeting parsers. The vulnerability in the Kubernetes environment occurs within parsing YAML manifests. The apiserver does not validate or limit such manifests.
Modern, mobile apps contain countless APIs, both proprietary and third-party. Unfortunately, app developers don't always have the resources or access to secure those APIs. Appdome aims to address this shortcoming with the release of its SecureAPI. SecureAPI is a codeless, API security platform.
Fourteen APIs have been added to the ProgrammableWeb directory in categories including Cryptocurrency, Payments, and Transportation. Also new to the directory is the Samsara API Industrial IoT, and the Snyk API for open source security. Here's a rundown of the latest additions.
Spotify subscribers who also use Apple products may soon be able to use Siri to interact with the popular music service. Spotify is taking advantage of the SiriKit audio API, which was recently made available via iOS 13, to test the integration. It's not a done deal, but iPhone owners can dream.
Seclore, a company working to unify data-centric security solutions, announces the addition of the Seclore Endpoint Auto-Protector SDK to their Data Centric-Security Platform. The Seclore Endpoint Auto-Protector SDK enables rapid integration of data-centric security.
Why isn’t the Semantic web here? Despite some progress, there is still no centralized way to secure the integrity of data. Adding cryptography, standardization and cross-boundary query protocols like blockchain offers a solution to bridge the trust gap and take the internet to where it needs to go.
Today at Firebase Summit 2019 in Madrid, Spain, Firebase announced various upgrades to the company’s mobile and web application development platform. The updates are highlighted by new tools that aim to accelerate development while also reducing coding errors.
Protected Media has moved ad fraud detection to the supply side. This eliminates the burden of traffic validation from advertisers and bakes it directly into the tech stack driving the ad marketplace. The company aims to better control ad fraud increase CPM within fraud-free marketplaces.
Microsoft has announced a new Azure Blueprint for SWIFT. The blueprint specifically helps Microsoft enable SWIFT connectivity in the cloud. SWIFT is a provider of secure financial messaging services. Its rapid adoption made it an ideal candidate for an Azure Blueprint.
Dwolla has adopted the Kotlin programming language, with a focus on helping its Java clients. Specifically, the company created a new Kotlin-based SDK for its API. Dwolla maintains that Kotlin is wholly compatible with Java and, more importantly, simpler to use and maintain.
GitHub is now a Common Vulnerabilities and Exposures (CVE) Numbering Authority. This designation will enable GitHub to streamline the reports of vulnerabilities to the National Vulnerability Database (NVD). GitHub can directly assign a CVE ID for security advisories opened in GitHub.
Eleven APIs have been added to the ProgrammableWeb directory in categories including Security, Weather, and Internet of Things. Highlights include the W3C Badging API for enabling users to see new activity about an application on a home screen. Here's a rundown of the latest additions.
The Edge browser team at Microsoft says adjusting its app for devices that fold might be better handled with an API. The recommendation comes ahead of the market debut of several folding phones from Huawei and Samsung. Both phone companies have worked directly with developers to customize apps.
Ballerina, the open-source project from WSO2 has reached 1.0 and now provides cloud-native middleware as a programming language. The language, based on creating and consuming APIs for app development aims to simplify how developers will build and deploy cloud-native distributed apps and services.
Google recently announced an expansion to its GPSRP program (a bug bounty program for Google Play apps). Additionally, the company introduced the new Developer Data Protection Reward Program (DDPRP) to help uncover and stop data abuse across Android apps, OAuth projects, and Chrome extensions.
Imperva, a company that provides application security solutions, recently announced that they had experienced a data breach that exposed user’s email addresses, scrambled passwords, API keys, and SSL certificates. In addition, the company's API security standards raise concerns.