The Latest News On The API Economy
Searching: No Search Term , Filtered By Category: "Security"
CORS is a security mechanism that allows a Web page from one domain to access a resource from a different origin. This article provides an in-depth guide to Cross-Origin Resource Sharing (CORS) for REST APIs, on how CORS works, and common pitfalls especially around security.
The API is at the heart of the technology of every connected person’s daily life. Mark O’Neill, research director at Gartner, presented some of the trends in the API industry at a recent APIDays conference. This article delves into them and how they affect the future of the tech industry as a whole.
Google anti-harrasment project, Jigsaw, launched an API that brings programmatic access to the machine learning and AI technology driving the project. The Perspective API allows third parties like Wikipedia, the New York Times, and others the ability to score online speech for its toxicity level.
Google's fast and scaleable API gateway, Google Cloud Endpoints, is now generally available. Cloud Endpoints is built upon the same services that Google uses to power internal APIs. Cloud Endpoints ensures APIs used within apps on the Google Cloud Platform are monitored and secure
PasswordPing recently announced the launch of its password and credential breach notification service. The service alerts organizations of passwords and credential/password combinations that have been exposed. The service includes API entry points to the service for integration with login screens.
Bugsee recently emerged from stealth mode with its bug reporting and crash analytics tool. Bugsee's primary advantage over most mobile app bug tools is the continuous video capture of user actions. Bugsee syncs video data with log and network data for optimal and quick crash and bug recovery.
Two years ago, there was a growing chorus of voices expressing concern about private API keys finding their way into the public domain thanks in part to careless pushing of code to services like GitHub. Now this problem has spread to mobile apps. The guys over at Hackernoon explain.
Fourteen APIs have been added to the ProgrammableWeb directory in categories including Podcasts, Artificial Intelligence, and Security. Featured today are APIs for fraud detection by Simility, and conversational bots from Amazon Web Services Lex. Here's a rundown of the latest additions.
Stormpath made a name for itself with its backend, REST API that provides registration and authentication. The REST API operates in the backend of an app. As serverless architecture grows in use, a need for a frontend registration and authentication services arose. Enter the Stormpath Client API.
Eighteen APIs have been added to the ProgrammableWeb directory in categories such as Security, News Services, and Payments. Featured today is an API from UtilityScore, a service that provides a score for projected utility costs to interested home buyers. Here's a rundown of the latest additions.
This article is part of a 10-part series about interesting APIs that were added to our directory during 2016. Security and Privacy APIs are covered in this segment. The APIs were chosen by our researchers, by popularity according to website traffic, and by mentions on social media.
Developers commonly generate unique API keys for clients. But how long does an API key need to be to make the chances of a collision smaller than the chance that your computer might be struck by lightning? Fewer than you’d think, argues Sam Corcos, co-founder of SightMaps over at LearnPhoenix.io.
The Node.js Foundation, a community-led consortium to advance the development of Node.js, today announced that the Node.js Security Project will become a part of the Node.js Foundation. The Node.js Security Project will provide a process for discovering and disclosing security vulnerabilities.
Mastercard, a company that once warned that the risks of digital currency outweigh the benefits, has released two new blockchain APIs to promote collaboration and innovation in the digital exchange of value. Through its Mastercard Labs arm, Mastercard has indicated the API release is just the start.
YouMail launched its Spam Risk API. YouMail uses algorithms to analyze a database of hundreds of millions of phone numbers to determine the likelihood a particular phone number is spam. Historical call patterns and crowdsourced data are combined to determine an OK, caution, or danger designation.
Whether you're rolling your own soup to nuts API management solution, or your existing API management technology is missing some of the basics when it comes to API endpoint security, Cloudflare's recently released Traffic Control may have the right combination of features to fill in the gaps.
Ho-hum. Over 500 million user accounts at Yahoo! were breached. Who cares, right? You don't even have a Yahoo! account! It doesn't affect you. Right? Think again. If history tells us anything, the breach of the Yahoo! database means more attacks, perhaps against your systems, are on the way.
BeyondTrust announced a free API to call user credentials from BeyondTrust's PowerBroker Password Safe. API access to credentials eliminates the need for an individual user to enter username and password, and instead provides streamlined authentication directly within an integrated app.
High-Tech Bridge has announced a new release of its free SSL security testing service that companies and organizations can use to test their Web, email, VPN and other SSL/TLS-based services. The new release tests for known vulnerabilities in SSL/TLS implementations and in encryption protocols.
Box has introduced new security and governance APIs that organizations can use to incorporate content governance and compliance capabilities into applications and workflows. The new Box APIs includes a Retention Policy API, Legal Hold Policy API, Watermarking API, and Folder Metadata API.