Despite the fact that the costs associated with hacking and data breaches have arguably never been higher, recent API-related security incidents involving large companies, T-Mobile and Accenture, highlight the fact that basic API security best practices are still often not being adhered to.
Imperva, a cyber security company that protects both cloud and on-premises data, has announced a new API security solution that provides API discovery, data classification, and risk mitigation functionality. This release follows recent reports of increasing attacks directed at API traffic.
This is part two of ProgrammableWeb’s series on Understanding the Realities of API Security. It is taken from the overview of David Berlind's written testimony to the ONC's API Security and Privacy Task Force. This article looks at the decision whether to make API documentation publicly available.