The week is coming to a close which means it’s time to bring you the news we couldn’t cover with a look at what what going on in the world of APIs. In time for the tenth anniversary of reCAPTCHA Google announced that they are bringing the spam protection service to Android.
There are three standard ways to manage API authentication these days: API keys, OAuth tokens and JSON Web tokens (JWT). Adam Duvander over at the Zapier engineering blog explains how and when to use them. The humble API key is the common and earliest form of API authentication.
A new company, Secful, aims to help companies identify attacks against their APIs and respond in an automated fashion with a "custom-tailored" security-layer. According to the company, existing security solutions don't sufficiently protect APIs and often fail to detect attacks before it's too late.