Más contenido relacionado La actualidad más candente (20) Similar a Disrupt or be disrupted – Using secure APIs to drive digital transformation (20) Más de Rogue Wave Software (20) Disrupt or be disrupted – Using secure APIs to drive digital transformation1. 1© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Disrupt or be disrupted
Using secure APIs to drive
digital transformation
2. 2© 2019 Rogue Wave Software, Inc. All Rights Reserved.
If you aren’t disrupting your
industry you’re about to get
disrupted
3. 3© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Agenda
• What’s happening in the industry?
• Why is this challenging?
• What do you want to happen?
• What do you need to make this happen?
• How are you going to do it?
• What is a security-first API management
• What works?
4. 4© 2019 Rogue Wave Software, Inc. All Rights Reserved.
What’s Expected of You?
Today’s line of business, product and innovation teams are
expected to help their organizations drive more revenue…
…by developing high quality new products and delivering them
efficiently through more channels.
This means:
• Leading digital transformation efforts
• Defending against potential disruptors (through proactive disruption)
• Adding channels for partners to embed products and capabilities
5. 5© 2019 Rogue Wave Software, Inc. All Rights Reserved.
What’s Making Things Difficult?
• External factors
– Market disruption by non-traditional competitors
– New regulatory requirements being introduced, and differing by
market
– Ever-evolving security risks and vulnerabilities
• Internal factors
– Legacy systems and infrastructure that are hard to manage and
keep current
– Lack of agility
– Lack of standard integration technology
– Burdensome onboarding for new partners
– Threats of vendor lock-in
6. 6© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Consequences
• Lose market share
• Missed market opportunities
• Risk of being disrupted
• High costs of IT
• Harm to brand perception/reputation
• Liabilities/litigation/regulatory fines
7. 7© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Desired business outcomes
• Increased revenue and shareholder value
• More routes to market
• Faster time to market
• Improved customer lifetime value
• Optimized IT-spend
• Less risk
• Secure, compliant products and services
8. 8© 2019 Rogue Wave Software, Inc. All Rights Reserved.
APIs Enable Digital Transformation
Digital transformationdemands…
Connectivity : to legacy and new applications
Alignment: between API strategy and business strategy
Consistency: enabling flexible API management and governance
Security: for customers and partners
APIs fill those needs, and more…
9. 9© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Common solution requirements
• Design and build robust, secure, available, and reliable APIs
• Automation of API development and deployment
• Create well-structured APIs from legacy assets
• Deployment model that aligns with my organization’s goals
• Centralized governance
• Ensured security with latest security standards
• Establish, monitor, alert and enforce SLAs
• Socialize and manage partner developer communities
• Configurable analytics for visibility into API traffic
ConnectInnovate Secure Manage
10. 10© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Needed: end-to-endAPI management capabilities
API Design
Design your APIs how you want to
API Security
Leverage the latest in security standards
API Traffic Management
Establish, Monitor, Alert, and Enforce Multiple
Service Level Agreements
API Portal
Socialize and manage your communities through
targeted developer portals
API Analytics
Generate deep business insights from your API
traffic through configurable analytic reports
Lifecycle Management
Build APIs leveraging DevOps with auditable
control
Mediation & Integration
Create modern well-structured APIs from legacy
assets and multiple backend sources
Deployment Options
Choose fully hosted cloud, hybrid, or on-
premises
11. 11© 2019 Rogue Wave Software, Inc. All Rights Reserved.
The importance of a security-first
API management strategy
12. 12© 2019 Rogue Wave Software, Inc. All Rights Reserved.
API security matters
"Hackers Swipe Data
On 2 Million T-Mobile
Subscribers"…
"Hackers managed to
breach a database by
exploiting a vulnerable
API..."
"Salesforce Security
Alert: API Error
Exposed Marketing
Data"
"2018 Sees API
Breaches Surge With
No Relief in Sight"
"Fitness app Strava
showed the world
how even seemingly
innocuousAPIs can
have damaging
consequences when
not securely designed."
"Google announced
that an additional bug
in a Google+ API had
exposed user data from
52.5 million accounts."
"Marriott says that 327
million customers had
different combinations of
name, address, phone number,
email address, date of birth,
gender, trip and reservation
information, passport number,
and Starwood Preferred Guest
account information stolen. The
Marriott incident is one of the
largest data breaches in
history."
13. 13© 2019 Rogue Wave Software, Inc. All Rights Reserved.
API securityis fundamentalto digital transformation
• High interconnectedness of technologies and processes
needed for digital transformation drives demand for
heightened security guarantees and SLAs
• Digital transformation and disruption requires the creation of
partnerships and technological collaborationswhereby
security is at the very center of the value proposition
• Organizations expect to be able to innovate and enhance their
business operations while enforcing the best possible security
Involving securityin
an integral and timely
way in digital
transformation
initiatives accelerates
them
Source: https://www.i-scoop.eu/undervalued-enabler-accelerator-digital-transformation-security/
14. 14© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Securing APIs
1 Authentication &
Authorization
2 App Key Validation/
Licensing
3 Message Security
4 Threat Protection
5 Content Filtering
6 Rate Limiting
Developers
15. 15© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Proof points and client successes
16. 16© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Akana supports industry expert best practices
The Open Web Application Security Project (OWASP) adds “under-
protected” APIs as a “Top 10 Most Critical Web Application
Security Risks”.
“…a one size fits all API approach is not appropriate. Instead, it's
important to adapt APIs to a diverse requirements of the
consuming applications.”
Top 10 Things CIOs Need to Know About APIs and the API Economy
APIs should be incremental, architected, and governed.
“APIs are a secret weapon for embracing true digital
transformation.”…“Instead of being forced to marry a platform, the
API will open doors for multiple platforms to tie together in an
ecosystem that is fast and flexible.”
Top 10 Trends For Digital Transformation
17. 17© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Forrester leader
Rogue Wave Software named a Leader
by Forrester Research, Inc. in The
Forrester Wave™: API Management
Solutions, Q4 2018.
“Akana has particularly strong API
security and policy capabilities and
good breadth across most all of our
evaluation criteria. Its API user portal
is among the most configurable and
extensible.”
18. 18© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Global travel and hospitality company leader
• Desired Business Outcome: Drive new revenue though a B2B API channel and
defend against market disruption by non-traditional competitors (i.e. tech giants).
• Challenge: Provide a flexible solution that fits in with the existing portal
infrastructure.
• Solution: An API first strategy enabling incremental routes to market.
• Result: Multiple channels appealing to specific customer demographics are
driving $64B in reservations through the API Platform.
19. 19© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Global heavy equipment manufacturer
• Desired Business Outcome: Increase revenue by selling more
through a robust partner ecosystem.
• Challenge: Unlocking data collected by equipment and securely
sharing it between equipment operators and partners.
• Solution: Built an active partner ecosystem using APIs to share
data.
• Result: Increased revenue and improved customer loyalty.
20. 20© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Global financial services leader
• Desired Business Outcome:
1. Open the bank’s core capabilities to its partners, create new distribution channels,
and bring in new innovation from outside the company.
2. UK open banking regulatory compliance
• Challenges: Creating an open developer ecosystem -- externally & internally
• Solution:
1. Build a centralized digital & mobile repository of reusable services powered through
an API/developer portal that facilitates faster discovery and integration.
2. Making secured banking services and data available to 3rd party developers
21. 21© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Global logistics company
• Desired Business Outcome: Maintaining market leadership
• Challenge: Difficulties maintaining market leadership as products and
services become more commoditized.
• Solution: Use API platform to reinforce a partner ecosystem and
intentionally driving market disruption.
• Result: Changed dynamic of their go-to-market strategy and customer
experience expectations.
22. 22© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Large European retailer
• Desired Business Outcome: Retain omni-channel competitive advantage
• Challenge: Losing competitive advantage due to reliance on a legacy
ecommerce solution
• Solution: Enable SaaS-based API management platform to drive omni-channel
transformation strategy
• Result: Digital transformation and omni-channel drives incremental revenue via
new routes to market and reduces operating costs by £50million per year
23. 23© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Why corporate leaders choose Akana:
• Holistic approach
– Refining current API Strategy to deliver leading edge Security First API Strategy
• Comprehensive API Security
– Protects APIs and internal systems from threats
– Supports all industry standards for authentication, authorization, data privacy,
attack prevention, and non-repudiation
• Flexible Deployment Options at Scale
– Support for on-premises, cloud and hybrid environments
• Centralized, Declarative Policy Management
– Automatic policy enforcement and implementation
• Integrated Portal
• Integrated Lifecycle Management
• Enables troubleshooting and capacity management
• Proven Domain Expertise and Thought Leadership
24. 24© 2019 Rogue Wave Software, Inc. All Rights Reserved.
Questions?