Only 21.9 Percent of Respondents' API Management Platforms Provide Protection From API Abuse, Developer Errors, Automated API Scraping, and Web and Mobile API Hijacking
SAN FRANCISCO, CA--(Marketwired - April 07, 2016) - Distil Networks, Inc., the global leader in bot detection and mitigation, today released the results of a survey on application programming interface (API) security titled, "API Security: A Disjointed Affair." The survey and report conducted by Ovum Consulting, a leading global technology research and advisory firm, asked IT and security professionals across a variety of industries globally about their use of APIs, adoption of API management platforms, and the security features included in those platforms.
"The use of APIs to enable applications to interact across single and multiple infrastructures is skyrocketing and innovation is being fueled by companies finding new ways to monetize their software assets by exposing APIs to outside developers," said Rik Turner, senior analyst at Ovum. "However, exposing APIs to developers outside the company creates significant risk and APIs are becoming a growing target for cyber criminals. This study highlights an alarming lack of consistency and ownership in how API security is addressed."
According to the report, the majority of companies surveyed are running some form of an API management platform, either developed in-house or from a commercial provider. However, the security features included in these API management platforms are inconsistent, with many lacking basic rate limiting functionality. Also of note is the lack of responsibility for API security. There is nearly an even split between those that give responsibility for API Security to their developers and those that allocate it to the IT Security team.
"APIs impact business and the world around us more than most people realize. The fact that API security is flying under the radar and not being adequately addressed should be a red flag prompting organizations to examine their own practices," said Rami Essaid, co-founder and CEO of Distil Networks. "CIOs and CISOs need to get a handle on how responsibility is addressed within their organizations and decide whether the process is sufficiently robust."
Key Findings
The purpose behind APIs
API security woes
API management platforms lack critical features and automation
Who is responsible for API security
To download a copy of Ovum's "API Security: A Disjointed Affair" report, visit; http://resources.distilnetworks.com/h/i/233881696-ovum-survey-on-api-security/185088
To download a copy of Ovum's "The Inconvenient Truth About API Security" infographic, visit; http://resources.distilnetworks.com/h/i/233877790-infographic-the-inconvenient-truth-about-api-security
To learn more, attend the live webinar on Tuesday, April 12th; http://www.bankinfosecurity.com/webinars.php?webinarID=905&rf=distilweb
About Distil Networks
Distil Networks, the global leader in bot detection and mitigation, is the first easy and accurate way to identify and police malicious website traffic, blocking 99.9% of bad bots without impacting legitimate users. Distil protects against web scraping, brute force attacks, competitive data mining, online fraud, account hijacking, unauthorized vulnerability scans, spam, man-in-the-middle attacks, digital ad fraud, and downtime. Slash the high tax that bots place on your internal teams and web infrastructure and make your online applications more secure with API security, real-time threat intelligence, a 24/7 security operations center, and complete visibility and control over human, good bot, and bad bot traffic. For more information on Distil Networks, visit us at www.distilnetworks.com or follow @DISTIL on Twitter.
Contact Information:
Media Contact:
Jim Dvorak
Kulesa Faul for Distil Networks
415-735-1622