During the March 4
When talking about the next layer of security using web application firewalls (WAF), more people showed interest in the typical “best practice” API security implementation and were curious how it protects against OWASP top 10 and similar attacks.
Finally, there was intense interest in the third layer of security, using an AI engine with Ping Intelligence to model the behavior on APIs to prevent and block attacks. The discussion included many great questions on how the machine learning capability models the behavior of the API.
Overall, I noticed that in Dallas there were many organizations who had either implemented robust API security on the gateway or using WAFs. These organizations were ready to explore the third layer of security because their organization has many APIs developed and implemented and are familiar with security best practices. They were in the right position with their API footprint and API security to explore the third layer, which involves using something like Ping Intelligence. Interested in other API security articles? Click here.