{"id":206,"date":"2021-02-01T16:44:39","date_gmt":"2021-02-01T16:44:39","guid":{"rendered":"http:\/\/bosframework.com\/blog\/?p=206"},"modified":"2021-02-01T16:48:38","modified_gmt":"2021-02-01T16:48:38","slug":"what-is-api-security-and-why-should-it-be-a-priority","status":"publish","type":"post","link":"https:\/\/bosframework.com\/blog\/what-is-api-security-and-why-should-it-be-a-priority\/","title":{"rendered":"What is API Security (And Why Should It Be a Priority)?"},"content":{"rendered":"\n
\"\"<\/figure><\/div>\n\n\n\n

BOS Founder and CEO Sashank Purighalla was recently interviewed by CMSwire about API security<\/a>. <\/p>\n\n\n\n

Here are a couple of highlights:<\/p>\n\n\n\n

APIs provide a way for hackers to access data because \u201cdevelopers are not natively trained to think about security. The advent of newer efficiency-focused development tools do not take a systemic view and cause developers to become that much more silo focused,\u201d says Sashank Purighalla, Founder and CEO of cloud engineering and cybersecurity company, BOS Framework. <\/em><\/p>\n\n\n\n

Purighalla points out that system-focused hackers \u201care intentionally looking for those gaps that exist in-between systems. And it is in-between places that vulnerabilities exist.\u201d<\/em><\/p>\n\n\n\n

Also:<\/p>\n\n\n\n

Many APIs are easily discoverable, and that is music to the ears of hackers. To control the number of API requests and who receives access you should \u201cgate your API documentation behind authorization credentials,\u201d recommends Purighalla. <\/em><\/p>\n\n\n\n

Purighalla also suggests avoiding making APIs too user-friendly. Hackers frequently impersonate users and use descriptive error messages to peek under the hood. At times, saying that an account wasn\u2019t found instead of pointing out, there was an incorrect password can prevent a hacker from gaining too much useful information.<\/em><\/p>\n\n\n\n

BOS is a cloud engineering automation platform that helps you increase your security, modernize your legacy systems, and integrate disparate products while reducing your cloud infrastructure overhead and maintenance.<\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"

BOS Founder and CEO Sashank Purighalla was recently interviewed by CMSwire about API security.  Here…<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"nf_dc_page":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[4,8],"tags":[10,11,12,17],"class_list":["post-206","post","type-post","status-publish","format-standard","hentry","category-architecture","category-security","tag-cloud-engineering","tag-cloud-engineering-platform","tag-cloud-security","tag-cybersecurity"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/posts\/206","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/comments?post=206"}],"version-history":[{"count":5,"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/posts\/206\/revisions"}],"predecessor-version":[{"id":212,"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/posts\/206\/revisions\/212"}],"wp:attachment":[{"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/media?parent=206"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/categories?post=206"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/tags?post=206"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}