Downloaded 29 times
Uploaded byApigee | Google Cloud
Data-driven Security: Protect APIs from Adaptive Threats
This document discusses data-driven security and Apigee's approach. It begins by outlining the challenges posed by adaptive threats to APIs. Then it describes why data-driven security is needed and how current security approaches are not adaptive enough. The document introduces Apigee Sense, a new adaptive API security product that detects threat patterns at the API layer using machine learning algorithms. It analyzes billions of events to identify anomalous behavior patterns and detect bot attacks in order to stop bots and protect APIs from sophisticated threats.
More Related Content
Similar to Data-driven Security: Protect APIs from Adaptive Threats
Data-driven Security: Protect APIs from Adaptive Threats
- 1. 1 Data-Driven Security –Protect APIs from Adaptive Threats Subra Kumaraswamy, Apigee
- 2. Agenda 2 1. Adaptive ThreatChallenges 2. Why Data-Driven Security 3. Apigee’s Aproach 4. Key Takeaways ©2015 Apigee. All Rights Reserved.
- 3. Adaptive Threats Source: Incapsula DoS/Spam PriceScrappers Attack API Vulnerabilities Pollute Analytics Loyalty Program Abuse
- 4. Current layers ofsecurity are not adaptive 4 Rules Based Not Agile Friendly Address Web Vulns No Biz logic visibility Compliance Driven WAF Security IP Centric Rules Based No API Context Weak Blocking CDN Security
- 5. We need anew approach… 5
- 6. Apigee Sense :Protecting from adaptive threats 6 • A new adaptive API security product to prevent sophisticated bot attacks • Detects threat patterns at the API layer, including bot attacks • Enables you to take actions on bots you find
- 7. Apigee Sense 7 E Data Warehouse CRM,ERP, etc. SOA Database Analyze billions of events Apigee Sense Data Driven Security Machine learning algorithms Detect Anomalous Behavior Patters Hac ker Bot Bot Hac ker Bot Attack Stopped Legitimate Traffic Adaptive Threats • Content Scraping • Information Theft • Denial of Service Bot signatures
- 8. Apigee Sense Advantage- Deep Behavioral Analysis • Sophisticated rules and learning algorithms that compute a risk score. Models look at anomalous behavior patterns, activity bursts, geo patterns, device fingerprinting, etc. • Analyze billions of API calls across customers. Include purchased external IP reputation data. • Focus on the anomalies using baseline traffic behavior • Enable variable enforcement based on risk score (0-100) 8
- 9. Bad Bot Patterns 9 Content Stealer Spiker/DoSCredential Stuffer Guessor Price Scraper Storm Attacker Spear Attacker Vulnerability Scanner
- 10. • Shield yourAPIs from Bots and adaptive threats Save valuable system resources and from abusive Bots. Reduce Analytics pollution due to Bot activities. Protect your proprietary content (images, pricing, etc) and intellectual property from scrapping Bots. Gain visibility to API Key breaches to take immediate action to limit damage. • Get started today! • No setup or additional configuration required • Register at https://pages.apigee.com/Apigee-Sense-product-reg.html Use Apigee Sense to: 10
- 11.
Editor's Notes
- #4 Content Scraping – Dynamic pricing and inventory scraping. Using Geo api to scrape location specific info Information theft - Scraping of copyrighted items such as images. Partner abuse – Partners using keys with excess privileges
- #5 Cannot detect data scraping, API Key theft
- #8 Bot attacks that result in degraded API performance, data theft (pricing, docs) and fraud. Bot Detection is a new analytics service for security and fraud prevention. Enables customers to detect bots (both good bots and bad bots) – Enables customers to take actions on bots and Block them, allow them, throttle traffic, direct to honeypot, etc.