Automotive Grade APIs – designing for longevityNordic APIs
This is a session given by Henrik Segesten at Nordic APIs 2016 Platform Summit on October 26th, in Stockholm Sweden.
Description:
In the automotive industry, the term “automotive grade” is in common use applied to hardware. It means that the hardware has been tested for longer durability and more extreme conditions than consumer grade hardware. But how does this apply to software and more specifically APIs?
Lean and Mean – Authorization for kick-ass APIs (Jonas Markström)Nordic APIs
This is a session given by Jonas Markström at Nordic APIs 2016 Platform Summit on October 26th, in Stockholm Sweden.
Description:
So you’ve decided to go down the API path. You’re fitting your enterprise’s architecture with the best in REST services, micro services, and API gateways. You’ve convinced your management that opening up your most precious assets – your data – to the outside world will have considerable benefits. Just imagine: your partners, customers, and contractors will all be able to interact with your systems.
Now, of course, there is just this little nagging doubt in your head: did you code that service correctly? Are you positive only the right people have access to the relevant data? Did you thoroughly test that 10,000-line code that implements access control?
Of course you didn’t… Because you didn’t hard-code the authorization. You went for Attribute Based Access Control, the weapon of choice of API Ninjas. Right?
In this talk, we will cover the basics of externalizing authorization using ABAC and how it can be applied to your APIs:
– Secure API endpoints no matter the technology
– Control access to API functionality
– Control access to data: dynamic data masking
– Implement access control as centrally-managed policies
– Reuse the access control across other technologies in the stack.
Benefits include:
– Leaner APIs
– Slashed development time
– Faster time-to-market
In this webcast, L.L.Bean’s Kristopher Kleva walks us through the company’s digital commerce API platform, and explain how APIs enable the century-old company’s multiple marketing, retail, and big data systems, in addition to supporting its multiple mobile apps and mobile web site.
The document discusses how telecommunications companies (telcos) can adapt to changing technology and business trends. It notes that consumers are shifting to mobile devices and internet-based apps, which are powered by APIs. To keep up, the document recommends that telcos treat every service as an API and app, support external innovation through accessible APIs, and compete globally like internet companies by adopting agile techniques. It argues that telcos' advantages include retail relationships and infrastructure, but that they need clarity on business goals and metrics to measure API success through adoption, monetization, and other factors.
As you move your workloads to the cloud or build new cloud-native applications, how will you connect them with other apps and data that still reside in your data centers, or in other clouds?
The de facto standard to connect cloud workloads is the REST API. To get the most out of your cloud deployments, there’s a host of best practices around managing APIs in the cloud world.
This presentation covers:
-challenges faced as companies move to the cloud
- managing security, governance, and visibility concerns
- how APIs help you in a multi-cloud world
Sure, APIs are a technology. But APIs are part of a value chain, and every value chain is becoming infused with APIs that drive business results. What does it take to create a business strategy that makes the most of APIs? There are clear patterns for success that will enable you to get ahead of change—rather than react to competitors and disruptors.
We cover:
- why APIs are becoming an indispensable part of the value chain
- how APIs open new opportunities for business growth
- three things you should do in the next 100 days
Opening keynote from Apigee's Open Banking & PSD2 Summit in London on 19 May 2016.
This presentation explores why financial institutions need to build a solid API strategy to support Open Banking/PSD2.
Automotive Grade APIs – designing for longevityNordic APIs
This is a session given by Henrik Segesten at Nordic APIs 2016 Platform Summit on October 26th, in Stockholm Sweden.
Description:
In the automotive industry, the term “automotive grade” is in common use applied to hardware. It means that the hardware has been tested for longer durability and more extreme conditions than consumer grade hardware. But how does this apply to software and more specifically APIs?
Lean and Mean – Authorization for kick-ass APIs (Jonas Markström)Nordic APIs
This is a session given by Jonas Markström at Nordic APIs 2016 Platform Summit on October 26th, in Stockholm Sweden.
Description:
So you’ve decided to go down the API path. You’re fitting your enterprise’s architecture with the best in REST services, micro services, and API gateways. You’ve convinced your management that opening up your most precious assets – your data – to the outside world will have considerable benefits. Just imagine: your partners, customers, and contractors will all be able to interact with your systems.
Now, of course, there is just this little nagging doubt in your head: did you code that service correctly? Are you positive only the right people have access to the relevant data? Did you thoroughly test that 10,000-line code that implements access control?
Of course you didn’t… Because you didn’t hard-code the authorization. You went for Attribute Based Access Control, the weapon of choice of API Ninjas. Right?
In this talk, we will cover the basics of externalizing authorization using ABAC and how it can be applied to your APIs:
– Secure API endpoints no matter the technology
– Control access to API functionality
– Control access to data: dynamic data masking
– Implement access control as centrally-managed policies
– Reuse the access control across other technologies in the stack.
Benefits include:
– Leaner APIs
– Slashed development time
– Faster time-to-market
In this webcast, L.L.Bean’s Kristopher Kleva walks us through the company’s digital commerce API platform, and explain how APIs enable the century-old company’s multiple marketing, retail, and big data systems, in addition to supporting its multiple mobile apps and mobile web site.
The document discusses how telecommunications companies (telcos) can adapt to changing technology and business trends. It notes that consumers are shifting to mobile devices and internet-based apps, which are powered by APIs. To keep up, the document recommends that telcos treat every service as an API and app, support external innovation through accessible APIs, and compete globally like internet companies by adopting agile techniques. It argues that telcos' advantages include retail relationships and infrastructure, but that they need clarity on business goals and metrics to measure API success through adoption, monetization, and other factors.
As you move your workloads to the cloud or build new cloud-native applications, how will you connect them with other apps and data that still reside in your data centers, or in other clouds?
The de facto standard to connect cloud workloads is the REST API. To get the most out of your cloud deployments, there’s a host of best practices around managing APIs in the cloud world.
This presentation covers:
-challenges faced as companies move to the cloud
- managing security, governance, and visibility concerns
- how APIs help you in a multi-cloud world
Sure, APIs are a technology. But APIs are part of a value chain, and every value chain is becoming infused with APIs that drive business results. What does it take to create a business strategy that makes the most of APIs? There are clear patterns for success that will enable you to get ahead of change—rather than react to competitors and disruptors.
We cover:
- why APIs are becoming an indispensable part of the value chain
- how APIs open new opportunities for business growth
- three things you should do in the next 100 days
Opening keynote from Apigee's Open Banking & PSD2 Summit in London on 19 May 2016.
This presentation explores why financial institutions need to build a solid API strategy to support Open Banking/PSD2.
Presentation from Apigee's Open Banking & PSD2 Summit in London on 19th May 2016. Success examples on Open Banking and key next steps to get your business ready for PSD2
It’s a common question: how are microservices different from the Service Oriented Architecture (SOA) we saw a decade ago? While they might be similar to what SOA advocates support, microservices have proven to deliver impressive developer productivity gains at the largest enterprises, including as Google, Amazon, and Netflix.
Pivotal’s Matt Stine and Apigee’s Alan Ho discuss:
- real-world examples of microservices best practices
- anti-patterns and traps for microservices
- recommendations on tools & technology to help with microservices implementations
Pitney Bowes uses API management to deliver a broad set of cloud-based digital ecommerce capabilities, enable extensive partnerships, and optimize its own operations.
APIs are changing the way we build applications and changing the way we expose data, both inside and outside our organizations. But what is the most efficient and effective way to deliver these APIs? That’s the job of the API gateway. In this session, we will look at different deployment patterns for API gateways.
We'll explore how 4 forces will impact the API market over the next two to four years, and how hybrid- and multi-cloud, open source, developer-led adoption, and cloud-native application architecture are driving profound changes in the API market.
APIdays Helsinki 2019 - How to Minimize Coupling in API Production and Consum...apidays
This document summarizes Erik Wilde's presentation on minimizing coupling for API consumption. The presentation discusses how loose coupling is important for digital transformation efforts to improve business and technology agility. When APIs are loosely coupled, changes can be made on either the producer or consumer side without affecting the other side. Both sides need to follow design patterns and practices to reduce coupling. With loose coupling, digital products and capabilities within an organization can remain flexible and reconfigurable to support ongoing digital transformation.
How we Live Today is how we Work Tomorrow
We know how to be digital as consumers, but do we know how to be digital as businesses? Apigee CEO Chet Kapoor kicked off his keynote address at I ♥ APIs 2015 with this question.
Dive into a reference architecture that demonstrates the patterns and practices for securely connecting microservices together using Apigee Edge integration for Pivotal Cloud Foundry.
We will discuss:
- basics for building cloud-native applications as microservices on - Pivotal Cloud Foundry using Spring Boot and Spring Cloud Services
- patterns and practices that are enabling small autonomous microservice teams to provision backing services for their applications
- how to securely expose microservices over HTTP using Apigee Edge for PCF
Watch the webcast here: https://youtu.be/ETT6WP-3me0
Microservices have been used since ancient times to divide labor and specialize skills, though the concept is now applied to software development. While microservices became popular in software engineering in the 1990s by breaking monolithic applications into decentralized components, the idea of dividing work and coupling components loosely has been used since the Roman Empire to build complex projects. Modern enterprises similarly build their systems using loosely coupled internal and external services.
How APIs Transform Both Your Business and TechnologyWSO2
As a transformation enabler, APIs represent key business capabilities that you can rapidly reconfigure to serve new customers, reach new markets, and create new value. But just as critical, APIs are a technical enabler for agile cloud-native architecture in the era of software-powered business.
DURING THE WEBINAR, WE WILL COVER:
-How APIs have emerged as key products and transformation agents for the 21st Century
-New API-driven ecosystems and marketplace models being adopted by organizations
-The need to readily adapt to diverse infrastructure models
-How expanded API management and integration capabilities underpin these new business models and drive business and technology innovation
-How to achieve greater flexibility and efficiency by combining APIs, microservices, and serverless computing
View the on-demand webinar: https://wso2.com/library/webinars/forrester-webinar-on-demand/
Presentation from the developer track at I Love APIs London 2016 featuring Stuart Leeks, Microsoft.
Does orchestration feel like something you want to leave to someone else? Are your APIs and Microservices living in isolation and feeling lonely? This presentation dispenses the buzzwords, dives into the Azure Logic Apps Preview, and will help you begin your journey to being an Orchestration Ninja!
Apigee's Ed Anuff and Bala Kasiviswanathan will discuss how these forces inform and drive the Apigee product roadmap. Join Ed and Bala for a preview of how Apigee will deliver on its product goals, including a common stack that enables us to address our customers' multi-cloud opportunity. Learn how we'll help companies transition to the PaaS/cloud-native future, how we'll leverage Google's OSS presence, and how we will continue to emphasize the needs of developers.
Let's explore why you should have an API, how will it influence your business, why you should think about a monetisation seriously. There are a whole bunch of existing models that can help you find the right fit for your API depending on your roadmap.
Finally we take a look at the distribution of APIs to developers. Like any cake, you need to make sure it looks and tastes great to be able to sell it and be a leader!
Presentation from the technology track at I Love APIs London 2016 featuring Matthew Newton, glh, Hotels.
IT organisations have always been blamed for their slowness and desire for control. Learn how to transform your own organisation and change that perception.
Startup or enterprise we all have to be able our teams to adapt, grow and change direction quickly. The demands come from our users, customers and investors or owners. By building your product using a Microservice Architecture you might get a step closer to this. A Microservice Architecture can together with an agile mindset help you to enable a rapid shifts in product direction. As it can help you grow you engineering team with tens or hundreds without the team becoming to ineffective.
Deep-Dive: How Can APIs Help You Innovate? (Partner Ecosystems)Apigee | Google Cloud
The document discusses how APIs can help organizations innovate by building ecosystems. It outlines how early integration approaches required point-to-point connections but APIs now allow maximum reuse and open the door to more partners. The document presents examples of how Phillips Hue, Swisscom, and The World Bank used Apigee Edge to build successful digital ecosystems and external developer programs through their API strategies. It emphasizes that ecosystems require frictionless experiences for developers and visibility into the digital value chain.
Kallos Solutions specializes in providing world class enterprise software products and custom solutions for your business. With Kallos, you get innovative and proven enterprise applications at superior value – in terms of price, speed, depth of functionality, scalability and quality.
With its own range of products, a powerful solution delivery platform, and an innovative ‘see what you get early’ methodology, you virtually eliminate risk in implementing such solutions.
Smartphones, smart watches, laptops, connected cars, smart homes and wearables. The Internet of Things is arriving, and with it, some big challenges. Yes, the “things” are connected but they’re not communicating in a way that realizes the full potential of the IoT.
In this webcast, Brian Mulloy explores how to design and develop apps that work harmoniously with other apps as a system of systems. Learn about “big apps”—emergent systems that enable apps on multiple devices to work together—and how they are a design metaphor for creating holistic, consistent experiences across multiple devices. Discover how looping big apps into big data creates a compelling adaptive platform for the IoT.
Join to discuss:
- the potential of the IoT, realized through an adaptive cycle of analysis, prediction, and action, at scale
- how to go from today’s single-device apps to multi-device big apps
- the role big data will play in a virtuous app development cycle
- what the IoT means for your industry
Download podcast: http://bit.ly/ZWWwTv
apidays LIVE Australia 2021 - Composing a Headless and Composable Commerce Ar...apidays
apidays LIVE Australia 2021 - Accelerating Digital
September 15 & 16, 2021
Composing a Headless and Composable Commerce Architecture
Yi Zhuang Chew, Solutions Engineer at Commercetools
Publishing & Consuming Web APIs on AzureParis Polyzos
This talk is split in three parts. In the first part, I talk about web APIs, then I focus on publishing ASP.NET Web APIs on Azure using Azure App Service and, finally, I explore how we can consume those APIs.
Road to Black Friday 2015: How L.L.Bean Prepares for Traffic SpikesApigee | Google Cloud
Your Black Friday or Cyber Monday success can depend on being ready long before the holidays.
Kris Kleva, eCommerce Technical Lead at L.L Bean, joins us to share the retailer’s journey, including the growth of its API program, and how the company does performance testing for high traffic events like Black Friday.
View the webcast on youtube: https://youtu.be/Mb_kZ1qojlI
Listen to the podcast version here: http://bit.ly/1IgEv3q
New General Data Protection Regulation (Agnes Andersson Hammarstrand)Nordic APIs
This is a session given by Agnes Andersson Hammarstrand at Nordic APIs 2016 Platform Summit on October 25th, in Stockholm Sweden.
Description:
This spring a new EU General Data Protection Regulation was adopted to replace the current personal data legislations. Companies that break the rules risk fines of up to 4 % of the worldwide group turnover. The new regulations entail a large number of news that all companies should be informed about. Among other things, IT systems need to be adapted to privacy under the principles of privacy by design.
Agnes Hammarstrand, partner at Delphi Law firm and expert within IT and online provides an introduction to the new regulations and what you need to do.
APIs as The Source of Truth (Zane Claes)Nordic APIs
This is a session given by Zane Claes at Nordic APIs 2016 Platform Summit on October 25th, in Stockholm Sweden.
Description:
Too often, APIs are only consumed by mobile apps and external services. This leads to inconsistencies between web and API implementations of core business logic. This talk will discuss how Airbnb created an API infrastructure that also powers our website, to create a single source of truth.
Presentation from Apigee's Open Banking & PSD2 Summit in London on 19th May 2016. Success examples on Open Banking and key next steps to get your business ready for PSD2
It’s a common question: how are microservices different from the Service Oriented Architecture (SOA) we saw a decade ago? While they might be similar to what SOA advocates support, microservices have proven to deliver impressive developer productivity gains at the largest enterprises, including as Google, Amazon, and Netflix.
Pivotal’s Matt Stine and Apigee’s Alan Ho discuss:
- real-world examples of microservices best practices
- anti-patterns and traps for microservices
- recommendations on tools & technology to help with microservices implementations
Pitney Bowes uses API management to deliver a broad set of cloud-based digital ecommerce capabilities, enable extensive partnerships, and optimize its own operations.
APIs are changing the way we build applications and changing the way we expose data, both inside and outside our organizations. But what is the most efficient and effective way to deliver these APIs? That’s the job of the API gateway. In this session, we will look at different deployment patterns for API gateways.
We'll explore how 4 forces will impact the API market over the next two to four years, and how hybrid- and multi-cloud, open source, developer-led adoption, and cloud-native application architecture are driving profound changes in the API market.
APIdays Helsinki 2019 - How to Minimize Coupling in API Production and Consum...apidays
This document summarizes Erik Wilde's presentation on minimizing coupling for API consumption. The presentation discusses how loose coupling is important for digital transformation efforts to improve business and technology agility. When APIs are loosely coupled, changes can be made on either the producer or consumer side without affecting the other side. Both sides need to follow design patterns and practices to reduce coupling. With loose coupling, digital products and capabilities within an organization can remain flexible and reconfigurable to support ongoing digital transformation.
How we Live Today is how we Work Tomorrow
We know how to be digital as consumers, but do we know how to be digital as businesses? Apigee CEO Chet Kapoor kicked off his keynote address at I ♥ APIs 2015 with this question.
Dive into a reference architecture that demonstrates the patterns and practices for securely connecting microservices together using Apigee Edge integration for Pivotal Cloud Foundry.
We will discuss:
- basics for building cloud-native applications as microservices on - Pivotal Cloud Foundry using Spring Boot and Spring Cloud Services
- patterns and practices that are enabling small autonomous microservice teams to provision backing services for their applications
- how to securely expose microservices over HTTP using Apigee Edge for PCF
Watch the webcast here: https://youtu.be/ETT6WP-3me0
Microservices have been used since ancient times to divide labor and specialize skills, though the concept is now applied to software development. While microservices became popular in software engineering in the 1990s by breaking monolithic applications into decentralized components, the idea of dividing work and coupling components loosely has been used since the Roman Empire to build complex projects. Modern enterprises similarly build their systems using loosely coupled internal and external services.
How APIs Transform Both Your Business and TechnologyWSO2
As a transformation enabler, APIs represent key business capabilities that you can rapidly reconfigure to serve new customers, reach new markets, and create new value. But just as critical, APIs are a technical enabler for agile cloud-native architecture in the era of software-powered business.
DURING THE WEBINAR, WE WILL COVER:
-How APIs have emerged as key products and transformation agents for the 21st Century
-New API-driven ecosystems and marketplace models being adopted by organizations
-The need to readily adapt to diverse infrastructure models
-How expanded API management and integration capabilities underpin these new business models and drive business and technology innovation
-How to achieve greater flexibility and efficiency by combining APIs, microservices, and serverless computing
View the on-demand webinar: https://wso2.com/library/webinars/forrester-webinar-on-demand/
Presentation from the developer track at I Love APIs London 2016 featuring Stuart Leeks, Microsoft.
Does orchestration feel like something you want to leave to someone else? Are your APIs and Microservices living in isolation and feeling lonely? This presentation dispenses the buzzwords, dives into the Azure Logic Apps Preview, and will help you begin your journey to being an Orchestration Ninja!
Apigee's Ed Anuff and Bala Kasiviswanathan will discuss how these forces inform and drive the Apigee product roadmap. Join Ed and Bala for a preview of how Apigee will deliver on its product goals, including a common stack that enables us to address our customers' multi-cloud opportunity. Learn how we'll help companies transition to the PaaS/cloud-native future, how we'll leverage Google's OSS presence, and how we will continue to emphasize the needs of developers.
Let's explore why you should have an API, how will it influence your business, why you should think about a monetisation seriously. There are a whole bunch of existing models that can help you find the right fit for your API depending on your roadmap.
Finally we take a look at the distribution of APIs to developers. Like any cake, you need to make sure it looks and tastes great to be able to sell it and be a leader!
Presentation from the technology track at I Love APIs London 2016 featuring Matthew Newton, glh, Hotels.
IT organisations have always been blamed for their slowness and desire for control. Learn how to transform your own organisation and change that perception.
Startup or enterprise we all have to be able our teams to adapt, grow and change direction quickly. The demands come from our users, customers and investors or owners. By building your product using a Microservice Architecture you might get a step closer to this. A Microservice Architecture can together with an agile mindset help you to enable a rapid shifts in product direction. As it can help you grow you engineering team with tens or hundreds without the team becoming to ineffective.
Deep-Dive: How Can APIs Help You Innovate? (Partner Ecosystems)Apigee | Google Cloud
The document discusses how APIs can help organizations innovate by building ecosystems. It outlines how early integration approaches required point-to-point connections but APIs now allow maximum reuse and open the door to more partners. The document presents examples of how Phillips Hue, Swisscom, and The World Bank used Apigee Edge to build successful digital ecosystems and external developer programs through their API strategies. It emphasizes that ecosystems require frictionless experiences for developers and visibility into the digital value chain.
Kallos Solutions specializes in providing world class enterprise software products and custom solutions for your business. With Kallos, you get innovative and proven enterprise applications at superior value – in terms of price, speed, depth of functionality, scalability and quality.
With its own range of products, a powerful solution delivery platform, and an innovative ‘see what you get early’ methodology, you virtually eliminate risk in implementing such solutions.
Smartphones, smart watches, laptops, connected cars, smart homes and wearables. The Internet of Things is arriving, and with it, some big challenges. Yes, the “things” are connected but they’re not communicating in a way that realizes the full potential of the IoT.
In this webcast, Brian Mulloy explores how to design and develop apps that work harmoniously with other apps as a system of systems. Learn about “big apps”—emergent systems that enable apps on multiple devices to work together—and how they are a design metaphor for creating holistic, consistent experiences across multiple devices. Discover how looping big apps into big data creates a compelling adaptive platform for the IoT.
Join to discuss:
- the potential of the IoT, realized through an adaptive cycle of analysis, prediction, and action, at scale
- how to go from today’s single-device apps to multi-device big apps
- the role big data will play in a virtuous app development cycle
- what the IoT means for your industry
Download podcast: http://bit.ly/ZWWwTv
apidays LIVE Australia 2021 - Composing a Headless and Composable Commerce Ar...apidays
apidays LIVE Australia 2021 - Accelerating Digital
September 15 & 16, 2021
Composing a Headless and Composable Commerce Architecture
Yi Zhuang Chew, Solutions Engineer at Commercetools
Publishing & Consuming Web APIs on AzureParis Polyzos
This talk is split in three parts. In the first part, I talk about web APIs, then I focus on publishing ASP.NET Web APIs on Azure using Azure App Service and, finally, I explore how we can consume those APIs.
Road to Black Friday 2015: How L.L.Bean Prepares for Traffic SpikesApigee | Google Cloud
Your Black Friday or Cyber Monday success can depend on being ready long before the holidays.
Kris Kleva, eCommerce Technical Lead at L.L Bean, joins us to share the retailer’s journey, including the growth of its API program, and how the company does performance testing for high traffic events like Black Friday.
View the webcast on youtube: https://youtu.be/Mb_kZ1qojlI
Listen to the podcast version here: http://bit.ly/1IgEv3q
New General Data Protection Regulation (Agnes Andersson Hammarstrand)Nordic APIs
This is a session given by Agnes Andersson Hammarstrand at Nordic APIs 2016 Platform Summit on October 25th, in Stockholm Sweden.
Description:
This spring a new EU General Data Protection Regulation was adopted to replace the current personal data legislations. Companies that break the rules risk fines of up to 4 % of the worldwide group turnover. The new regulations entail a large number of news that all companies should be informed about. Among other things, IT systems need to be adapted to privacy under the principles of privacy by design.
Agnes Hammarstrand, partner at Delphi Law firm and expert within IT and online provides an introduction to the new regulations and what you need to do.
APIs as The Source of Truth (Zane Claes)Nordic APIs
This is a session given by Zane Claes at Nordic APIs 2016 Platform Summit on October 25th, in Stockholm Sweden.
Description:
Too often, APIs are only consumed by mobile apps and external services. This leads to inconsistencies between web and API implementations of core business logic. This talk will discuss how Airbnb created an API infrastructure that also powers our website, to create a single source of truth.
Scale a Swagger based Web API (Guillaume Laforge)Nordic APIs
This is a session given by Guillaume Laforge at Nordic APIs 2016 Platform Summit on October 26th, in Stockholm Sweden.
Description:
Web APIs are and more often specified with API definition languages like Swagger (now named Open API Spec), as it can help you generate nice interactive documentation, server skeletons, and client SDKs, mocks, and more, making it simpler to get started both producing and consuming an API.
In this session, Guillaume will demonstrate how to define a Web API with Swagger / Open API Spec, and scale it using Cloud Endpoints, on the Google Cloud Platform.
Introduction to The 6 Insights of API Practice (Bill Doerrfeld)Nordic APIs
This is a session given by Bill Doerrfeld at Nordic APIs 2016 Platform Summit on October 25th, in Stockholm Sweden.
Description:
At Nordic APIs, our goal is to help businesses make smart tech decisions using APIs. To that end, via events and content Nordic APIs has treaded the business and technical sides to consider holistic best practices for providing an API. In this introductory Summit keynote talk, I’ll introduce what we’ve learned in the form of 6 core tenants of API practice which we’ve also designed this conference to address. Together they define a functional and evolving API:
Platformification: Becoming an API-first company means undergoing a platformification process. This represents a global trend that many argue needs to be adopted to keep your business competitive within the digital economy.
Strategy: Even before development begins, it’s important to consider your core API strategy. This is a defensible position that aligns your tech with platform goals, strategically exposing internal assets catered to an industry niche.
Business Models: APIs have the power to improve efficiency, reduce overhead cost, open up complementary revenue streams, extend R&D, or even alter an existing business model entirely. Thus, you’ll want to determine the right monetization method that improves overall business and leads to end profitability.
Security: With new major data breaches reaching the public ear every month, the importance of digital security can never be underestimated. For APIs, much of that lies in monitoring usage, access management, and identity control.
Design: No developer wants to use an API with an ugly developer portal, unintuitive URL structures, outdated technology, or terrible lag time. In order to keep your developer consumer happy, paint the API portal and overall developer experience with an aesthetic brush.
Marketing: In order to spark adoption, you need to have more than awesome functionality. I’ll review evangelism and discovery techniques you can use to get an API in the hands of more developer users.
We’ll look at specific successful implementations of these philosophies in the wild, and mention examples from our blog and eBook content that have brought in industry experts to share their insights. I’ll initiate dialogue and open the conference up to see where we’re heading. What you can get out of embracing the core tenants of API practice?
TDD for APIs in a Microservice World (Michael Kuehne Schlinkert)Nordic APIs
This is a session given by Michael Kuehne at Nordic APIs 2016 Platform Summit on October 26th, in Stockholm Sweden.
Description:
It can be tough to test an apparently simple service comprehensively. A microservice architecture brings a new level of complexity to the question “How can we validate that our API is working as intended?”
In this talk Michael will explain how to use test driven development for APIs and even further how TDD can drive an API Design towards a more usable design, and how to build an well-tested ecosystem of microservices.
This approach is applicable for different kinds of services (REST APIs, websockets, industrial protocols). Independent from the type of interface we always ran into similar problems when we build an ecosystem of services.
We have to deal with dependency, asynchronous behaviours, fallback mechanisms, endpoint versioning and sometimes even shared databases.
It’s not trivial to apply TDD to these kinds of problems cause you have to think of scenarios. But there are ways of identify these scenarios and to test them.
As an API specialist Michael worked with various clients designing, building, testing, maintaining and even redesigning private and public services. Based on his project experience he developed a practical approach to apply TDD to APIs in microservice ecosystems.
Ultimate Guide to 30+ API Documentation SolutionsBill Doerrfeld
This document provides a list of 31 API documentation solutions, with each listing including the name of the solution, a brief description, and a link. The solutions cover a range of formats including OpenAPI/Swagger, API Blueprint, RAML, and others. They provide functionality such as visualization of API resources, generation of documentation from code or specifications, and interactive developer portals. The list is compiled by Bill Doerrfeld and sourced from Apis.guru.
Open API and API Management - Introduction and Comparison of Products: TIBCO ...Kai Wähner
In October 2014, I had a talk at Jazoon in Zurich, Switzerland: "A New Front for SOA: Open API and API Management as Game Changer"
Open API represent the leading edge of a new business model, providing innovative ways for companies to expand brand value and routes to market, and create new value chains for intellectual property. In the past, SOA strategies mostly targeted internal users. Open APIs target mostly external partners.
This session introduces the concepts of Open API, its challenges and opportunities. API Management will become important in many areas, no matter if business-to-business (B2B) or business-to-customer (B2C) communication. Several real world use cases will discuss how to gain leverage due to API Management. The end of the session shows and compares API management products from different vendors such as TIBCO API Exchange, IBM, Apigee, 3scale, WSO2, MuleSoft, Mashery, Layer 7, Vordel
The document discusses IBM API Management and the API economy. It begins by explaining how adoption of cloud, analytics, mobile and social computing is forcing organizations to open up their IT assets through APIs to new business channels. It then provides examples of public APIs from different industries. The document discusses how APIs can help companies extend their reach and open new markets by allowing external developers to leverage their assets. It also outlines some potential API use cases a company could explore, such as internal mobile app development, partner integration, public comparative apps, social integration, and device/wearable integration. Finally, it presents IBM's approach to enterprise architecture for digital transformation using APIs, events, services and systems of insight, engagement and record.
Era of APIs: Why do we need an API strategy?Bala Iyer
This document discusses the importance of API strategies for companies. It notes that as software and connectivity increase, assets are becoming trapped within companies and an API strategy can help liberate this value. APIs allow companies to expose capabilities to partners and developers, attracting complementors and creating new revenue streams. The document also examines how successful companies like Amazon, Facebook, and Twitter have thriving ecosystems and developer communities built around their APIs.
Are you interested in reducing your Re-conditioning cost, speeding up deliveries and increasing your Monthly Inventory Turns? View tho short presentation to find out how the Car CareDNA program can help your dealership.
Relational Scaling and the Temple of Gloom (from Cassandra Summit 2015)Luke Tillman
You're building the next big thing. It will attract hundreds of thousands of users and make so much cash, Gordon Gecko would blush. You just know that if you build it, they will come. But what happens when all those users do show up? Will you spend your time adding the new features they're clamoring for, or will you be scrambling to make sure your relational database doesn't die hard? In this talk, we'll take a look at some of the risky business we undertake to try and scale our relational databases and the problems we run into. Then we'll talk about how Cassandra is different and some of the knobs you control to turn things up to 11. If you're new to Cassandra and are looking for an introduction, come from a relational database background, or you just want to see how many 80s movie references we can cover in 40 minutes, then don your favorite fedora and come for an excellent adventure.
From Monolith to Microservices with Cassandra, gRPC, and Falcor (from Cassand...Luke Tillman
Transitioning a legacy monolithic application to microservices is a daunting task by itself and it only gets more complicated as you start to dig through all the libraries and frameworks out there meant to help. In this talk, we'll cover the transition of a real Cassandra-based application to a microservices architecture using Grpc from Google and Falcor from Netflix. (Yes, Falcor is more than just a magical luck dragon from an awesome 80's movie.) We'll talk about why these technologies were a good fit for the project as well as why Cassandra is often a great choice once you go down the path of microservices. And since all the code for the project is open source, you'll have plenty to dig into afterwards.
This document summarizes a presentation on IT governance in banks. It discusses four revolutions currently impacting banks: 1) banks becoming online retailers, 2) new regulatory regimes enforcing low margins, 3) core banking becoming a commodity, and 4) customers becoming disloyal. It argues that banks need a new architecture to support real-time operations and that shared infrastructure will be the cheapest way to run core banking systems by 2020. The presentation also discusses how banking value chains will splinter, with different players handling the front, middle, and back office functions. It envisions banks establishing marketplaces and using APIs to integrate different providers in the future.
This document discusses the importance of API security testing. It notes that 56% of webinar attendees felt API security was very important to their organization, but only 12% were doing extensive security testing. It highlights some examples of security breaches caused by insecure APIs and recommends implementing API management solutions to protect against threats like unauthorized access, data exposure, and denial of service attacks. The document demonstrates how an API gateway can detect and block a SQL injection attack on a banking API. It emphasizes the importance of putting security protections in place for APIs and including testing in the development process.
How many of you have created an API? But how many created a good API?
A good API is like a good meal, makes developers extremely happy with a belly full - and for some companies who are API first having a simple, documented, reliable API is crucial.
When developers complain about your API it is maybe because you didn't design it well enough - intentions are surely important but design is king.
The Rapid API Prototyping talk, is all about bridging the gap between thinking and doing with focus on best practices, tooling and tricks to make developers LOVE your API at first sight.
Les sites web sont devenus de véritables applications, grâce notamment à l'adoption du model SPA (single page application). Dès lors, il semble logique qu'elles puissent lire et modifier les données de façon plus intuitive et de définir leur propre schéma de données indépendamment du back-end. Il serait élégant de résoudre cette problématique via une solution souple, pérenne et indépendante d'un framework. Heureusement, Facebook et Netflix ont open-sourcé leur réponse respective : GraphQL et FalcorJS. Nous aborderons en détail le fonctionnement de ces librairies et vous donnerons les clés pour faire un choix éclairé
How to keep a popular API up an running 24 hours a day, 365 days a year.
Presentation by Federico Hernandez, Västtrafik from Nordic APIs Copenhagen in May 2013.
The document discusses software development in the automotive industry. It notes that automotive software is becoming increasingly complex, with modern vehicles containing over 100 million lines of code. The architecture of automotive software is also becoming more distributed across different vehicle systems. The document argues that future development will require improved collaboration across organizations involving thousands of people. It examines different organizational models and tooling approaches to support collaborative development at different levels, from individual users and projects to the enterprise level.
[SiriusCon 2020] Pushing Limits in Automotive Model Visualization at BOSCH - ...Obeo
In this session, we shall present our model visualizations based on Sirius framework used in multicore automotive software production tools at Bosch. We will provide insights into the decision criteria and benefits achieved with Sirius. The talk shall also highlight the pros and cons of using the framework in real-life projects containing over 300 million model objects. Our experience report in this session can serve as a guideline for the developer community in the industry. Further, our presentation will highlight the performance optimization and lay-outing challenges. Additionally, we present a case study of problems faced during development and its solutions so as to not re-invent the wheel.
Syed Aoun Raza, Robert Bosch
Syed Aoun Raza is working as Lead Software Architect and Multi-Core system design expert for Robert Bosch GmbH in Stuttgart (Germany). He has earned several years of experience in tool development using MDSD approaches. Additionally, he has research contributions in design and implementation of static analysis tools and techniques with focus on parallel/concurrent programs.
Rakesh Nidavani, Robert Bosch
Rakesh is a specialist at Robert Bosch, India. He has over 8 years of software development experience. Mostly works on applications based on EMF and Eclipse Sirius.
Amal Jose Vallavanthara, Robert Bosch
Currently works on multi-core automotive model domain at Robert Bosch GmbH, Germany. He specializes in machine learning and embedded systems.
How can collaboration be fostered in a highly distributed development like the automotive industry. New mega trends, convergence of domains and interoparable tools are the key factors.
This document discusses Bosch Automotive Service Solutions and their vision, offerings, and brand portfolio for the automotive aftermarket. It outlines Bosch's goal to be the global leader in all areas of vehicle service by providing parts, software, test equipment, technical support services, and more to dealerships, workshops, and garages worldwide. The document also lists Bosch's locations globally and brands that make up their automotive aftermarket portfolio.
Industry 4.0 refers to the trend of increasing connectivity and data exchange in manufacturing technologies. It involves connecting physical objects through sensors to collect and share data, enabling improvements in areas like quality, costs, and time to market. The document discusses Industry 4.0 concepts and Bosch's dual strategy to be a leading provider of Industry 4.0 solutions through external business, while also enabling internal digital transformation across its 250+ plants worldwide.
Juergen Lumera (Bosch): The Future of the Workshop Mechanic - A Connected Wor...AugmentedWorldExpo
A talk from the Inspire Track at AWE Europe 2017 - the largest conference for AR+VR in Munich, Germany October 19-20, 2017
Juergen Lumera (Bosch): The Future of the Workshop Mechanic - A Connected Workshop with AR as Overarching Technology
The future of the automotive (and most likely any other industry) technicians workplace will be connected. This session will give an in depth view how AR is an essential part - or more precise the overarching backbone - of a connected workshop in a modern dealer ship.
The document discusses next generation IT in manufacturing. It covers several topics:
1. Mega trends driving next generation IT such as the internet of things and big data.
2. Industry 4.0 which refers to the evolution of production technologies towards cyber-physical systems.
3. The role of the internet of things and services (IoTS) in manufacturing, with examples like RFID and predictive maintenance.
4. New trends in manufacturing IT architecture like tighter integration between enterprise and production systems using a manufacturing intelligence layer.
5. Bosch's work in developing and applying connected industry technologies in their own plants and through pilot projects.
How the Bosch Group is making use of OSGi for IoT - Kai Hackbarthmfrancis
OSGi Community Event 2016 Presentation by Kai Hackbath (Bosch Software Innovations GmbH)
In February 2015 the Bosch Group acquired ProSyst Software as part of its IoT strategy. For Bosch Software Innovations, the Bosch Group’s software and systems house, OSGi offers the right balance between flexibility and hardware cost for IoT gateways. There is currently no other technology for IoT gateways that is both more future-proof and more mature than OSGi. In this presentation we want to give an overview of what has been achieved since then, looking at how the ProSyst’s OSGi technology has been integrated into the comprehensive Bosch IoT Suite as well as the Bosch IoT Cloud. We will also present a number of other IoT initiatives in the Bosch group, including smart home and Industrial Internet of Things (IIoT) where OSGi is already being used. Additionally we will give an outlook on future activities in IoT including our plans in standardization and open source initiatives.
The document discusses how adopting Lean practices can help suppliers stay competitive. It begins by defining Lean and its potential controversies. Next, it outlines Bosch's requirements for suppliers, including keeping costs low and improving flexibility. It then explains how Lean can specifically support these requirements through tools like visual management, quick changeovers and value stream mapping. Lastly, it discusses how Lean serves as a foundation for Industry 4.0 practices like data connectivity and predictive maintenance.
Phil LaFond (Bosch Automotive Service Solutions Inc.): Bosch Technical Traini...AugmentedWorldExpo
A talk from the Main Stage at AWE USA 2019 - the World's #1 XR Conference & Expo in Santa Clara, California May 29-31, 2019.
Phil LaFond (Bosch Automotive Service Solutions Inc.): Bosch Technical Training Supported by AR
Learn how Bosch is using Augmented Reality to facilitate technical training.
https://awexr.com
IoT – The Machine Guys Meet the Internet GuysMongoDB
The sky is the limit in current IoT projections. However, in order to reap the benefits of the IoT opportunity, companies must successfully bridge the culture gap between the manufacturing world and the Internet world. This presentation is a view from the trenches, based on a real world example of success from Bosch Software Innovations.
The document discusses open source software as a business opportunity. It notes that software is becoming a key part of most products and services, and that software-as-a-service models are more popular than traditional software licensing. Open source can help companies reduce costs, share risks, and collaborate with partners. The document advocates building open source ecosystems and platforms to expand into new markets like the Internet of Things. It presents Bosch's vision for an open IoT platform that allows various devices, solutions, and industries to connect in a vendor-neutral way.
This document discusses cooperation models in the automotive industry for developing software. It describes the current traditional model where an OEM outsources work to tier 1 suppliers, who may work with third party component providers. Agile development approaches like Scrum are also discussed. The document proposes a new "collaborative development" model where OEMs, suppliers, and third parties work together in a software development community. Technical approaches are described for enabling collaborative development through standards like the Automotive Archive file format and an extended Eclipse workspace.
Under the Hood: Model-Based Development in the Automotive Industry by Darren ...Jordi Cabot
This document provides an overview of model-based software development in the automotive industry. It discusses the challenges of software development in automobiles, including constant changing requirements, increased complexity, tight resource constraints, and high reliability demands. It then describes how model-based development approaches can help address these challenges by enabling early validation through simulation, virtual prototyping, rapid prototyping, and model-based testing. The document also discusses AUTOSAR as a standard for model-based development that aims to facilitate collaboration between automotive companies.
INTERFACE, by apidays - Convincing at scale by Marcelo Araujo & David Halsba...apidays
INTERFACE, by apidays 2021 - It’s APIs all the way down
June 30, July 1 & 2, 2021
Convincing at scale
Marcelo Araujo, Lead API Center for Enablement at Bosch USA & David Halsband, Enterprise Architect IoT and Digitalization at Bosch
1) Bosch outlined smart mobility and security solutions for cities, focusing on connected parking, electric vehicle charging, intermodal transportation, and data security.
2) For data security, Bosch recommends solutions like access controls, encryption, authentication, and regular updates across edge devices, infrastructure, and networks.
3) Bosch demonstrated technologies for remote access and camera control, including dynamic transcoding that tailors video streams to available bandwidth without compromising quality.
Internal crowdsourcing @ Bosch – The why and the howLetsConnect
Since last 3 years, Bosch is actively driving its Enterprise 2.0 program with target to make Bosch a highly connected company where Bosch Connect (a.k.a IBM Connections) plays a vital role. Starting 2015, the vision of our Enterprise 2.0 program is elevated to drive Bosch towards an Agile Company. Among others, one of the important capability of an agile company is fast identification and utilization of its resources (skilled people, infrastructure and money). OASIS framework supports this by providing an environment where business opportunities can be kick-started across organizations and geographies using the crowdsourcing methods. The framework is technically supported by a new App in IBM Connections, jointly developed by IBM and Bosch.
Attendees will have the chance to understand how crowdsourcing methods can be used in an enterprise to make it more agile, flexible and faster. Additionally, attendees will experience the live demonstration of the new OASIS App in IBM Connections.
In this deck from the ISC Big Data’14 Conference in Heidelberg, Dirk Slama from Bosch presents: The Internet of Things.
"The vision for the Internet of Things is very powerful – a world in which assets, devices, machines, and cloud-based applications seamlessly interoperate, enabling new business models and services; with big data analytics as a foundation to support intelligent decision making in this connected world. As with every vision, the question is how to make it happen. This presentation provides key success factors for IoT, as well as a detailed overview of concrete IoT uses cases in the areas of automotive and transport, manufacturing and supply chain, as well as energy. Finally, a framework for IoT implementation is presented, which helps making your IoT projects a success.”
Dirk Slama is Director of Business Development at Bosch Software Innovations. Bosch SI is spearheading the Internet of Things (IoT) activities of Bosch, the global engineering group.
Watch the video presentation: http://inside-bigdata.com/2014/10/01/dirk-slama-keynote-internet-things/
Similar to The adventure of enabling API management in a large enterprise (Josh Wang) (20)
How I Built Bill, the AI-Powered Chatbot That Reads Our Docs for Fun , by Tod...Nordic APIs
A presentation given by Todd Kerpelman, Developer Advocate at Plaid, at our 2024 Austin API Summit, March 12-13.
Session Description: Have you ever thought about building your own chatbot to help developers be more successful using your APIs? Well, we made one for Plaid’s documentation site, and in this talk, I’ll cover some of the things we learned!
This presentation will cover topics like:
– How does it work? What does it mean to “train” a bot on your docs?
– Setting appropriate expectations: Do you still need to write documentation? Do you still need a support team?
– The trade-offs around building your own vs. buying a 3rd party solution
– Some decisions around the underlying tech
– How to build a decent “conversational mode” so you can ask follow-up questions
– How you evaluate the quality of a chatbot, and some surprises we ecountered along the way
– What do you do when things go wrong?
– Security considerations
And much more! Actually, probably not that much more. That already sounds like a lot.
The Art of API Design, by David Biesack at ApitureNordic APIs
A presentation given by David Biesack, Chief API Officer at Apiture, at our 2024 Austin API Summit, March 12-13.
Session Description: API Design is truly an art. While ChatGPT can spit out seemingly detailed APIs, there is still much to be said for well-crafted, consistent APIs designed by organic intelligence, in a broader context, with the consumer and Developer Experience in mind.
A good (or dare we dream, great) Developer Experience (DX) is an important aspect of API design and the success of your API program. Attendees will grok the interplay of API design, patterns, and language constraints and limitations. See how and why artful API Design Matters to DX and "good" API outcomes, and why fluency in the myriad languages of APIs matters. Learn how choosing guiding principles can shape all your APIs for success. Learn how to stay relevant as an API designer when the API generating robots are breathing down your neck.
ABAC, ReBAC, Zanzibar, ALFA… How Should I Implement AuthZ in My APIs? by Dav...Nordic APIs
A presentation given by David Brossard, CTO at Axiomatics, at our 2024 Austin API Summit, March 12-13.
Session Description: So you've just built your cool new API and figured out the authentication part. You're even using OAuth for access delegation, scopes, and claims. So, you're good, right? Well what about fine-grained authorization? What about OWASP's #1 security threat, broken access control? How do you handle that? Maybe you need an authorization framework to help with that. But which one? Is ABAC the way to go? Policies? Graphs? In this presentation, we'll give you the tools to understand what authorization for APIs entails, what options you have, and how to successfully implement a secure authorization strategy for your APIs. We will cover approaches such as ALFA, ReBAC, and Zanzibar and illustrate with a live demo.
Crafting a Cloud Native API Platform to Accelerate Your Platform Maturity - B...Nordic APIs
A presentation given by Budhaditya Bhattacharya, Developer Advocate at Tyk, at our 2024 Austin API Summit, March 12-13.
Session Description: APIs and microservices are powering domain-driven design architectures and have become the fabric of modern cloud-native applications. However, focusing on technology isn't enough - there is a need for a synergy between people, processes, and tools.
Based on the CNCF platform maturity model, we will look to bridge the gap between an org's current and desired platform maturity level when creating cloud-native API platforms. We'll discuss:
1. The platform team model - team topologies and key roles for developing internal API platforms
2. Processes like platform discovery, jobs-to-be-done analysis, and continuous feedback loops to understand and meet developer needs
3. Applying a "platform as a product" mindset to measure and communicate platform success
4. Architecting for discoverability, security, observability and integration capabilities 5. The role of technologies like service meshes, API gateway, identity management, internal developer portals and OpenAPI specifications
The Federated Future: Pioneering Next-Gen Solutions in API Management - Marku...Nordic APIs
A presentation given by Markus Müller, CTO at APIIDA, at our 2024 Austin API Summit, March 12-13.
Session Description: In an era where digital transformation is pivotal, the management and governance of APIs have emerged as critical components in the technological infrastructure of businesses. "The Federated Future: Pioneering Next-Gen Solutions in API Management" is a forward-looking talk that delves into the evolving landscape of API governance, with a particular focus on Federated API Management as a groundbreaking approach.
Over the course of this presentation, we will explore the paradigm shift from traditional, centralized API management towards a more dynamic, federated model. This approach not only offers scalability and flexibility but also fosters innovation by enabling diverse teams to collaboratively manage APIs while adhering to consistent governance policies.
Key topics include:
- The current challenges in API governance and how federated management addresses these.
- The principles and architecture of Federated API Management, distinguishing it from traditional models.
- Real-world implications of adopting a federated approach, including case studies that illustrate its transformative impact on businesses.
- Strategies for implementing Federated API Management, focusing on best practices for seamless integration.
- The future outlook of API governance, anticipating emerging trends and technologies.
API Authorization Using an Identity Server and Gateway - Aldo Pietropaolo, SGNLNordic APIs
A presentation given by Aldo Pietropaolo, Director of Solutions Engineering at SGNL, at our 2024 Austin API Summit, March 12-13.
Session Description: Securing APIs and ensuring you are protected from threats by implementing authentication and authorization while keeping the request context intact can be challenging. This session will show us how to leverage SGNL, Curity, and the Kong API Gateway to protect fictitious patient records. The session will be a technical session focused on the architecture and integration points for implementing continuous access management.
API Discovery from Crawl to Run - Rob Dickinson, GraylogNordic APIs
A presentation given by Rob Dickinson, VP of Engineering at Graylog, at our 2024 Austin API Summit, March 12-13.
Session Description: Discovering the attack surface presented by your APIs is the first step to improving API security. But APIs are fundamentally dark and constantly changing, which presents serious challenges for security teams trying to assess and manage new risks. There are several reasonable ways to perform API discovery, but each has its own tradeoffs and implications about what is actually being counted. This talk covers taking an API discovery program from start to best-of-breed, and strategies for measuring and monitoring your API attack surface.
Productizing and Monetizing APIs - Derric Gilling, MoseifNordic APIs
A presentation given by Derric Gilling, CEO of Moseif, at our 2024 Austin API Summit, March 12-13.
Session Description: The talk would target product owners looking to turn APIs into revenue centers. Specifically, how to price and package APIs, different strategies around prepaid, postpaid, and PAYG billing, and how to choose the right metric to charge, etc. Then, we’ll chat on the go-to-market to drive developer adoption.
Securely Boosting Any Product with Generative AI APIs - Ruben Sitbon, SipiosNordic APIs
A presentation given by Ruben Sitbon, Lead Solutions Architect at Sipios, at our 2024 Austin API Summit, March 12-13.
Session Description: ChatGPT has been a tidal wave, changing forever the way people and companies perceive the value of Artificial Intelligence. Many startups have launched products with ChatGPTI at its core, innovative SaaS players have all integrated Generative AI extensions or plugins, but it is now clear that users will be expecting more and more Generative AI to boost the features of products they use on a daily basis.
In this talk, I will describe how a framework relying on Generative AI in-house APIs that allows:
- Easily « boosting » any product feature with Generative AI
- Improving the answers through a « trainer API » that allows experts to improve the accuracy and tone of the model
- Bundling security and continuous compliance in the APIs to enjoy the benefits even within risk averse large corporates.
Security of LLM APIs by Ankita Gupta, Akto.ioNordic APIs
A presentation given by Ankita Gupta, Co-Founder and CEO, Akto.io, at our 2024 Austin API Summit, March 12-13.
Session Description: In this session, I will talk about API security of LLM APIs, addressing key vulnerabilities and attack vectors. The purpose is to educate developers, API designers, architects and organizations about the potential security risks when deploying and managing LLM APIs.
1. Overview of Large Language Models (LLMs) APIs
2. Understanding LLM Vulnerabilities:
- Prompt Injections
- Sensitive Data Leakage
- Inadequate Sandboxing
- Insecure Plugin Design
- Model Denial of Service
- Unauthorized Code Execution
- Input attacks
- Poisoning attacks
3. Best practices to secure LLM APIs from data breaches
I will explain all the above using real life examples.
I'm an API Hacker, Here's How to Go from Making APIs to Breaking Them - Katie...Nordic APIs
A presentation given by Katie Paxton-Fear, API Security Educator, Traceable AI, at our 2024 Austin API Summit, March 12-13.
Session Description: Have you ever wanted to be the villain or anti-hero? In this talk, we'll cover how to hack APIs, with permission, of course. First, we'll look at the tools of the trade for API hackers, some of the most common security vulnerabilities and how we test for them, and finally, I'll tell some of my API hacking stories. The aim of the session will be to learn a little API hacking and encourage people to have a go at API hacking themselves. Participants will also join me as I hack live, giving suggestions for the next steps, for an interactive and engaging session.
Unleashing the Potential of GraphQL with Streaming Data - Kishore Banala, Net...Nordic APIs
A presentation given by Kishore Banala, Senior Software Engineer, Netflix, at our 2024 Austin API Summit, March 12-13.
Session Description: Extend the advantages of GraphQL beyond the UI layer by creating data streams that seamlessly transfer data from Federated GraphQL to your preferred destination. This presentation explores the myriad use cases that can be unleashed, such as Search, Analytics etc., sparing you from the complexity of extensive ETL jobs. Join us for an in-depth exploration of the advantages that arise from seamlessly connecting GraphQL with data streams, opening new dimensions of efficiency and capability.
Reigniting the API Description Wars with TypeSpec and the Next Generation of...Nordic APIs
A presentation given by Gareth Jones, API Architect at Microsoft, at our 2024 Austin API Summit, March 12-13.
Session Description: Didn't the API description wars end in 2017 when we all agreed that OAS was the way forward?
Yes, and yet how satisfied with your API descriptions are you? Are they thousands of lines of hard to read yaml or JSON? When someone makes a change, is it easy to review for correctness and completeness? Do visual tools make this easier? Do they support change management?
I'll make the case that the next generation of more abstract DSLs for defining APIs such as Smithy from Amazon and TypeSpec, open sourced by Microsoft, move us back to a more intentional approach to design and give us the opportunity to highlight the business characteristics that matter most at design-time.
Establish, Grow, and Mature Your API Platform - James Higginbotham, LaunchAnyNordic APIs
A presentation given by James Higginbotham, Executive API Consultant, LaunchAny, at our 2024 Austin API Summit, March 12-13.
Session Description: Building and growing an API platform takes more than building and organizing your APIs. It requires understanding the needs of your ecosystem, establishing lightweight processes that drive discoverability, providing the resources for self-service enablement, and delivering a federated API coach program to scale your efforts. This talk will explore the practices and patterns implemented by global organizations that will help your API ecosystem shift from a functional program to a transformational API platform.
Inclusive, Accessible Tech: Bias-Free Language in Code and Configurations - A...Nordic APIs
A presentation given by Adrienne Moherek, Developer Experience Technical Leader, Cisco, at our 2024 Austin API Summit, March 12-13.
Session Description: Heard of suss? You can suss out more information or you can find someone’s information to be suss. “Suss” shows the flexibility of language. It’s an ongoing process to change how we use certain words. It’s important to choose words carefully to convey the correct meaning and avoid harmful subtext or exclusion. Let’s explore some of the tools and triage methods that it takes from an engineering viewpoint to make bias-free choices. How can you ensure that biased words do not sneak into code, UI, docs, configurations, or our everyday language? First, let’s walk through how to take an inventory of assets from code to config files to API specifications to standards. Next, by placing those findings into categories, prioritize the work to substitute with inclusive alternatives. Let’s examine some examples using both API and code assets. Next is a demonstration of how to automate analyzing your source code or documentation with a linter, looking for patterns based on rules that are fed into the tool. What’s in the future for these efforts? Inclusive language should expand beyond English and North America efforts. To do so, let’s organize the work with automation tooling, as engineers do.
Going Platinum: How to Make a Hit API by Bill Doerrfeld, Nordic APIsNordic APIs
A presentation given by Bill Doerrfeld, Editor in Chief of Nordic APIs, at our 2024 Austin API Summit, March 12-13.
Session Description: As it turns out, making a hit API is a lot like making a hit music album. You have to find a niche, you need good naming, and you need quality content. Also, on the production side, design, style, experience, and collaboration all matter a lot. At the end of the day, both are products, requiring the right management tools, marketing know-how, and infrastructure to scale. In this SXSW-inspired opening keynote, I'll look into the parallels between the two endeavors, providing a fun and informative look into specific things API providers should be considering on their journey toward becoming API platform rockstars.
Getting Better at Risk Management Using Event Driven Mesh Architecture - Ragh...Nordic APIs
A presentation given by Raghavan Sadagopan, Sr. Director from CapitalOne & Lakshmi Narayana, Sr. Lead Software Engineer from CapitalOne, at our 2024 Austin API Summit, March 12-13.
Session Description: Managing Risk is critical to the success of an organization. Managing Risks starts with identifying potential Risks which in the digital world are signals emanating from varying source systems. Identifying potential risks real-time enables organizations to mitigate / better prepare for potential exposures. The session will share our point of view on implementing an API centric event mesh architecture that routes events in real-time through a scalable and resilient cloud-native service on AWS.
GenAI: Producing and Consuming APIs by Paul Dumas, GartnerNordic APIs
A presentation given by Paul Dumas, Senior Director Analyst at Gartner, at our 2024 Austin API Summit, March 12-13.
Session Description:
GenAI will be, well, generating APIs. We are entering the era where software creates software. It will develop APIs faster than humans are capable of. Humans cannot compete with this compute power. How do we marshal this power, govern what it produces, and leverage it to support our business objectives and strategies? We will become more dependent on the capabilities we have as humans that elude machines. This talk provides insight to software leaders about the challenges of leading and managing this new software development power. The key lies in skills that are unique to humans: foresight, intuition, and agility.
The SAS developer portal –developer.sas.com 2.0: How we built it by Joe Furb...Nordic APIs
A presentation given by Joe Furbee, Developer Advocate and Developers Communities Manager at SAS Institute, at our 2024 Austin API Summit, March 12-13.
Session Description: Sure, we could have hired someone to (re)create our developer portal, developer.sas.com. However, we wanted the freedom to build our portal from the ground up. But, it takes more than an API architect and a developer advocate to create a modern, interactive developer experience. This session provides an overview of the steps we took to relaunch the SAS AI and analytics platform developer portal. Who was involved? How did we accomplish what we wanted to build? We’ll explore the stakeholders involved, the importance of open-source technologies, and why focusing on the developer’s perspective matters. This is not a marketing pitch to promote SAS services. Instead, it’s a detailed look at the process we followed to deploy our new developer portal.
How Netflix Uses Data Abstraction to Operate Services at Scale - Vidhya Arvin...Nordic APIs
A presentation given by Vidhya Arvind, Staff Software Engineer, Netflix, at our 2024 Austin API Summit, March 12-13.
Session Description: At Netflix, Data abstraction plays a pivotal role in hosting 100s of use cases that scale, they are widely adopted and depended on by mission-critical systems. In this talk, I show how to design reliable APIs and layout data for Key-Value services for petabyte-scale datasets. Key-value service uses a control plane and data plane to abstract the data, uses some novel techniques to reliably store and safely scale the service to 100s of instances.
Generating privacy-protected synthetic data using Secludy and MilvusZilliz
During this demo, the founders of Secludy will demonstrate how their system utilizes Milvus to store and manipulate embeddings for generating privacy-protected synthetic data. Their approach not only maintains the confidentiality of the original data but also enhances the utility and scalability of LLMs under privacy constraints. Attendees, including machine learning engineers, data scientists, and data managers, will witness first-hand how Secludy's integration with Milvus empowers organizations to harness the power of LLMs securely and efficiently.
Driving Business Innovation: Latest Generative AI Advancements & Success StorySafe Software
Are you ready to revolutionize how you handle data? Join us for a webinar where we’ll bring you up to speed with the latest advancements in Generative AI technology and discover how leveraging FME with tools from giants like Google Gemini, Amazon, and Microsoft OpenAI can supercharge your workflow efficiency.
During the hour, we’ll take you through:
Guest Speaker Segment with Hannah Barrington: Dive into the world of dynamic real estate marketing with Hannah, the Marketing Manager at Workspace Group. Hear firsthand how their team generates engaging descriptions for thousands of office units by integrating diverse data sources—from PDF floorplans to web pages—using FME transformers, like OpenAIVisionConnector and AnthropicVisionConnector. This use case will show you how GenAI can streamline content creation for marketing across the board.
Ollama Use Case: Learn how Scenario Specialist Dmitri Bagh has utilized Ollama within FME to input data, create custom models, and enhance security protocols. This segment will include demos to illustrate the full capabilities of FME in AI-driven processes.
Custom AI Models: Discover how to leverage FME to build personalized AI models using your data. Whether it’s populating a model with local data for added security or integrating public AI tools, find out how FME facilitates a versatile and secure approach to AI.
We’ll wrap up with a live Q&A session where you can engage with our experts on your specific use cases, and learn more about optimizing your data workflows with AI.
This webinar is ideal for professionals seeking to harness the power of AI within their data management systems while ensuring high levels of customization and security. Whether you're a novice or an expert, gain actionable insights and strategies to elevate your data processes. Join us to see how FME and AI can revolutionize how you work with data!
Your One-Stop Shop for Python Success: Top 10 US Python Development Providersakankshawande
Simplify your search for a reliable Python development partner! This list presents the top 10 trusted US providers offering comprehensive Python development services, ensuring your project's success from conception to completion.
“An Outlook of the Ongoing and Future Relationship between Blockchain Technologies and Process-aware Information Systems.” Invited talk at the joint workshop on Blockchain for Information Systems (BC4IS) and Blockchain for Trusted Data Sharing (B4TDS), co-located with with the 36th International Conference on Advanced Information Systems Engineering (CAiSE), 3 June 2024, Limassol, Cyprus.
Ocean lotus Threat actors project by John Sitima 2024 (1).pptxSitimaJohn
Ocean Lotus cyber threat actors represent a sophisticated, persistent, and politically motivated group that poses a significant risk to organizations and individuals in the Southeast Asian region. Their continuous evolution and adaptability underscore the need for robust cybersecurity measures and international cooperation to identify and mitigate the threats posed by such advanced persistent threat groups.
Monitoring and Managing Anomaly Detection on OpenShift.pdfTosin Akinosho
Monitoring and Managing Anomaly Detection on OpenShift
Overview
Dive into the world of anomaly detection on edge devices with our comprehensive hands-on tutorial. This SlideShare presentation will guide you through the entire process, from data collection and model training to edge deployment and real-time monitoring. Perfect for those looking to implement robust anomaly detection systems on resource-constrained IoT/edge devices.
Key Topics Covered
1. Introduction to Anomaly Detection
- Understand the fundamentals of anomaly detection and its importance in identifying unusual behavior or failures in systems.
2. Understanding Edge (IoT)
- Learn about edge computing and IoT, and how they enable real-time data processing and decision-making at the source.
3. What is ArgoCD?
- Discover ArgoCD, a declarative, GitOps continuous delivery tool for Kubernetes, and its role in deploying applications on edge devices.
4. Deployment Using ArgoCD for Edge Devices
- Step-by-step guide on deploying anomaly detection models on edge devices using ArgoCD.
5. Introduction to Apache Kafka and S3
- Explore Apache Kafka for real-time data streaming and Amazon S3 for scalable storage solutions.
6. Viewing Kafka Messages in the Data Lake
- Learn how to view and analyze Kafka messages stored in a data lake for better insights.
7. What is Prometheus?
- Get to know Prometheus, an open-source monitoring and alerting toolkit, and its application in monitoring edge devices.
8. Monitoring Application Metrics with Prometheus
- Detailed instructions on setting up Prometheus to monitor the performance and health of your anomaly detection system.
9. What is Camel K?
- Introduction to Camel K, a lightweight integration framework built on Apache Camel, designed for Kubernetes.
10. Configuring Camel K Integrations for Data Pipelines
- Learn how to configure Camel K for seamless data pipeline integrations in your anomaly detection workflow.
11. What is a Jupyter Notebook?
- Overview of Jupyter Notebooks, an open-source web application for creating and sharing documents with live code, equations, visualizations, and narrative text.
12. Jupyter Notebooks with Code Examples
- Hands-on examples and code snippets in Jupyter Notebooks to help you implement and test anomaly detection models.
Building Production Ready Search Pipelines with Spark and MilvusZilliz
Spark is the widely used ETL tool for processing, indexing and ingesting data to serving stack for search. Milvus is the production-ready open-source vector database. In this talk we will show how to use Spark to process unstructured data to extract vector representations, and push the vectors to Milvus vector database for search serving.
AI 101: An Introduction to the Basics and Impact of Artificial IntelligenceIndexBug
Imagine a world where machines not only perform tasks but also learn, adapt, and make decisions. This is the promise of Artificial Intelligence (AI), a technology that's not just enhancing our lives but revolutionizing entire industries.
HCL Notes and Domino License Cost Reduction in the World of DLAUpanagenda
Webinar Recording: https://www.panagenda.com/webinars/hcl-notes-and-domino-license-cost-reduction-in-the-world-of-dlau/
The introduction of DLAU and the CCB & CCX licensing model caused quite a stir in the HCL community. As a Notes and Domino customer, you may have faced challenges with unexpected user counts and license costs. You probably have questions on how this new licensing approach works and how to benefit from it. Most importantly, you likely have budget constraints and want to save money where possible. Don’t worry, we can help with all of this!
We’ll show you how to fix common misconfigurations that cause higher-than-expected user counts, and how to identify accounts which you can deactivate to save money. There are also frequent patterns that can cause unnecessary cost, like using a person document instead of a mail-in for shared mailboxes. We’ll provide examples and solutions for those as well. And naturally we’ll explain the new licensing model.
Join HCL Ambassador Marc Thomas in this webinar with a special guest appearance from Franz Walder. It will give you the tools and know-how to stay on top of what is going on with Domino licensing. You will be able lower your cost through an optimized configuration and keep it low going forward.
These topics will be covered
- Reducing license cost by finding and fixing misconfigurations and superfluous accounts
- How do CCB and CCX licenses really work?
- Understanding the DLAU tool and how to best utilize it
- Tips for common problem areas, like team mailboxes, functional/test users, etc
- Practical examples and best practices to implement right away
AI-Powered Food Delivery Transforming App Development in Saudi Arabia.pdfTechgropse Pvt.Ltd.
In this blog post, we'll delve into the intersection of AI and app development in Saudi Arabia, focusing on the food delivery sector. We'll explore how AI is revolutionizing the way Saudi consumers order food, how restaurants manage their operations, and how delivery partners navigate the bustling streets of cities like Riyadh, Jeddah, and Dammam. Through real-world case studies, we'll showcase how leading Saudi food delivery apps are leveraging AI to redefine convenience, personalization, and efficiency.
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
Programming Foundation Models with DSPy - Meetup SlidesZilliz
Prompting language models is hard, while programming language models is easy. In this talk, I will discuss the state-of-the-art framework DSPy for programming foundation models with its powerful optimizers and runtime constraint system.