API Security has become a central concern in deploying APIs across portals, devices and cloud services. OWASP Top 10 2017 – RC1 includes API Security provisions. … Read More
API Security
How to Detect and Stop URL Parameter Tampering
In this series on the Top 10 API threats and How to Prevent Them, Forum Systems shares security insights compiled over many years, delivering secure and reliable solutions for web services and API modernization initiatives. #2 How to Detect and Stop URL Parameter … Read More … Read More
How to Prevent SSL Vulnerabilities Using Powerful API Security
In this series on the Top 10 API threats and How to Prevent Them, Forum Systems shares security insights compiled over many years, delivering secure and reliable solutions for web services and API modernization initiatives. … Read More
Cloud(ed) Judgment: OneLogin’s Breach Continues to Fuel the Security Debate
When it comes to the next big data breach, it’s never a matter of if, but a discussion of when. This time, the target was identity and access management firm OneLogin, which recently shut down its U.S. data center due … Read More … Read More
The President’s New EO Gets the Gist of NIST
President Trump introduced his long-awaited Cybersecurity Executive Order last month. While some focused on its similarities to EO 13636 issued by the Obama administration more than four years earlier, we were more concerned with, and quite frankly, excited by, the … Read More … Read More
PSD2: An Open Concept in Banking Mandating the Use of APIs
(Cloud)Flare Up: What you Need to Know about Ticketbleed
As you’ve likely seen, last month, Cloudflare Engineer and crypto expert Filippo Valsorda discovered a software bug in F5 appliances. Named “Ticketbleed,” since it leaks SSL session identities like the famed Heartbleed, the vulnerability is in the transport layer security … Read More … Read More
The (In)Security of IoT
In October, one of the signature security events in the history of the internet occurred. Dyn, the well-known cloud-based internet performance management company, suffered a massive DDoS attack on its managed domain name server infrastructure. The impact was widespread. … Read More
Forum Systems to Share Insights on the Enterprise Security Requirements for Predictive APIs
CTO Jason Macy to Discuss the Need for and Value of Strategic API Security-Driven Hybrid Cloud Architectures at PAPIs ‘16 BOSTON, October 6, 2016 – Forum Systems Inc. today announced that CTO Jason Macy will explore enterprise security best practices for … Read More … Read More
Forum Systems Teams with Trustis to Deliver API Security Solutions on the G-Cloud 7 Framework
Strategic Partnership Enables UK Government Agencies to Procure Leading API Security Management Technology on Crown Commercial Service’s Digital Marketplace BOSTON, January 26, 2016 – Forum Systems Inc. today announced a strategic partnership with Trustis to deliver its award-winning API … Read More … Read More