Most API technologists consider API security a topic addressed primarily at the WAF + API Gateway layer (the perimeter). While the perimeter is crucial, focusing only on that layer overlooks vital security measures that can significantly strengthen your defenses. In this post, I’ll dive into three critical practices that can elevate security deeper in your stack: scoped access for services...
The Application Programming Interface or API is what has enabled the connected web we work and live with today. It empowers businesses to be innovative and more collaborative, faster. The only problem is with great integrations comes great responsibility. By APIs allowing for technical interactions across organizations and industries, it’s also broadening the attack surface of your company...
Chris Hood is a strategist, consultant, and public speaker, currently serving as the CMO at PolyAPI. With a background that includes leading API strategy at Apigee and Google, Chris has been immersed in the API world since 2009, helping some of the largest global companies shape their API designs, products, and monetization strategies. As a thought leader in the field, he has defined productization principles and digital ecosystems that are now standard across industries. This site reflects his insights, predictions, and musings on the future of APIs, as he works on his upcoming book, Application People Interfaces, a CEO's guide to understanding the value of APIs and the impact of AI on their future.