Overview

API Protect offers observability and active protection for a variety of security issues that your APIs face. By enabling or implementing one of Data Theorem’s active protection integrations, API Secure can provide active protection in the following areas:

• Authentication and Authorization

• Encryption

• Attack Prevention

• Malicious Sites & Domains

• Bot Protection

• API Management and Monitoring

Deployment Guides

API Protect has support for many languages, platforms, and environments.

Once deployed to your environment, the API Protect integration will monitor and collect data about incoming API requests. The data is then sent to Data Theorem’s platform for further analysis, in order to automatically discover APIs and detect attacks and/or anomalies.

To get started, follow the deployment guide that applies to your environment.

Tracing SDKs

API Protect can be deployed using SDKs to be directly integrated into your application’s code.

• Python

  • https://datatheorem.atlassian.net/wiki/spaces/PKB/pages/1770422291

• Java

  • API Protect Java SDK Installation and Usage

• NodeJS

  • https://datatheorem.atlassian.net/wiki/spaces/PKB/pages/1771143169

vTap Integrations

API Protect can be deployed using vTap agents that receive a “copy” of all the incoming traffic targeting your APIs. In addition to active protection, the vTap agents also provide automated discovery of shadow/unknown APIs, as described in https://datatheorem.atlassian.net/wiki/spaces/PKB/pages/1867251717.

• Nginx proxy

• Gloo Edge proxy

• Istio proxy

Serverless Integrations

API Protect can be automatically deployed to APIs hosted on the AWS Lambda platform, via a Lambda Extension.

• AWS Lambda