API Security

API Security and OWASP Top 10

API Security has become a central concern in deploying APIs across portals, devices and cloud services. OWASP Top 10 2017 – RC1 includes API Security provisions. … Read More

Tags: , ,

How to Detect and Stop URL Parameter Tampering

In this series on the Top 10 API threats and How to Prevent Them, Forum Systems shares security insights compiled over many years, delivering secure and reliable solutions for web services and API modernization initiatives. #2 How to Detect and Stop URL Parameter … Read MoreRead More

Tags: ,

How to Prevent SSL Vulnerabilities Using Powerful API Security

In this series on the Top 10 API threats and How to Prevent Them, Forum Systems shares security insights compiled over many years, delivering secure and reliable solutions for web services and API modernization initiatives. … Read More

Tags: ,

Cloud(ed) Judgment: OneLogin’s Breach Continues to Fuel the Security Debate

When it comes to the next big data breach, it’s never a matter of if, but a discussion of when. This time, the target was identity and access management firm OneLogin, which recently shut down its U.S. data center due … Read MoreRead More

Tags: ,

The President’s New EO Gets the Gist of NIST

President Trump introduced his long-awaited Cybersecurity Executive Order last month. While some focused on its similarities to EO 13636 issued by the Obama administration more than four years earlier, we were more concerned with, and quite frankly, excited by, the … Read MoreRead More

Tags: , ,

PSD2: An Open Concept in Banking Mandating the Use of APIs

A revolution is occurring in European banking and APIs are leading the way. Adopted in 2007, the Payment Services Directive (PSD) “provides the legal foundation for an EU single market for payments, to establish safer and more innovative payment services … Read MoreRead More

Tags: , , , , , , , , ,

(Cloud)Flare Up: What you Need to Know about Ticketbleed

As you’ve likely seen, last month, Cloudflare Engineer and crypto expert Filippo Valsorda discovered a software bug in F5 appliances. Named “Ticketbleed,” since it leaks SSL session identities like the famed Heartbleed, the vulnerability is in the transport layer security … Read MoreRead More

Tags: ,

The (In)Security of IoT

In October, one of the signature security events in the history of the internet occurred. Dyn, the well-known cloud-based internet performance management company, suffered a massive DDoS attack on its managed domain name server infrastructure. The impact was widespread. … Read More

Tags: , , , ,

Forum Systems to Share Insights on the Enterprise Security Requirements for Predictive APIs

CTO Jason Macy to Discuss the Need for and Value of Strategic API Security-Driven Hybrid Cloud Architectures at PAPIs ‘16 BOSTON, October 6, 2016 – Forum Systems Inc. today announced that CTO Jason Macy will explore enterprise security best practices for … Read MoreRead More

Tags: , , ,

Forum Systems Teams with Trustis to Deliver API Security Solutions on the G-Cloud 7 Framework

Strategic Partnership Enables UK Government Agencies to Procure Leading API Security Management Technology on Crown Commercial Service’s Digital Marketplace   BOSTON, January 26, 2016 – Forum Systems Inc. today announced a strategic partnership with Trustis to deliver its award-winning API … Read MoreRead More

Tags: , , , , , , , , , , ,