The cloud is the computer, the fundamentals of web application security
Elvis and the app have left the building. The first part of this weird alert just tells you it’s time to come home and leave the theater; now is not the time to hang around for reminders or reminders.
The second part of this warning is to remind us that many of our enterprise software assets now exist as part of the larger web that forms the Internet itself. But this fundamental truism has implications.
The rise of web applications and the application programming interfaces (APIs) that link many of their synaptic connections enables us to achieve levels of flexibility and operational agility previously unimagined. But flexibility usually comes at a cost or some form of compromise; there are vulnerabilities that we need to think about.
The API highway is actually very busy; API calls account for 83% of web traffic, according to an Akamai traffic study from October 2018 … and the number may be closer to 85 or 90% now. Content delivery network specialist Akamai says the majority of API traffic goes to custom applications, which are the result of digital services and cloud-based application deployment.