The advent of cloud-native, container-based architecture and microservices-based applications running on platforms like Kubernetes has sharpened the focus on API security and the software supply chain—from both security teams and cyberattackers. Software supply chains and APIs have become the new attack surfaces of choice, and with everyone from the White House to entry-level developers talking SBOMs, open source security and APIs, this is an area that’s getting lots of attention.
Cloud computing platforms are rife with misconfigurations that cybercriminals regularly exploit. Developers using infrastructure-as-code tools simply lack the cybersecurity expertise required to make sure cloud application environments are secure. It’s up to the cybersecurity team to make sure that the policies and guardrails created to secure cloud platforms are observed, especially when it comes to APIs.
But in the age of multi-cloud computing and cloud-native applications, the defensible attack surfaces are constantly increasing—both in terms of both the number of platforms used and the types of applications being deployed.
Join us as we explore the rapidly evolving application and API landscape and offer concrete ways organizations can protect against threats to their application code, APIs and related components.