New service allows secure connection to APIs
rate of change required for business software has increased dramatically in recent years. In order to keep up many firms rely on APIs but their own problems especially in regard to security.
Identity – device management company Okta is launching a new service that secures the connections between applications, services and APIs.
Okta API Access Management is based on the user, making it easy to centrally maintain one identity and one set of permissions for any employee, customer, or partner across every point of access, regardless of location or device type.
“As global enterprises undertake reinvention, they need a technology foundation that offers agile delivery of new products and services. Identity is a core part of this foundation and critical for ensuring seamless, secure end-user experiences that span all applications, services, and devices,” says Eric Berg, chief product officer at Okta. “Okta is uniquely equipped to bring all of the identity context we already have to the task of securing APIs. By layering in this context and centralizing administration, Okta API Access Management enables apps, services and devices to securely interact, and deliver the right information, to the right people, at the right time”.
Key features of service include standards-compliant OAuth 2.0 support for any app or service. Plus a flexible, identity-driven policy engine that can define access policies based on user profile – group membership – network zone, device (or client), and user or administrator consent. Access is granted and revoked in real-time as administrators change user permissions.
Okta API Access Management has proven compatibility with API management solutions from Apigee – MuleSoft to create a complete digital transformation solution.
More information about the service is available on the Okta blog.