UPDATED 00:00 EST / AUGUST 31 2022

SECURITY

Traceable API Security Testing scans APIs for vulnerabilities, accuracy, reliability and overall security

Application programming interface security startup Traceable Inc. today announced the general availability of its API Security Testing offering which enables any API in pre-production to be tested for vulnerabilities, accuracy, reliability and overall security.

Offered as part of Traceable’s API Security Platform, the new comprehensive and seamless testing ability is designed to ensure organizations are aligned with the highest API security standards before releasing APIs into production.

Traceable’s API Security Testing offering is built to make testing of APIs fast, easy and a seamless experience for both development and security teams. The service offers support for shift left initiatives, including remediation insights from runtime back to development to allow developers to harden their APIs further.

The testing solution provides complete vulnerability analysis that leverages functional testing, API DNA and user attribution for improved detection and coverage. It offers extensive coverage for the Open Web Application Security Project API top 10, top Common Vulnerabilities and Exposure across Java, Go, Node JS, AuthN, AuthZ and others, business logic vulnerabilities and sensitive data exposure.

Uniform API testing in API Security Testing is based on dynamic payloads for standard tests and dynamic Traceable payloads for business logic vulnerabilities such as Broken Object Level Authoritzion, with Traceable claiming the service offers virtually zero false positives.

The DevSecOps focus enables companies to identify API security gaps between production and pre-production, perform fast scans for actionable results in continuous integration/continuous deployment or CI/CD pipelines and scan at a granularity from every pull request with API specific changes. It does so while utilizing integrations with application security tools, including software composition analysis, static application security testing and dynamic and interactive application security testing.

Key features of the service include eliminating the risk of vulnerable APIs, cost reduction and rapid scans that maintain the speed of innovation and comprehensive reports. For operational effectiveness, Traceable API Security Testing is easy to deploy and reduces complexity, with numerous CI/CD and appsec tooling integrations that allow for operational effectiveness.

“Because of our comprehensive approach to API security, the testing component was the logical evolution,” Sanjay Nagaraj, chief technology officer of Traceable, said in a statement. “It is key to enable development teams to identify security weaknesses and vulnerabilities in the build itself, in addition to the capability of providing runtime insights back to development teams, so they can further harden their APIs.”

Image: Traceable

A message from John Furrier, co-founder of SiliconANGLE:

Your vote of support is important to us and it helps us keep the content FREE.

One click below supports our mission to provide free, deep, and relevant content.  

Join our community on YouTube

Join the community that includes more than 15,000 #CubeAlumni experts, including Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger, and many more luminaries and experts.

“TheCUBE is an important partner to the industry. You guys really are a part of our events and we really appreciate you coming and I know people appreciate the content you create as well” – Andy Jassy

THANK YOU