Denial of Service (DoS) Protection
Mitigates DoS attacks by monitoring the API traffic for suspicious patterns and blocking or rate limiting requests from potential malicious sources.
Cat avg: 9.2
Top Performing Features
API Key Management
Provides mechanisms to generate, manage, and revoke API keys or tokens that are used for authentication and access control.
Cat avg: 9.2
Security Notification and Alerts
Sends real-time notifications and alerts when security events or anomalies are detected, allowing prompt investigation and response to potential threats
Cat avg: 9.2
Data Protection
Protects the data in transit between the API and the client by encrypting it using secure protocols such as SSL/TLS.
Cat avg: 9
Worst Performing Features
Input Validation
Validates and sanitizes user input to prevent common attack vectors such as SQL injection, cross-site scripting, and command injection.
Cat avg: 8.8
Content Filtering
Scans the content of API requests and responses for potentially malicious or unwanted content, such as malware or sensitive data, to prevent data leakage and protect against attacks.
Cat avg: 8.8
Audit Logging
Records all API activity, including authentication attempts, access requests, and data modifications, for compliance and troubleshooting purposes.
Cat avg: 9
F5 Distributed Cloud API Security Features from Reviews
API Security
Secures network with these features and tools offered by API Security.
9.00%
Data Protection
Protects the data in transit between the API and the client by encrypting it using secure protocols such as SSL/TLS.
Category average: 9
Audit Logging
Records all API activity, including authentication attempts, access requests, and data modifications, for compliance and troubleshooting purposes.
Category average: 9
Input Validation
Validates and sanitizes user input to prevent common attack vectors such as SQL injection, cross-site scripting, and command injection.
Category average: 8.8
Content Filtering
Scans the content of API requests and responses for potentially malicious or unwanted content, such as malware or sensitive data, to prevent data leakage and protect against attacks.
Category average: 8.8
Denial of Service (DoS) Protection
Mitigates DoS attacks by monitoring the API traffic for suspicious patterns and blocking or rate limiting requests from potential malicious sources.
Category average: 9.2
Security Notification and Alerts
Sends real-time notifications and alerts when security events or anomalies are detected, allowing prompt investigation and response to potential threats
Category average: 9.2
API Key Management
Provides mechanisms to generate, manage, and revoke API keys or tokens that are used for authentication and access control.
Category average: 9.2
Cross-origin Resource Sharing (CORS) Protection
Enforces restrictions on cross-origin requests, preventing unauthorized access to resources on the API server from web pages served by other domains.
Category average: 9
F5 Distributed Cloud API Security Features from the Vendor
Additional Features
Vendor-contributedoAutomated Discovery: generates API schema and swagger files --- discovers an apps APIs, monitor and map normal behavior, usage, methods and detects outliers to identify shadow APIs
oVisualize API Usage: API mapping to more easily identify usage patterns of an apps APIs, correlate good and bad actor activity across all endpoints
oImporting Swagger: from an existing schema, can monitor and secure documented API endpoints, methods, and payloads integrated with CI/CD pipelines
oResponse Analysis: analyzes how servers are responding to queries, identifying persistent outliers that receive bad response codes, but persist in sending bad requests
oBehavior and Time: analyses what endpoints are used, in what order and the frequency of API communications, to identify potentially malicious endpoints who are exhibiting behavior outside the norm
oDetermine Response: blocks suspicious requests -- allow, rate limit or deny a client using APIs