{"id":4006,"date":"2018-11-28T15:54:43","date_gmt":"2018-11-28T19:54:43","guid":{"rendered":"https:\/\/solutionsreview.com\/identity-management\/?p=4006"},"modified":"2019-04-01T14:27:01","modified_gmt":"2019-04-01T18:27:01","slug":"identity-security-rest-apis-ping-identity","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/","title":{"rendered":"Identity Security and REST APIs (With Ping Identity)"},"content":{"rendered":"<p>&nbsp;<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-2501\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/blockchain-chain-gang-mod.png\" alt=\"Identity Security and REST APIs (With Ping Identity)\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/blockchain-chain-gang-mod.png 800w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/blockchain-chain-gang-mod-300x150.png 300w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/blockchain-chain-gang-mod-768x384.png 768w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/blockchain-chain-gang-mod-540x270.png 540w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/blockchain-chain-gang-mod-162x81.png 162w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/blockchain-chain-gang-mod-360x180.png 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">APIs (application programming interfaces) have proven perilous for modern enterprises\u2019 identity security platforms. According to identity management and privileged access management solution provider Ping Identity, 25% of surveyed security experts say their enterprise has over 1,000 APIs. 45% say they aren\u2019t confident in their security team\u2019s ability to detect bad actors accessing their APIs. 51% aren\u2019t sure their teams know about all the APIs on their network. \u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Now a new type of API is proving to be a challenge: REST APIs. <\/span><\/p>\n<p style=\"text-align: justify\"><div class=\"widget\"><div class=\"aside-card\">\t\t\t<div class=\"textwidget\"><p><a class=\"iam-inject\" href=\"https:\/\/solutionsreview.com\/identity-management\/get-a-free-privilieged-access-management-solutions-buyers-guide\/\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1682\" title=\"\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2020\/01\/PAM_BG_SB_800.gif\" alt=\"Download Link to Privileged Access Management Buyer's Guide\" width=\"800\" height=\"100\" \/><\/a><\/p>\n<\/div>\n\t\t<\/div><\/div><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">REST APIs are a new form of application access channels, representing the evolution of SOAP-based web services. In general, APIs allow applications\u2019 internal logic, functions, and data to become available to outside clients in a contained and controlled environment, allowing value to be shared among multiple clients. REST APIs are essential to fulfilling the modern enterprises\u2019 bring-your-own-devices culture, as they tend to be much more practical for mobile clients like native iOS or Android.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">How can you extend your identity security platforms to your REST APIs? How can your identity security scale with your enterprise perimeter and REST APIs? To answer these questions, we read through the \u201c<a href=\"https:\/\/solutionsreview.com\/identity-management\/ping-identity-extending-identity-security\/\" target=\"_blank\" rel=\"noopener noreferrer\">How to Extend Identity Security to Your APIs<\/a>\u201d white paper by Ping Identity. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Here are some of our key findings from the \u201c<a href=\"https:\/\/solutionsreview.com\/identity-management\/ping-identity-extending-identity-security\/\" target=\"_blank\" rel=\"noopener noreferrer\">How to Extend Identity Security to Your APIs<\/a>\u201d white paper: \u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>The Potential Dangers of Rest APIs <\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">According to Ping Identity, in previous security schemes, REST APIs were often authenticated by passwords attached to client calls. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Unfortunately, this password authentication protocol comes with significant privacy issues. Among them is the difficulty in turning off access for a given client if the need arises\u2014a fundamental component of modern identity and access management and identity governance solutions. Instead, shutting off access to REST APIs requires a full password change from users. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">In addition, REST APIs stored passwords on mobile devices. However, this creates an identity security policy that cannot scale to accommodate the digital perimeter or the growth of the enterprise. <\/span><\/p>\n<h3 style=\"text-align: justify\"><b>OAuth, SAML, and OpenID Connect\u00a0<\/b><span style=\"font-weight: 400\">\u00a0\u00a0<\/span><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">By contrast, token-based systems tend to scale far better with REST APIs than passwords do; they also tend to be far more secure as an authentication protocol. \u00a0As a result, new security specifications such as OAuth and OpenID Connect are vital securing REST APIs. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">As an example of how this works, Ping Identity takes a closer look at OAuth. OAuth 2.0 is an open standard protocol for authorization replacing usernames and passwords with access tokens. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Instead of presenting user credentials, users can use OAuth to present the token and thus improve their identity security. The APIs will validate the access token and return the information back to the mobile application. \u00a0\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">The other benefits of OAuth over simple passwords include providing a granular consent model for enterprises\u2019 identity security, defining multiple methods for acquiring access tokens, and leveraging HTTP headers. \u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">To learn more about securing your enterprise&#8217;s REST APIs, you can download the full the \u201c<a href=\"https:\/\/solutionsreview.com\/identity-management\/ping-identity-extending-identity-security\/\">How to Extend Identity Security to Your APIs<\/a>\u201d white paper by Ping Identity <a href=\"https:\/\/solutionsreview.com\/identity-management\/ping-identity-extending-identity-security\/\" target=\"_blank\" rel=\"noopener noreferrer\">here<\/a>.<\/span><\/p>\n<p style=\"text-align: justify\"><br \/>Widget not in any sidebars<br \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&nbsp; APIs (application programming interfaces) have proven perilous for modern enterprises\u2019 identity security platforms. According to identity management and privileged access management solution provider Ping Identity, 25% of surveyed security experts say their enterprise has over 1,000 APIs. 45% say they aren\u2019t confident in their security team\u2019s ability to detect bad actors accessing their APIs. [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":2501,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[5],"tags":[142,175,383,125,16,76,91,63,918],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Identity Security and REST APIs (With Ping Identity)<\/title>\n<meta name=\"description\" content=\"How can you extend your identity security platforms to your REST APIs? How can your identity security scale with your enterprise perimeter and REST APIs?\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/\",\"name\":\"Identity Security and REST APIs (With Ping Identity)\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/blockchain-chain-gang-mod.png\",\"datePublished\":\"2018-11-28T19:54:43+00:00\",\"dateModified\":\"2019-04-01T18:27:01+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"How can you extend your identity security platforms to your REST APIs? How can your identity security scale with your enterprise perimeter and REST APIs?\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/blockchain-chain-gang-mod.png\",\"contentUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/blockchain-chain-gang-mod.png\",\"width\":800,\"height\":400,\"caption\":\"What are The Top CIAM Use Cases for Enterprises?\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/identity-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Identity Security and REST APIs (With Ping Identity)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/\",\"name\":\"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services\",\"description\":\"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Identity Security and REST APIs (With Ping Identity)","description":"How can you extend your identity security platforms to your REST APIs? How can your identity security scale with your enterprise perimeter and REST APIs?","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/","url":"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/","name":"Identity Security and REST APIs (With Ping Identity)","isPartOf":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/blockchain-chain-gang-mod.png","datePublished":"2018-11-28T19:54:43+00:00","dateModified":"2019-04-01T18:27:01+00:00","author":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"How can you extend your identity security platforms to your REST APIs? How can your identity security scale with your enterprise perimeter and REST APIs?","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/#primaryimage","url":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/blockchain-chain-gang-mod.png","contentUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/blockchain-chain-gang-mod.png","width":800,"height":400,"caption":"What are The Top CIAM Use Cases for Enterprises?"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/identity-management\/identity-security-rest-apis-ping-identity\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/identity-management\/"},{"@type":"ListItem","position":2,"name":"Identity Security and REST APIs (With Ping Identity)"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/identity-management\/#website","url":"https:\/\/solutionsreview.com\/identity-management\/","name":"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services","description":"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/4006"}],"collection":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/comments?post=4006"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/4006\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media\/2501"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media?parent=4006"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/categories?post=4006"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/tags?post=4006"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}