Monday, 7 January 2019

How to choose the right API Manager for you


A lot of my customers are currently deciding which API Manager to use in their estate. With so many of them to choose from and a confusion of terminology this is not an easy task. I see RFP with long lists of criteria but I often think that the choice should be based on some other, softer, questions. I'll outline here some of how I help my customers choose which API Manager is right for them.

Thursday, 8 November 2018

API Security: More than just a throttling policy

API Management promises a nirvana of exposing data using well-known and simple techniques. Vendors focus on how easy it is to create the APIs and nearly always mention security as part of the API Lifecycle.

Yet, we've all seen the headlines screaming the latest security breach so, what does Security really mean when it comes to API Management?

In this post I try to differentiate the basic policies that all vendors discuss from the many other attack vectors that we need to be aware of.

Thursday, 11 October 2018

Kubernetes skills: Mulesoft & IBM

Kubernetes - a skills issue

Although the offerings I'm about to discuss are different, they're interesting enough to explore more closely. Both IBM and MuleSoft are claiming that the reason for implementing their solutions is because they perceive a lack of skills in containers and Kubernetes.

Tuesday, 14 August 2018

B2B onboarding - A technical or process problem?

When I first joined Lightwell I was struck by how everyone discusses "on-boarding". What was this magical and mystical thing? Why was it discussed in such reverential tones? Having analysed this further I'm still a little mystified as to why the hush tones but I'll put a few words down here about what I consider on-boarding to consist of and why it's as much a human process as a technical challenge.

Tuesday, 29 May 2018

EDI Vs API: External Vs Internal Communications

Last year I discussed how I saw the evolution of APIs and EDI evolving.  I'm going to grow that argument here to say that agile methodologies have more to do with API management's current proliferation than the usurping of EDI.