Five simple strategies for securing APIs

APIs are an emerging technology for integrating applications using web technology. This approach is exploding
in popularity because it builds on well-understood techniques and leverages some existing infrastructure.
But it is a mistake to think we can secure APIs using the same methods and technology that we used to secure the conventional, browser-centric
web. While it is true that APIs share many of the same threats that plague the web, they are fundamentally different and have an entirely unique
risk profile that you need to manage.