SOA Software Announces Industry's First Integrated API Gateway Solution

The Flexible Virtual and Cloud Appliance Combines Security, Integration, Developer Community and Mediation Capabilities to Minimize Risk and Cost

Los Angeles, CA. - May 6, 2013 - SOA Software - a leading provider of Enterprise API Management and SOA Governance solutions - announced today the industry's first unified API Gateway establishing a new standard for an integrated solution that combines security, developer community, integration and mediation capabilities delivered both in the cloud and on-premise It offers policy-based enforcement mechanisms, mediation of security and identity services across technology domains, and management capabilities that simply and securely converge connectivity of APIs across mobile, web and cloud platforms. The API Gateway also enables enterprises to rapidly publish their internal services and APIs to a cloud hosted developer community, significantly reducing time and cost.

The SOA Software API Gateway is a virtual appliance that streamlines management, deployment, development and operation of APIs, enhancing security and regulatory compliance through authentication, authorization and audit capabilities. It provides central definition and management of security, routing, reliability, mediation, auditing and other operational governance policies across multiple instances. The API Gateway enables the fastest time to market for a comprehensive API solution that can be deployed as a single unit, on-premise, in-cloud or as a hybrid solution. Moreover, the same solution can be used to manage and secure SOA based services, minimizing the risk and cost for our enterprise customers.

The API Gateway transforms and mediates between XML and SOAP based services and JSON and REST without writing code. It also offers integrated process activity and scripting capabilities for sophisticated content mediation and orchestration, including the ability to execute JavaScript and other scripting languages natively within the gateway for message enrichment (such as call-outs and transformations) and mashups (new applications combining multiple backend services).

"The API Gateway allows organizations to quickly and cost-effectively develop, secure, manage and monitor their APIs in an increasingly connected world," said Alistair Farquharson, chief technology officer at SOA Software. "Customers are now able to extend their business processes and data for consumption as APIs by leveraging our unified API Gateway's unique ability to centrally secure and rapidly connect applications across platforms, devices and channels."

Reliable Security, Threat Prevention and Centralized Policy Management

The API Gateway provides a lightweight platform for securing and managing APIs. It supports a wide array of authentication and authorization schemes to secure access and provides a variety of transport and message level security options to prevent inflight tampering of valuable data. An integrated OAuth Server enables use of existing enterprise security systems to manage access rights to APIs and data. The API Gateway also includes threat protection features to detect and prevent denial of service (DoS) attacks, malformed messages or excessive XML/JSON depth and breadth. The API Gateway's architecture leverages a centralized Policy Manager to ensure uniform administration and management across the unified gateway fabric.

Accelerates Integration between Applications and Business Processes

Brokering authorized web services and applying security policies are key functions of the API Gateway. The API Gateway supports dynamic routing based on incoming messages or tagged metadata, transforms non-XML messages into formats more readily consumed by back-end services or applications and mediates security tokens between mobile, enterprise, web and partner applications based on policy. It also supports code-free virtualization and aggregation of multiple backend API's or services.

Developer Community Platform

The API Gateway provides a developer community platform as a connecting point to manage, share, and promote APIs and services in a secure, scalable environment to help enterprises drive developer adoption, reach new channels and gain business advantage, addressing all stages of the API lifecycle. It also provides an extensive set of social capabilities to promote the creation of a community of developers either inside or outside the enterprise, or a combination of both. It enables organizations to publish their internal services to a cloud hosted developer community, significantly reducing the time and cost to rollout an API solution.