SlideShare uma empresa Scribd logo
1 de 18
Baixar para ler offline
Presented by Joshua Norrid, Apigee and Peter Miron, Apcera
Managing Sensitive Information in an
API and Microservices World
Innovation, Meet Trust.
+
©2016 Apigee Corp. All Rights Reserved.
• Customers/Consumers want CONVENIENCE.
• All parties desire CONTROL of sensitive data.
• All parties demand CONSISTENCY of experience and process.
• Sensitive Data Providers must apply CONSTRAINTS to
CONSUMPTION.
• Sensitive Data Providers must achieve and maintain COMPLIANCE.
3
A “Chain of Custody” is required for managing sensitive
information with APIs in the digital world.
Why Are We Talking About This?
4
Any Application
๏Cloud Native Applications
๏Legacy x86 Applications
๏Containerized Applications and more!
Any Infrastructure
Composition, Orchestration & Deployment
Networking + Nano-Segmentation
Application Service Management
Policy &
Enforcement
etc.
Apcera: A Trusted Application Management Platform
Composition, Orchestration & Deployment
Networking + Nano-Segmentation
Application Service Management
Workload
Composition
Workload
Resource Management
Workload
Scheduling and Placement
Workload
Communication and Connectivity
Policy and Automated Enforcement
©2016 Apigee Corp. All Rights Reserved. 5
The Digital Value Chain
©2016 Apigee Corp. All Rights Reserved. 6
The Extended Digital Value Chain
Apigee + Apcera: Capabilities Magnified
©2016 Apigee Corp. All Rights Reserved.
Reporting
Service
Report
Request
Report
Service Consumers
A. Business Partners
B. Regulatory Agencies
C. Compliance
D. Legal Requests
Report Information Classification
A. Customer Privacy Related
B. Business Critical
C. Trade Secret
Trace Data Requests and Fulfillment at Each System / Application Handoff
• Who requested what data? When?
• Who else has access to that data?
• What services participated in the transaction to produce the report?
• What policies enabled that participation in the transaction?
• Are we certain no one and no other services have access to that data?
General Use Case
Trusted
3rd Party
Consumer
Example
©2016 Apigee Corp. All Rights Reserved.
©2016 Apigee Corp. All Rights Reserved. 11
©2016 Apigee Corp. All Rights Reserved. 12
©2016 Apigee Corp. All Rights Reserved. 13
©2016 Apigee Corp. All Rights Reserved.
©2016 Apigee Corp. All Rights Reserved.
©2016 Apigee Corp. All Rights Reserved.
©2016 Apigee Corp. All Rights Reserved. 17
The Extended Digital Value Chain
Learn More at
www.apcera.com
Thank You!
Joshua Norrid
@JoshuaNorrid
jnorrid@apigee.com
Peter Miron
@PeterMiron
peter.miron@apcera.com

Mais conteúdo relacionado

Mais procurados

Enough talking - it's time to start doing
Enough talking - it's time to start doingEnough talking - it's time to start doing
Enough talking - it's time to start doingApigee | Google Cloud
 
The Four Transformative Forces of the API Management Market
The Four Transformative Forces of the API Management MarketThe Four Transformative Forces of the API Management Market
The Four Transformative Forces of the API Management MarketApigee | Google Cloud
 
Microservices Done Right: Key Ingredients for Microservices Success
Microservices Done Right: Key Ingredients for Microservices SuccessMicroservices Done Right: Key Ingredients for Microservices Success
Microservices Done Right: Key Ingredients for Microservices SuccessApigee | Google Cloud
 
The Digital Retailer: Finding and Engaging Your Customers
The Digital Retailer: Finding and Engaging Your CustomersThe Digital Retailer: Finding and Engaging Your Customers
The Digital Retailer: Finding and Engaging Your CustomersApigee | Google Cloud
 
L.L.Bean’s API Journey: Digital Commerce Done Right
L.L.Bean’s API Journey: Digital Commerce Done RightL.L.Bean’s API Journey: Digital Commerce Done Right
L.L.Bean’s API Journey: Digital Commerce Done RightApigee | Google Cloud
 
Apigee and Accenture Webcast - Accenture Technology Vision 2013 - An API Cent...
Apigee and Accenture Webcast - Accenture Technology Vision 2013 - An API Cent...Apigee and Accenture Webcast - Accenture Technology Vision 2013 - An API Cent...
Apigee and Accenture Webcast - Accenture Technology Vision 2013 - An API Cent...Apigee | Google Cloud
 
Open API and API Management - Introduction and Comparison of Products: TIBCO ...
Open API and API Management - Introduction and Comparison of Products: TIBCO ...Open API and API Management - Introduction and Comparison of Products: TIBCO ...
Open API and API Management - Introduction and Comparison of Products: TIBCO ...Kai Wähner
 
API Management Workshop (at Startupbootcamp Berlin)
API Management Workshop (at Startupbootcamp Berlin)API Management Workshop (at Startupbootcamp Berlin)
API Management Workshop (at Startupbootcamp Berlin)3scale
 
APIs in the Enterprise - Lessons Learned
APIs in the Enterprise - Lessons Learned APIs in the Enterprise - Lessons Learned
APIs in the Enterprise - Lessons Learned Apigee | Google Cloud
 
The Business of APIs: Your 100-Day API Business Plan
The Business of APIs: Your 100-Day API Business PlanThe Business of APIs: Your 100-Day API Business Plan
The Business of APIs: Your 100-Day API Business PlanApigee | Google Cloud
 
Managing the Complexity of Microservices Deployments
Managing the Complexity of Microservices DeploymentsManaging the Complexity of Microservices Deployments
Managing the Complexity of Microservices DeploymentsApigee | Google Cloud
 
Becoming the Uncarrier: T-Mobile's Digital Journey
Becoming the Uncarrier: T-Mobile's Digital JourneyBecoming the Uncarrier: T-Mobile's Digital Journey
Becoming the Uncarrier: T-Mobile's Digital JourneyApigee | Google Cloud
 
API-first, going beyond SOA, ESB & Integration
API-first, going beyond SOA, ESB & IntegrationAPI-first, going beyond SOA, ESB & Integration
API-first, going beyond SOA, ESB & IntegrationApigee | Google Cloud
 
London Adapt or Die: Opening Keynote with Chet Kapoor
London Adapt or Die: Opening Keynote with Chet KapoorLondon Adapt or Die: Opening Keynote with Chet Kapoor
London Adapt or Die: Opening Keynote with Chet KapoorApigee | Google Cloud
 

Mais procurados (20)

Enough talking - it's time to start doing
Enough talking - it's time to start doingEnough talking - it's time to start doing
Enough talking - it's time to start doing
 
The Four Transformative Forces of the API Management Market
The Four Transformative Forces of the API Management MarketThe Four Transformative Forces of the API Management Market
The Four Transformative Forces of the API Management Market
 
Microservices Done Right: Key Ingredients for Microservices Success
Microservices Done Right: Key Ingredients for Microservices SuccessMicroservices Done Right: Key Ingredients for Microservices Success
Microservices Done Right: Key Ingredients for Microservices Success
 
The Digital Retailer: Finding and Engaging Your Customers
The Digital Retailer: Finding and Engaging Your CustomersThe Digital Retailer: Finding and Engaging Your Customers
The Digital Retailer: Finding and Engaging Your Customers
 
L.L.Bean’s API Journey: Digital Commerce Done Right
L.L.Bean’s API Journey: Digital Commerce Done RightL.L.Bean’s API Journey: Digital Commerce Done Right
L.L.Bean’s API Journey: Digital Commerce Done Right
 
London Adapt or Die: Opening Keynot
London Adapt or Die: Opening KeynotLondon Adapt or Die: Opening Keynot
London Adapt or Die: Opening Keynot
 
Walgreens at a glance
Walgreens at a glanceWalgreens at a glance
Walgreens at a glance
 
Apigee and Accenture Webcast - Accenture Technology Vision 2013 - An API Cent...
Apigee and Accenture Webcast - Accenture Technology Vision 2013 - An API Cent...Apigee and Accenture Webcast - Accenture Technology Vision 2013 - An API Cent...
Apigee and Accenture Webcast - Accenture Technology Vision 2013 - An API Cent...
 
Demo: New open banking platform
Demo: New open banking platformDemo: New open banking platform
Demo: New open banking platform
 
Open API and API Management - Introduction and Comparison of Products: TIBCO ...
Open API and API Management - Introduction and Comparison of Products: TIBCO ...Open API and API Management - Introduction and Comparison of Products: TIBCO ...
Open API and API Management - Introduction and Comparison of Products: TIBCO ...
 
API Management Workshop (at Startupbootcamp Berlin)
API Management Workshop (at Startupbootcamp Berlin)API Management Workshop (at Startupbootcamp Berlin)
API Management Workshop (at Startupbootcamp Berlin)
 
APIs in the Enterprise - Lessons Learned
APIs in the Enterprise - Lessons Learned APIs in the Enterprise - Lessons Learned
APIs in the Enterprise - Lessons Learned
 
The Business of APIs: Your 100-Day API Business Plan
The Business of APIs: Your 100-Day API Business PlanThe Business of APIs: Your 100-Day API Business Plan
The Business of APIs: Your 100-Day API Business Plan
 
Apigee Edge Product Demo
Apigee Edge Product DemoApigee Edge Product Demo
Apigee Edge Product Demo
 
Managing the Complexity of Microservices Deployments
Managing the Complexity of Microservices DeploymentsManaging the Complexity of Microservices Deployments
Managing the Complexity of Microservices Deployments
 
Pitney Bowes at a glance
Pitney Bowes at a glancePitney Bowes at a glance
Pitney Bowes at a glance
 
Becoming the Uncarrier: T-Mobile's Digital Journey
Becoming the Uncarrier: T-Mobile's Digital JourneyBecoming the Uncarrier: T-Mobile's Digital Journey
Becoming the Uncarrier: T-Mobile's Digital Journey
 
Why API Management is Not Enough
Why API Management is Not EnoughWhy API Management is Not Enough
Why API Management is Not Enough
 
API-first, going beyond SOA, ESB & Integration
API-first, going beyond SOA, ESB & IntegrationAPI-first, going beyond SOA, ESB & Integration
API-first, going beyond SOA, ESB & Integration
 
London Adapt or Die: Opening Keynote with Chet Kapoor
London Adapt or Die: Opening Keynote with Chet KapoorLondon Adapt or Die: Opening Keynote with Chet Kapoor
London Adapt or Die: Opening Keynote with Chet Kapoor
 

Destaque

Adapt or Die: Opening Keynote with Chet Kapoor
Adapt or Die: Opening Keynote with Chet KapoorAdapt or Die: Opening Keynote with Chet Kapoor
Adapt or Die: Opening Keynote with Chet KapoorApigee | Google Cloud
 
London Adapt or Die: Kubernetes, Containers and Cloud - The MoD Story
London Adapt or Die: Kubernetes, Containers and Cloud - The MoD StoryLondon Adapt or Die: Kubernetes, Containers and Cloud - The MoD Story
London Adapt or Die: Kubernetes, Containers and Cloud - The MoD StoryApigee | Google Cloud
 
Mindbody: A Digital Transformation Story
Mindbody: A Digital Transformation StoryMindbody: A Digital Transformation Story
Mindbody: A Digital Transformation StoryApigee | Google Cloud
 
Adapt or Die Sydney - 5 Things Developers Should Know About Serverless
Adapt or Die Sydney - 5 Things Developers Should Know About ServerlessAdapt or Die Sydney - 5 Things Developers Should Know About Serverless
Adapt or Die Sydney - 5 Things Developers Should Know About ServerlessApigee | Google Cloud
 
Adapt or Die DevJam: San Francisco, Sept 27 2016
Adapt or Die DevJam: San Francisco, Sept 27 2016Adapt or Die DevJam: San Francisco, Sept 27 2016
Adapt or Die DevJam: San Francisco, Sept 27 2016Apigee | Google Cloud
 
Adapt or Die: Keynote with Anant Jhingran
Adapt or Die: Keynote with Anant JhingranAdapt or Die: Keynote with Anant Jhingran
Adapt or Die: Keynote with Anant JhingranApigee | Google Cloud
 
Adapt or Die: Keynote with Greg Brail
Adapt or Die: Keynote with Greg BrailAdapt or Die: Keynote with Greg Brail
Adapt or Die: Keynote with Greg BrailApigee | Google Cloud
 
London Adapt or Die: Five Things Enterprises Should Know About Serverless
London Adapt or Die: Five Things Enterprises Should Know About ServerlessLondon Adapt or Die: Five Things Enterprises Should Know About Serverless
London Adapt or Die: Five Things Enterprises Should Know About ServerlessApigee | Google Cloud
 
Pivotal Cloud Foundry: Cloud Native Architecture
Pivotal Cloud Foundry: Cloud Native ArchitecturePivotal Cloud Foundry: Cloud Native Architecture
Pivotal Cloud Foundry: Cloud Native ArchitectureApigee | Google Cloud
 
London Adapt or Die: Closing Keynote — Adapt Now!
London Adapt or Die: Closing Keynote — Adapt Now!London Adapt or Die: Closing Keynote — Adapt Now!
London Adapt or Die: Closing Keynote — Adapt Now!Apigee | Google Cloud
 
I Love APIs 2015 : Zero to Thousands TPS Private Cloud Operations Workshop
I Love APIs 2015 : Zero to Thousands TPS Private Cloud Operations WorkshopI Love APIs 2015 : Zero to Thousands TPS Private Cloud Operations Workshop
I Love APIs 2015 : Zero to Thousands TPS Private Cloud Operations WorkshopApigee | Google Cloud
 
How To Create Presentation Slides That Are Out Of This World by @slidecomet @...
How To Create Presentation Slides That Are Out Of This World by @slidecomet @...How To Create Presentation Slides That Are Out Of This World by @slidecomet @...
How To Create Presentation Slides That Are Out Of This World by @slidecomet @...HighSpark | Visual Storytelling Agency
 
UX, ethnography and possibilities: for Libraries, Museums and Archives
UX, ethnography and possibilities: for Libraries, Museums and ArchivesUX, ethnography and possibilities: for Libraries, Museums and Archives
UX, ethnography and possibilities: for Libraries, Museums and ArchivesNed Potter
 
Designing Teams for Emerging Challenges
Designing Teams for Emerging ChallengesDesigning Teams for Emerging Challenges
Designing Teams for Emerging ChallengesAaron Irizarry
 
Visual Design with Data
Visual Design with DataVisual Design with Data
Visual Design with DataSeth Familian
 
3 Things Every Sales Team Needs to Be Thinking About in 2017
3 Things Every Sales Team Needs to Be Thinking About in 20173 Things Every Sales Team Needs to Be Thinking About in 2017
3 Things Every Sales Team Needs to Be Thinking About in 2017Drift
 

Destaque (20)

API Governance in the Enterprise
API Governance in the EnterpriseAPI Governance in the Enterprise
API Governance in the Enterprise
 
Adapt or Die: Opening Keynote with Chet Kapoor
Adapt or Die: Opening Keynote with Chet KapoorAdapt or Die: Opening Keynote with Chet Kapoor
Adapt or Die: Opening Keynote with Chet Kapoor
 
London Adapt or Die: Kubernetes, Containers and Cloud - The MoD Story
London Adapt or Die: Kubernetes, Containers and Cloud - The MoD StoryLondon Adapt or Die: Kubernetes, Containers and Cloud - The MoD Story
London Adapt or Die: Kubernetes, Containers and Cloud - The MoD Story
 
Mindbody: A Digital Transformation Story
Mindbody: A Digital Transformation StoryMindbody: A Digital Transformation Story
Mindbody: A Digital Transformation Story
 
Adapt or Die Sydney - 5 Things Developers Should Know About Serverless
Adapt or Die Sydney - 5 Things Developers Should Know About ServerlessAdapt or Die Sydney - 5 Things Developers Should Know About Serverless
Adapt or Die Sydney - 5 Things Developers Should Know About Serverless
 
Adapt or Die DevJam: San Francisco, Sept 27 2016
Adapt or Die DevJam: San Francisco, Sept 27 2016Adapt or Die DevJam: San Francisco, Sept 27 2016
Adapt or Die DevJam: San Francisco, Sept 27 2016
 
API Management and Kubernetes
API Management and KubernetesAPI Management and Kubernetes
API Management and Kubernetes
 
Adapt or Die: Keynote with Anant Jhingran
Adapt or Die: Keynote with Anant JhingranAdapt or Die: Keynote with Anant Jhingran
Adapt or Die: Keynote with Anant Jhingran
 
Adapt or Die: Keynote with Greg Brail
Adapt or Die: Keynote with Greg BrailAdapt or Die: Keynote with Greg Brail
Adapt or Die: Keynote with Greg Brail
 
London Adapt or Die: Five Things Enterprises Should Know About Serverless
London Adapt or Die: Five Things Enterprises Should Know About ServerlessLondon Adapt or Die: Five Things Enterprises Should Know About Serverless
London Adapt or Die: Five Things Enterprises Should Know About Serverless
 
Pivotal Cloud Foundry: Cloud Native Architecture
Pivotal Cloud Foundry: Cloud Native ArchitecturePivotal Cloud Foundry: Cloud Native Architecture
Pivotal Cloud Foundry: Cloud Native Architecture
 
London Adapt or Die: Lunch keynote
London Adapt or Die: Lunch keynoteLondon Adapt or Die: Lunch keynote
London Adapt or Die: Lunch keynote
 
London Adapt or Die: Closing Keynote — Adapt Now!
London Adapt or Die: Closing Keynote — Adapt Now!London Adapt or Die: Closing Keynote — Adapt Now!
London Adapt or Die: Closing Keynote — Adapt Now!
 
I Love APIs 2015 : Zero to Thousands TPS Private Cloud Operations Workshop
I Love APIs 2015 : Zero to Thousands TPS Private Cloud Operations WorkshopI Love APIs 2015 : Zero to Thousands TPS Private Cloud Operations Workshop
I Love APIs 2015 : Zero to Thousands TPS Private Cloud Operations Workshop
 
How To Create Presentation Slides That Are Out Of This World by @slidecomet @...
How To Create Presentation Slides That Are Out Of This World by @slidecomet @...How To Create Presentation Slides That Are Out Of This World by @slidecomet @...
How To Create Presentation Slides That Are Out Of This World by @slidecomet @...
 
UX, ethnography and possibilities: for Libraries, Museums and Archives
UX, ethnography and possibilities: for Libraries, Museums and ArchivesUX, ethnography and possibilities: for Libraries, Museums and Archives
UX, ethnography and possibilities: for Libraries, Museums and Archives
 
Designing Teams for Emerging Challenges
Designing Teams for Emerging ChallengesDesigning Teams for Emerging Challenges
Designing Teams for Emerging Challenges
 
SlideShare 101
SlideShare 101SlideShare 101
SlideShare 101
 
Visual Design with Data
Visual Design with DataVisual Design with Data
Visual Design with Data
 
3 Things Every Sales Team Needs to Be Thinking About in 2017
3 Things Every Sales Team Needs to Be Thinking About in 20173 Things Every Sales Team Needs to Be Thinking About in 2017
3 Things Every Sales Team Needs to Be Thinking About in 2017
 

Semelhante a Managing Sensitive Information in an API and Microservices World

Creating Trust for the Internet of Things
Creating Trust for the Internet of ThingsCreating Trust for the Internet of Things
Creating Trust for the Internet of ThingsPECB
 
Managed services for SXE Installation
 Managed services for SXE Installation Managed services for SXE Installation
Managed services for SXE InstallationAmit Panchal
 
apidays LIVE Australia 2021 - Planning Your Steps to Data Economy Using APIOp...
apidays LIVE Australia 2021 - Planning Your Steps to Data Economy Using APIOp...apidays LIVE Australia 2021 - Planning Your Steps to Data Economy Using APIOp...
apidays LIVE Australia 2021 - Planning Your Steps to Data Economy Using APIOp...apidays
 
Digital Healthcare – Realizing Interoperability with APIs
Digital Healthcare – Realizing Interoperability with APIsDigital Healthcare – Realizing Interoperability with APIs
Digital Healthcare – Realizing Interoperability with APIsAkana
 
Big Data LDN 2018: DATA APIS DON’T DISCRIMINATE
Big Data LDN 2018: DATA APIS DON’T DISCRIMINATEBig Data LDN 2018: DATA APIS DON’T DISCRIMINATE
Big Data LDN 2018: DATA APIS DON’T DISCRIMINATEMatt Stubbs
 
APIdays Open Banking & Fintech: Workshop - Financial Services Use Cases for APIs
APIdays Open Banking & Fintech: Workshop - Financial Services Use Cases for APIsAPIdays Open Banking & Fintech: Workshop - Financial Services Use Cases for APIs
APIdays Open Banking & Fintech: Workshop - Financial Services Use Cases for APIsJeremy Brown
 
Big Apps, Big Data, and Why "Connected Things" are not the IoT
Big Apps, Big Data, and Why "Connected Things" are not the IoTBig Apps, Big Data, and Why "Connected Things" are not the IoT
Big Apps, Big Data, and Why "Connected Things" are not the IoTApigee | Google Cloud
 
Life Science Big Data Big Difference-01Sep2014
Life Science Big Data Big Difference-01Sep2014 Life Science Big Data Big Difference-01Sep2014
Life Science Big Data Big Difference-01Sep2014 Fran Daly
 
Using Kafka in Your Organization with Real-Time User Insights for a Customer ...
Using Kafka in Your Organization with Real-Time User Insights for a Customer ...Using Kafka in Your Organization with Real-Time User Insights for a Customer ...
Using Kafka in Your Organization with Real-Time User Insights for a Customer ...confluent
 
[Workshop] Digital Transformation: Breaking Down Boundaries for Greater Conne...
[Workshop] Digital Transformation: Breaking Down Boundaries for Greater Conne...[Workshop] Digital Transformation: Breaking Down Boundaries for Greater Conne...
[Workshop] Digital Transformation: Breaking Down Boundaries for Greater Conne...WSO2
 
Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...
Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...
Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...ForgeRock
 
apidays Paris 2022 - Combining user feedback with API metrics to improve DX, ...
apidays Paris 2022 - Combining user feedback with API metrics to improve DX, ...apidays Paris 2022 - Combining user feedback with API metrics to improve DX, ...
apidays Paris 2022 - Combining user feedback with API metrics to improve DX, ...apidays
 
apidays LIVE Hong Kong 2021 - Planning Your Steps to Data Economy Using APIOp...
apidays LIVE Hong Kong 2021 - Planning Your Steps to Data Economy Using APIOp...apidays LIVE Hong Kong 2021 - Planning Your Steps to Data Economy Using APIOp...
apidays LIVE Hong Kong 2021 - Planning Your Steps to Data Economy Using APIOp...apidays
 
Disrupt or be disrupted – Using secure APIs to drive digital transformation
Disrupt or be disrupted – Using secure APIs to drive digital transformationDisrupt or be disrupted – Using secure APIs to drive digital transformation
Disrupt or be disrupted – Using secure APIs to drive digital transformationRogue Wave Software
 
Digital Platfrom 4 Summary
Digital Platfrom 4 SummaryDigital Platfrom 4 Summary
Digital Platfrom 4 SummaryIan Thomas
 
Ariba, SAP Procurement and Business Network Roadmap [New York City]
Ariba, SAP Procurement and Business Network Roadmap [New York City]Ariba, SAP Procurement and Business Network Roadmap [New York City]
Ariba, SAP Procurement and Business Network Roadmap [New York City]SAP Ariba
 
Service Integration for Space Mission Data (final)
Service Integration for Space Mission Data (final)Service Integration for Space Mission Data (final)
Service Integration for Space Mission Data (final)Salvatore Iovieno
 
Lazada & Redmart Affiliate Marketing Program: APP First Strategy
 Lazada & Redmart Affiliate Marketing Program: APP First Strategy Lazada & Redmart Affiliate Marketing Program: APP First Strategy
Lazada & Redmart Affiliate Marketing Program: APP First StrategyAffiliate Summit
 

Semelhante a Managing Sensitive Information in an API and Microservices World (20)

Creating Trust for the Internet of Things
Creating Trust for the Internet of ThingsCreating Trust for the Internet of Things
Creating Trust for the Internet of Things
 
Managed services for SXE Installation
 Managed services for SXE Installation Managed services for SXE Installation
Managed services for SXE Installation
 
apidays LIVE Australia 2021 - Planning Your Steps to Data Economy Using APIOp...
apidays LIVE Australia 2021 - Planning Your Steps to Data Economy Using APIOp...apidays LIVE Australia 2021 - Planning Your Steps to Data Economy Using APIOp...
apidays LIVE Australia 2021 - Planning Your Steps to Data Economy Using APIOp...
 
Digital Healthcare – Realizing Interoperability with APIs
Digital Healthcare – Realizing Interoperability with APIsDigital Healthcare – Realizing Interoperability with APIs
Digital Healthcare – Realizing Interoperability with APIs
 
Apigee Products Overview
Apigee Products OverviewApigee Products Overview
Apigee Products Overview
 
TEC-Roundtable-API
TEC-Roundtable-APITEC-Roundtable-API
TEC-Roundtable-API
 
Big Data LDN 2018: DATA APIS DON’T DISCRIMINATE
Big Data LDN 2018: DATA APIS DON’T DISCRIMINATEBig Data LDN 2018: DATA APIS DON’T DISCRIMINATE
Big Data LDN 2018: DATA APIS DON’T DISCRIMINATE
 
APIdays Open Banking & Fintech: Workshop - Financial Services Use Cases for APIs
APIdays Open Banking & Fintech: Workshop - Financial Services Use Cases for APIsAPIdays Open Banking & Fintech: Workshop - Financial Services Use Cases for APIs
APIdays Open Banking & Fintech: Workshop - Financial Services Use Cases for APIs
 
Big Apps, Big Data, and Why "Connected Things" are not the IoT
Big Apps, Big Data, and Why "Connected Things" are not the IoTBig Apps, Big Data, and Why "Connected Things" are not the IoT
Big Apps, Big Data, and Why "Connected Things" are not the IoT
 
Life Science Big Data Big Difference-01Sep2014
Life Science Big Data Big Difference-01Sep2014 Life Science Big Data Big Difference-01Sep2014
Life Science Big Data Big Difference-01Sep2014
 
Using Kafka in Your Organization with Real-Time User Insights for a Customer ...
Using Kafka in Your Organization with Real-Time User Insights for a Customer ...Using Kafka in Your Organization with Real-Time User Insights for a Customer ...
Using Kafka in Your Organization with Real-Time User Insights for a Customer ...
 
[Workshop] Digital Transformation: Breaking Down Boundaries for Greater Conne...
[Workshop] Digital Transformation: Breaking Down Boundaries for Greater Conne...[Workshop] Digital Transformation: Breaking Down Boundaries for Greater Conne...
[Workshop] Digital Transformation: Breaking Down Boundaries for Greater Conne...
 
Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...
Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...
Doing Authorisation, Consent, and Delegation Right with UMA - Paris Identity ...
 
apidays Paris 2022 - Combining user feedback with API metrics to improve DX, ...
apidays Paris 2022 - Combining user feedback with API metrics to improve DX, ...apidays Paris 2022 - Combining user feedback with API metrics to improve DX, ...
apidays Paris 2022 - Combining user feedback with API metrics to improve DX, ...
 
apidays LIVE Hong Kong 2021 - Planning Your Steps to Data Economy Using APIOp...
apidays LIVE Hong Kong 2021 - Planning Your Steps to Data Economy Using APIOp...apidays LIVE Hong Kong 2021 - Planning Your Steps to Data Economy Using APIOp...
apidays LIVE Hong Kong 2021 - Planning Your Steps to Data Economy Using APIOp...
 
Disrupt or be disrupted – Using secure APIs to drive digital transformation
Disrupt or be disrupted – Using secure APIs to drive digital transformationDisrupt or be disrupted – Using secure APIs to drive digital transformation
Disrupt or be disrupted – Using secure APIs to drive digital transformation
 
Digital Platfrom 4 Summary
Digital Platfrom 4 SummaryDigital Platfrom 4 Summary
Digital Platfrom 4 Summary
 
Ariba, SAP Procurement and Business Network Roadmap [New York City]
Ariba, SAP Procurement and Business Network Roadmap [New York City]Ariba, SAP Procurement and Business Network Roadmap [New York City]
Ariba, SAP Procurement and Business Network Roadmap [New York City]
 
Service Integration for Space Mission Data (final)
Service Integration for Space Mission Data (final)Service Integration for Space Mission Data (final)
Service Integration for Space Mission Data (final)
 
Lazada & Redmart Affiliate Marketing Program: APP First Strategy
 Lazada & Redmart Affiliate Marketing Program: APP First Strategy Lazada & Redmart Affiliate Marketing Program: APP First Strategy
Lazada & Redmart Affiliate Marketing Program: APP First Strategy
 

Mais de Apigee | Google Cloud

Monetization: Unlock More Value from Your APIs
Monetization: Unlock More Value from Your APIs Monetization: Unlock More Value from Your APIs
Monetization: Unlock More Value from Your APIs Apigee | Google Cloud
 
AccuWeather: Recasting API Experiences in a Developer-First World
AccuWeather: Recasting API Experiences in a Developer-First WorldAccuWeather: Recasting API Experiences in a Developer-First World
AccuWeather: Recasting API Experiences in a Developer-First WorldApigee | Google Cloud
 
Which Application Modernization Pattern Is Right For You?
Which Application Modernization Pattern Is Right For You?Which Application Modernization Pattern Is Right For You?
Which Application Modernization Pattern Is Right For You?Apigee | Google Cloud
 
London adapt or-die opening keynote chet kapoor
London adapt or-die opening keynote chet kapoorLondon adapt or-die opening keynote chet kapoor
London adapt or-die opening keynote chet kapoorApigee | Google Cloud
 
Adapt or Die: A Microservices Story at Google
Adapt or Die: A Microservices Story at GoogleAdapt or Die: A Microservices Story at Google
Adapt or Die: A Microservices Story at GoogleApigee | Google Cloud
 
Adapt or Die: Serverless Microservices
Adapt or Die: Serverless MicroservicesAdapt or Die: Serverless Microservices
Adapt or Die: Serverless MicroservicesApigee | Google Cloud
 

Mais de Apigee | Google Cloud (12)

How Secure Are Your APIs?
How Secure Are Your APIs?How Secure Are Your APIs?
How Secure Are Your APIs?
 
Magazine Luiza at a glance (1)
Magazine Luiza at a glance (1)Magazine Luiza at a glance (1)
Magazine Luiza at a glance (1)
 
Monetization: Unlock More Value from Your APIs
Monetization: Unlock More Value from Your APIs Monetization: Unlock More Value from Your APIs
Monetization: Unlock More Value from Your APIs
 
Apigee Demo: API Platform Overview
Apigee Demo: API Platform OverviewApigee Demo: API Platform Overview
Apigee Demo: API Platform Overview
 
Ticketmaster at a glance
Ticketmaster at a glanceTicketmaster at a glance
Ticketmaster at a glance
 
AccuWeather: Recasting API Experiences in a Developer-First World
AccuWeather: Recasting API Experiences in a Developer-First WorldAccuWeather: Recasting API Experiences in a Developer-First World
AccuWeather: Recasting API Experiences in a Developer-First World
 
Which Application Modernization Pattern Is Right For You?
Which Application Modernization Pattern Is Right For You?Which Application Modernization Pattern Is Right For You?
Which Application Modernization Pattern Is Right For You?
 
Apigee Product Roadmap Part 2
Apigee Product Roadmap Part 2Apigee Product Roadmap Part 2
Apigee Product Roadmap Part 2
 
Apigee Edge: Intro to Microgateway
Apigee Edge: Intro to MicrogatewayApigee Edge: Intro to Microgateway
Apigee Edge: Intro to Microgateway
 
London adapt or-die opening keynote chet kapoor
London adapt or-die opening keynote chet kapoorLondon adapt or-die opening keynote chet kapoor
London adapt or-die opening keynote chet kapoor
 
Adapt or Die: A Microservices Story at Google
Adapt or Die: A Microservices Story at GoogleAdapt or Die: A Microservices Story at Google
Adapt or Die: A Microservices Story at Google
 
Adapt or Die: Serverless Microservices
Adapt or Die: Serverless MicroservicesAdapt or Die: Serverless Microservices
Adapt or Die: Serverless Microservices
 

Último

Webinar_050417_LeClair12345666777889.ppt
Webinar_050417_LeClair12345666777889.pptWebinar_050417_LeClair12345666777889.ppt
Webinar_050417_LeClair12345666777889.pptkinjal48
 
Enterprise Document Management System - Qualityze Inc
Enterprise Document Management System - Qualityze IncEnterprise Document Management System - Qualityze Inc
Enterprise Document Management System - Qualityze Incrobinwilliams8624
 
Introduction-to-Software-Development-Outsourcing.pptx
Introduction-to-Software-Development-Outsourcing.pptxIntroduction-to-Software-Development-Outsourcing.pptx
Introduction-to-Software-Development-Outsourcing.pptxIntelliSource Technologies
 
Big Data Bellevue Meetup | Enhancing Python Data Loading in the Cloud for AI/ML
Big Data Bellevue Meetup | Enhancing Python Data Loading in the Cloud for AI/MLBig Data Bellevue Meetup | Enhancing Python Data Loading in the Cloud for AI/ML
Big Data Bellevue Meetup | Enhancing Python Data Loading in the Cloud for AI/MLAlluxio, Inc.
 
JS-Experts - Cybersecurity for Generative AI
JS-Experts - Cybersecurity for Generative AIJS-Experts - Cybersecurity for Generative AI
JS-Experts - Cybersecurity for Generative AIIvo Andreev
 
ARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdf
ARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdfARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdf
ARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdfTobias Schneck
 
AI Embracing Every Shade of Human Beauty
AI Embracing Every Shade of Human BeautyAI Embracing Every Shade of Human Beauty
AI Embracing Every Shade of Human BeautyRaymond Okyere-Forson
 
How Does the Epitome of Spyware Differ from Other Malicious Software?
How Does the Epitome of Spyware Differ from Other Malicious Software?How Does the Epitome of Spyware Differ from Other Malicious Software?
How Does the Epitome of Spyware Differ from Other Malicious Software?AmeliaSmith90
 
Kawika Technologies pvt ltd Software Development Company in Trivandrum
Kawika Technologies pvt ltd Software Development Company in TrivandrumKawika Technologies pvt ltd Software Development Company in Trivandrum
Kawika Technologies pvt ltd Software Development Company in TrivandrumKawika Technologies
 
Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...
Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...
Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...OnePlan Solutions
 
IA Generativa y Grafos de Neo4j: RAG time
IA Generativa y Grafos de Neo4j: RAG timeIA Generativa y Grafos de Neo4j: RAG time
IA Generativa y Grafos de Neo4j: RAG timeNeo4j
 
Watermarking in Source Code: Applications and Security Challenges
Watermarking in Source Code: Applications and Security ChallengesWatermarking in Source Code: Applications and Security Challenges
Watermarking in Source Code: Applications and Security ChallengesShyamsundar Das
 
Growing Oxen: channel operators and retries
Growing Oxen: channel operators and retriesGrowing Oxen: channel operators and retries
Growing Oxen: channel operators and retriesSoftwareMill
 
online pdf editor software solutions.pdf
online pdf editor software solutions.pdfonline pdf editor software solutions.pdf
online pdf editor software solutions.pdfMeon Technology
 
OpenChain Webinar: Universal CVSS Calculator
OpenChain Webinar: Universal CVSS CalculatorOpenChain Webinar: Universal CVSS Calculator
OpenChain Webinar: Universal CVSS CalculatorShane Coughlan
 
Cybersecurity Challenges with Generative AI - for Good and Bad
Cybersecurity Challenges with Generative AI - for Good and BadCybersecurity Challenges with Generative AI - for Good and Bad
Cybersecurity Challenges with Generative AI - for Good and BadIvo Andreev
 
Top Software Development Trends in 2024
Top Software Development Trends in  2024Top Software Development Trends in  2024
Top Software Development Trends in 2024Mind IT Systems
 
Streamlining Your Application Builds with Cloud Native Buildpacks
Streamlining Your Application Builds  with Cloud Native BuildpacksStreamlining Your Application Builds  with Cloud Native Buildpacks
Streamlining Your Application Builds with Cloud Native BuildpacksVish Abrams
 
eAuditor Audits & Inspections - conduct field inspections
eAuditor Audits & Inspections - conduct field inspectionseAuditor Audits & Inspections - conduct field inspections
eAuditor Audits & Inspections - conduct field inspectionsNirav Modi
 

Último (20)

Webinar_050417_LeClair12345666777889.ppt
Webinar_050417_LeClair12345666777889.pptWebinar_050417_LeClair12345666777889.ppt
Webinar_050417_LeClair12345666777889.ppt
 
Enterprise Document Management System - Qualityze Inc
Enterprise Document Management System - Qualityze IncEnterprise Document Management System - Qualityze Inc
Enterprise Document Management System - Qualityze Inc
 
Salesforce AI Associate Certification.pptx
Salesforce AI Associate Certification.pptxSalesforce AI Associate Certification.pptx
Salesforce AI Associate Certification.pptx
 
Introduction-to-Software-Development-Outsourcing.pptx
Introduction-to-Software-Development-Outsourcing.pptxIntroduction-to-Software-Development-Outsourcing.pptx
Introduction-to-Software-Development-Outsourcing.pptx
 
Big Data Bellevue Meetup | Enhancing Python Data Loading in the Cloud for AI/ML
Big Data Bellevue Meetup | Enhancing Python Data Loading in the Cloud for AI/MLBig Data Bellevue Meetup | Enhancing Python Data Loading in the Cloud for AI/ML
Big Data Bellevue Meetup | Enhancing Python Data Loading in the Cloud for AI/ML
 
JS-Experts - Cybersecurity for Generative AI
JS-Experts - Cybersecurity for Generative AIJS-Experts - Cybersecurity for Generative AI
JS-Experts - Cybersecurity for Generative AI
 
ARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdf
ARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdfARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdf
ARM Talk @ Rejekts - Will ARM be the new Mainstream in our Data Centers_.pdf
 
AI Embracing Every Shade of Human Beauty
AI Embracing Every Shade of Human BeautyAI Embracing Every Shade of Human Beauty
AI Embracing Every Shade of Human Beauty
 
How Does the Epitome of Spyware Differ from Other Malicious Software?
How Does the Epitome of Spyware Differ from Other Malicious Software?How Does the Epitome of Spyware Differ from Other Malicious Software?
How Does the Epitome of Spyware Differ from Other Malicious Software?
 
Kawika Technologies pvt ltd Software Development Company in Trivandrum
Kawika Technologies pvt ltd Software Development Company in TrivandrumKawika Technologies pvt ltd Software Development Company in Trivandrum
Kawika Technologies pvt ltd Software Development Company in Trivandrum
 
Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...
Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...
Transforming PMO Success with AI - Discover OnePlan Strategic Portfolio Work ...
 
IA Generativa y Grafos de Neo4j: RAG time
IA Generativa y Grafos de Neo4j: RAG timeIA Generativa y Grafos de Neo4j: RAG time
IA Generativa y Grafos de Neo4j: RAG time
 
Watermarking in Source Code: Applications and Security Challenges
Watermarking in Source Code: Applications and Security ChallengesWatermarking in Source Code: Applications and Security Challenges
Watermarking in Source Code: Applications and Security Challenges
 
Growing Oxen: channel operators and retries
Growing Oxen: channel operators and retriesGrowing Oxen: channel operators and retries
Growing Oxen: channel operators and retries
 
online pdf editor software solutions.pdf
online pdf editor software solutions.pdfonline pdf editor software solutions.pdf
online pdf editor software solutions.pdf
 
OpenChain Webinar: Universal CVSS Calculator
OpenChain Webinar: Universal CVSS CalculatorOpenChain Webinar: Universal CVSS Calculator
OpenChain Webinar: Universal CVSS Calculator
 
Cybersecurity Challenges with Generative AI - for Good and Bad
Cybersecurity Challenges with Generative AI - for Good and BadCybersecurity Challenges with Generative AI - for Good and Bad
Cybersecurity Challenges with Generative AI - for Good and Bad
 
Top Software Development Trends in 2024
Top Software Development Trends in  2024Top Software Development Trends in  2024
Top Software Development Trends in 2024
 
Streamlining Your Application Builds with Cloud Native Buildpacks
Streamlining Your Application Builds  with Cloud Native BuildpacksStreamlining Your Application Builds  with Cloud Native Buildpacks
Streamlining Your Application Builds with Cloud Native Buildpacks
 
eAuditor Audits & Inspections - conduct field inspections
eAuditor Audits & Inspections - conduct field inspectionseAuditor Audits & Inspections - conduct field inspections
eAuditor Audits & Inspections - conduct field inspections
 

Managing Sensitive Information in an API and Microservices World

  • 1. Presented by Joshua Norrid, Apigee and Peter Miron, Apcera Managing Sensitive Information in an API and Microservices World
  • 3. ©2016 Apigee Corp. All Rights Reserved. • Customers/Consumers want CONVENIENCE. • All parties desire CONTROL of sensitive data. • All parties demand CONSISTENCY of experience and process. • Sensitive Data Providers must apply CONSTRAINTS to CONSUMPTION. • Sensitive Data Providers must achieve and maintain COMPLIANCE. 3 A “Chain of Custody” is required for managing sensitive information with APIs in the digital world. Why Are We Talking About This?
  • 4. 4 Any Application ๏Cloud Native Applications ๏Legacy x86 Applications ๏Containerized Applications and more! Any Infrastructure Composition, Orchestration & Deployment Networking + Nano-Segmentation Application Service Management Policy & Enforcement etc. Apcera: A Trusted Application Management Platform Composition, Orchestration & Deployment Networking + Nano-Segmentation Application Service Management Workload Composition Workload Resource Management Workload Scheduling and Placement Workload Communication and Connectivity Policy and Automated Enforcement
  • 5. ©2016 Apigee Corp. All Rights Reserved. 5 The Digital Value Chain
  • 6. ©2016 Apigee Corp. All Rights Reserved. 6 The Extended Digital Value Chain
  • 7. Apigee + Apcera: Capabilities Magnified
  • 8. ©2016 Apigee Corp. All Rights Reserved. Reporting Service Report Request Report Service Consumers A. Business Partners B. Regulatory Agencies C. Compliance D. Legal Requests Report Information Classification A. Customer Privacy Related B. Business Critical C. Trade Secret Trace Data Requests and Fulfillment at Each System / Application Handoff • Who requested what data? When? • Who else has access to that data? • What services participated in the transaction to produce the report? • What policies enabled that participation in the transaction? • Are we certain no one and no other services have access to that data? General Use Case Trusted 3rd Party Consumer
  • 10. ©2016 Apigee Corp. All Rights Reserved.
  • 11. ©2016 Apigee Corp. All Rights Reserved. 11
  • 12. ©2016 Apigee Corp. All Rights Reserved. 12
  • 13. ©2016 Apigee Corp. All Rights Reserved. 13
  • 14. ©2016 Apigee Corp. All Rights Reserved.
  • 15. ©2016 Apigee Corp. All Rights Reserved.
  • 16. ©2016 Apigee Corp. All Rights Reserved.
  • 17. ©2016 Apigee Corp. All Rights Reserved. 17 The Extended Digital Value Chain
  • 18. Learn More at www.apcera.com Thank You! Joshua Norrid @JoshuaNorrid jnorrid@apigee.com Peter Miron @PeterMiron peter.miron@apcera.com

Notas do Editor

  1. We like all of the companies here today, we’d hate to see any of you die before next year’s conference.
  2. Joshua to elaborate on slide.
  3. Pete: Apcera provides deployment and orchestration functionality, services management and nano-segmentation for any application on any infrastructure.
  4. Joshua: “We typically use the Digital Value Chain to get out of the Integration Center of Excellence.” Main Points: The path to extending to the Digital World is along the Mobile Value Chain. Script: The path to extending to the Digital World is along the Mobile Value Chain. This mobile value chain is analogous to a physical value chain. The API Team is like an internal “Partner Team” working with distributors and resellers of an enterprise. They manage which product, in this case API Products, will be available to which partners based on what type of financial model. Their job is also to sign-on and enable partners, to keep them engaged and to periodically do financial analysis of the relationship. The API team has to understand the partners business well enough to know what other tools/products their partners may need. This is also true in the digital world. For an app to be engaging, it’s not always sufficient for existing backend services to be exposed. Sometimes new services, such as geolocation or social connections of the app user needs to be applied. In the digital world, the developers are your distributors and resellers. They build your storefronts or your digital presence in the form of apps. The app developer represents a brand new channel that enables expanding reach and revenue. The better the developer’s product, the app, the more likely is the success of the engagement with your users. To understand what is required to optimize your Mobile Value Chain, let’s dissect it: API Layer which connects existing or new backend services to apps as enterprise APIs (represented by the red icons) Developer Layer which connects the API team to developers and partners (represented by the gray people graphics) Data Layer which connects the value chain end to end enabling two way flow of critical business data (two way red arrow that runs through the value chain)
  5. Transition to Pete: You all know the great things Apigee enables for your development and IT teams to manage external developers, measure their experience and secure your APIs. Apcera’s Trusted Container Management Platform enables you to extend that trust, policy and management into your Data Center. Giving a full view of chain of custody for your systems and each individual request.
  6. Pete: Here are some more detail on those features
  7. Whether you’re in healthcare, finance, telecom, or any other major industry, you have critical customer and business data that you need to share with 3rd parties. But, you don’t want that data in the hand's of anyone else. Therefore, you want to explicitly define who can receive what data and ensure that only the right people received the right data.
  8. Here’s an example of how you can trace your chain of custody through Apigee and Apcera.
  9. This is your customers’ critical data. This happens to be telco call detail records, but imagine it’s a high net worth client’s trade data, or in healthcare it’s a Patient Record … or maybe 500 million patient records. Someone printed it on a screen and 500 people saw it… It’s a scary thought, but how did we get here? And how can we do better to control the production and consumption of this information?
  10. Many teams still integrate with these and their associates, Well Known Ports. You almost certainly have some firewalls in your systems where IP Addresses and Ports go in, but never come out. Or take a few tries to get right. Also, many times this approach gives rise to Mullet Security – all business upfront and a party in the back.
  11. On the Apcera platform, we give you granularity of access control down to the individual containers — we don’t implicitly trust anything … Locked down ports, that can only opened through policy. Shift policy to the Application and let you manage your applications instead of managing IP addresses and Ports. Ephemeral Credentials for MySQL and PostGREs databases — so only this one container will have these credentials…
  12. Both Apigee and Apcera love APIs. Everything you can do on the command line in Apcera you can do through an API. Here’s a simple example of how you can map together all of the services participating in transactions. This allows you to see which service produced the report and what Apigee API Gateways it connects to.
  13. Apigee gives us the ability to enrich web requests, to improve traceability of requests through the entire chain of custody.
  14. With Apcera and Apigee you can dump all request logging to a standard syslog drain for aggregation (splunk, ELK). Apigee also allows to enrich our requests with a unique message ID, that we can use to correlate requests.
  15. Here’s an example of those correlated requests and the components that generated the requests.
  16. Here are just a couple simple examples of how Apigee integrated with Apcera’s Trusted Container Management platform can help enrich your Chain of Custody from your users to your modernized back end systems.
  17. If you’re interested in learning more, stop by the Apcera table downstairs and say, Hi! Thanks!