Salt Security Blog

Welcome to our blog about all things in and around the world of APIs and API Protection.

Chris Westphal

WAFs, What Are They Good For?

Get ready for episode number 3 of our video series called API Security With A Pinch Of Salt. In this episode, Adam and Chris answer the question – WAFs, what are they good for?

Read More »
Chris Westphal

The Importance Of API Documentation

It’s time for episode number 2 of our video series called API Security With A Pinch Of Salt. In this episode, Adam, Chris and Ran dig into the topic of the importance of API documentation.

Read More »
Chris Westphal

Using API Gateways For Security

Today we kick off a video series called API Security With A Pinch Of Salt where we dig deep into API security. In this first episode, Adam, Chris and Ran tackle the topic of using API Gateways for Security.

Read More »
Roey Eliyahu

Salt Security COVID-19 Update

Whether you’re already a Salt Security customer or considering Salt Security to help you protect your critical applications and services from API attacks, we want you to know, we are committed to API security and have comprehensive plans in place to ensure the Salt Security API Protection Platform remains up and running to support our customers.

Read More »
Adam Fisher

What Sutton’s Law Means For Open Banking

Bank robber Willie Sutton (1901-1980) did reasonably well making off with an estimated $2 million in illegal earnings throughout his career. He was a rash and resourceful robber who used disguises and trickery to achieve his ends. This included dressing as a policeman, window washer, maintenance man, bank guard, mover, Western Union messenger, and striped-pants diplomat.

Read More »
Adam Fisher

Why I Joined Salt Security

Imagine you’re on ICQ one night, and you see this dude jumping into your chat room. Before long the two of you start to argue like a couple of schoolgirls and the “dude” says that he’s gonna burn you, so you challenge him to bring it on!

Read More »
Chris Westphal

What Is The OWASP API Security Top 10

The Open Web Application Security Project has been around since 2001 and is best known for the OWASP Web Application Security Top 10 which has set the standard for how organizations have approached security to protect traditional web applications. The OWASP Top 10 projects are community driven and experts from across the community come together to put out an updated version of this flagship Top 10 list every 3 years with the current version released in 2017.

Read More »
Chris Westphal

How Martial Arts Can Help You Eliminate API Vulnerabilities

In college a good friend of mine got deeply involved in the martial art Aikido. Unlike other martial arts I was familiar with one of the things that stuck out for me was the concept of using an attacker’s momentum against them. Instead of directly attacking, the defender would wait for a move from their opponent, like a lunge, and harness that momentum to take control.

Read More »