Subscribe to the Salt blog to learn about the latest developments in API Security

Blog Post

Company

How APIs Streamlined App Dev for DeinDeal — and Broke Security

Michelle McLean
Apr 28, 2021

Customer successes are the best kind of news to share, so we’re thrilled to announce today that Salt is enabling DeinDeal, the Swiss e-commerce leader, to secure its APIs across build and runtime.

Like a lot of companies, DeinDeal initially started using APIs to build its mobile applications. The company soon realized it had a golden opportunity to streamline and accelerate application development by using the same APIs to drive both its mobile apps and its website. As growth exploded during COVID, and the company embraced new markets like food delivery, rapid application innovation became especially crucial.

APIs more than delivered on the goal to accelerate app dev, but DeinDeal soon found that running so many APIs left the company vulnerable in security. “We were used to classic security for the web front end — we had WAFs and bot management,” says Alexandre Branquart, CTO and co-founder at DeinDeal “But they’re useless for helping you see what’s happening with your APIs, and there’s no way they can tell you if a given set of API calls is legit.”

Get the comprehensive list of best practices to guide your API security journey.

DeinDeal really values that the Salt ML and AI algorithms learn the particular business logic of DeinDeal APIs. “You guys can tell immediately our good traffic from bad traffic, so you can stop bad actors.” Automatic discovery has been a real benefit as well. “We’re updating our APIs all the time. We thought we’d gotten rid of our outdated ones, so we were surprised when the Salt platform discovered a whole bunch of old APIs still running.”

Salt has also helped DeinDeal with API definition, providing a deep understanding of the APIs without anyone needing to read the code. And Salt shows DeinDeal how customers are using the APIs — data that would have been hard to surface otherwise — so they can refine and improve the business processes defined in their APIs.

“The best part about working with Salt is that we don’t feel alone in this — we’ve built up so much mutual trust, and Salt’s been super responsive whenever we’ve needed enhanced functionality of any type. I always say, ‘IT is good, but humans are better.’ And we have a very human relationship with Salt.”

We’re fortunate to have such passionate advocates in our customers. We’d love to make you one too — check out our demo to see how Salt can help you discover all your APIs, stop attackers, and gain remediation insights to harden your APIs.

Tags

Salt Security Blog

Sign up for the Salt Newsletter for the latest resources and blog posts.

October 15, 2024

Michael Callahan
Chief Marketing Officer

Industry

It's 2024 and the API Breaches Keep Coming

Learn about some major API security breaches from 2024 that underscore the critical importance of securing APIs effectively.

Read more

October 2, 2024

Roy Bar Yosef
Technical Product Manager

Technical

Harnessing the Power of eBPF for API Traffic Analysis with Salt Sensor 3.0

We are thrilled to announce the release of Salt Sensor 3.0.0, packed with exciting new features to enhance your ability to capture and analyze API traffic.

Read more

October 1, 2024

Eric Schwake
Head of Product Marketing

Technical

Seeing the Unseen: Salt Security and eBPF

As we observe Cybersecurity Awareness Month, it's important to emphasize the significance of advanced solutions that can detect hidden threats.

Read more

Download this guide for advice on evaluating key capabilities in API Security

Get the guide
Back