APIs foster the collaboration and rapid innovation at the heart of digital transformation. Our security platform enables these innovators to securely connect their customers and partners to vital data and services.
Why our customers love Salt
Armis
AppsFlyer
Proud to be trusted by today's digital innovators
Learn more
Key Ally challenges:
Business-critical API-based services required protection that WAFs, bot mitigation tools, and API gateways could not provide
Key Salt use cases:
Attack prevention: Salt identifies and stops attacks missed by the company’s WAF and API gateway including the threats defined in the OWASP API Security Top 10
Remediation insights: Salt creates remediation insights based on identified attack activity that dev teams use to eliminate API vulnerabilities and improve security
Compliance: Salt identifies Zombie and Shadow APIs as well as exposure of sensitive data such as PII
Learn more
Learn more
Key Finastra challenges:
Needed protection for the APIs at the core of the Finastra FusionFabric.cloud service to prevent account takeover, compromised applications calling the API, and exploitation of the threats outlined in the OWASP API Security Top 10
Needed to provide regulators with details on where APIs were exposing sensitive data and how APIs were being protected
Key Salt use cases:
Attack prevention: Salt stops attacks targeting the Finastra service, many of which use advanced techniques to evade rate limiting and other protections
Risk reduction: Salt provides insights about potential vulnerabilities and sensitive data exposure that Finastra can share with FinTech partners to help them understand and mitigate risk
Compliance: Salt identifies where APIs are exposing sensitive data to help Finastra meet regulatory requirements
CI/CD integration: Salt ties into Finastra’s dev workflows to avoid vulnerable APIs from launching
COVID increased API creation 10 fold and developers could no longer manually document and test each new API.
Fast API rollout left API parameters and exposed sensitive data undocumented.
Key Salt use cases:
Attack prevention: Salt provides runtime protection by identifying and stopping attacks targeting APIs
Dynamic API discovery: Salt automatically and continuously inventories all APIs as they are released or changed weekly and alerts on changes to where APIs expose sensitive data.
Remediation insights: Armis dev teams receive insights from the Salt solution with details about how APIs can be strengthened.
Compliance: Armis leverages the dynamic reporting in Salt for compliance audits and to demonstrate FedRAMP adherence.
Needed to detect and prevent attacks targeting the unique logic of the APIs at the core of its service
Found that next-generation WAFs and bot mitigation solutions were not able to address the company’s requirements for API security
Key Salt use cases:
Granular visibility: Salt provides automated discovery and granular details for all AppsFlyer APIs to enable a better understanding of the attack surface and risk
Continuous discovery: Salt provides insight into when dev teams roll out new APIs so the security team has a full inventory
Attack detection: Salt continuously monitors APIs in production and alerts on malicious activity so AppsFlyer can stop attackers before they succeed
Attack prevention: Salt consolidated alerts provide the entire attacker timeline and give SOC teams context to take action quickly
Remediation insights: Salt provides dev teams with insights to identify and eliminate potential vulnerabilities and make APIs more secure, before they’re launched into production use
