We have a substantial number of customers who use our iOS and Android apps for betting. We found that there were a number of Android app clones that were attempting to make use of our unique data. We also found a number of sophisticated data scrapers, trying to gather daily and historical information that we generate and make available solely to our app subscribers.
Stephen Gorton, Technical Solutions Architect
Racing Post is the authority on racing and betting in the United Kingdom and Ireland. Their business relies on controlling access to their racing form data. Loss of that proprietary data means loss of customers and revenue.
At the 2013 British Media Awards, Racing Post's mobile app was named "Digital Product of the Year". Given the value of their proprietary data, which was now available on the internet, it was not long before scrapers hit the Racing Post app — even behind a private mobile API. Sophisticated data scrapers and Android clones seriously threatened Racing Post's position.
Racing Post had a tough problem to solve.
The Approov SDK was integrated into their iOS and Android apps. On the server side a new API was created using the AWS API Gateway so the Approov token check was implemented in an AWS Lambda function and deployed as a Custom Authorizer for the API Gateway. This implementation allowed their API to continue to handle up to 10,000 requests per second.
According to Stephen:
We came across approov.io, researched the system, looked at how it works, analyzed its cost-base, ease of implementation into our iOS and Android app codebase, reviewed the documentation, and support processes. It did everything we required. We did not find an alternative and we managed to successfully implement Approov inside our environment in a small amount of time.