Integrations with AWS, Microsoft Azure, Cloudflare, Fortinet, Kong, TIBCO, NGINX, FingerprintJS, hCaptcha, Google reCAPTCHA, Google SafetyNet, Apple DeviceCheck Help Secure Sensitive Data Against the “Achilles heel” of App Security presented by the use of mobile apps.
SAN JOSE, CA and EDINBURGH, UK, August 26, 2021 - Approov, creators of advanced API threat protection solutions, today introduced the Approov Alliance and Integration Program to ensure that the critical elements of comprehensive mobile app API protection are rigorously tested and work together harmoniously and seamlessly to avoid both data leakage and exposure of the app’s core logic.
"API security is critical to protecting the confidentiality, integrity, and availability of your data but today the market is fragmented and customers need products to work together to get the protection they need.” said Alissa Knight, partner of Knight Ink. “The mobile app and client attestation provided by Approov is a crucial element and the new alliance program gives customers assurance that it works seamlessly with other security solutions to protect APIs”.
Mobile apps, by their nature, expose a potential “Achilles heel” in application security. A mobile app and its APIs expose API Keys, business logic, and other data that can be used to successfully attack that API using a script or modified mobile app. The deployment of mobile apps can present a comprehensive “tool kit for hackers” who are targeting APIs. Even with extensive shift-left security initiatives in place, this ability to exploit APIs can never be completely eliminated and they must be shielded at run-time.
Approov’s approach blocks these and other mobile app attack vectors, such as Man-in-the-middle attacks. Approov blocks any access to the API from anything other than unmodified, genuine versions of the app, effectively preventing any vulnerabilities in an app or its API from being exploited, protecting both apps under development and apps in production.
The Approov Integration and Alliance Partner program ensures that each component in the application security ecosystem works seamlessly with Approov, in order to make it easy for customers to deploy a comprehensive solution for API security that optimizes user experience while thwarting malicious API access attempts. Approov invites vendors with complementary solutions to sign up here to the program.
Approov Technology Integrations :
Approov already has tried and tested integrations with a number of security vendors:
“As we have seen in recent high-profile breaches involving Peloton and Experian, threat actors are actively working to dissect mobile apps in order to mount successful attacks on APIs,” said Approov CEO David Stewart. “Approov integrations simplify mobile security for customers by ensuring that the required security capabilities for mobile can seamlessly be integrated with the other essential elements of a security solution, bringing an important new level of security to existing and future mobile applications.”
Approov recently launched Release 2.7 of the Approov API Shielding platform, enabling companies of all sizes to adopt leading-edge, affordable API cybersecurity protections for mobile-based applications, including production apps.
The Approov platform is deployed by connected car companies BMW and Sixt, the European eCommerce platform Deindeal, the healthcare app developer MV, the financial services platform Papara, and other security-minded organizations whose applications are a primary customer conduit.
Approov solutions help stop API abuse at the edge, and prevent security breaches in mobile channels. With more businesses moving to digitalization and future-ready services that utilize mobile API connections, securing those connections properly can get overlooked or not fully implemented for all possible threats, exposing organizations and their users to breaches, fraud, denial of service, and other forms of API abuse.
Approov API Threat Protection provides a multi-factor, end-to-end mobile API security solution that complements identity management, endpoint, and device protection to lock-down proper API usage. It ensures that only safe and approved apps running in safe environments can successfully and securely access an organization’s APIs, and turns away unauthorized accesses by attacker scripting, bots and fake or tampered apps. https://www.approov.io/
Madison Alexander PR, Inc.