Partners and Integrations

Protecting the APIs that serve your applications has never been more important. To make it easy to integrate Approov into your security environment, we work closely with other security vendors in order to ensure optimal protection and ease of deployment.

We integrate and test Approov with the industry's best security vendors to help our customers protect their revenue, data and brand.

Backend Integration

Approov integrates easily with any backend environment: Quickstart guides are already available for many commonly used environments. However, many customers seek to simplify security by having a single-point where their security policy is enforced in front of the API. Approov supports this through integrations with backend security platforms, adding the Approov assurance that APIs can only be used by genuine instances of your mobile app.

42Crunch

42Crunch

The integration of Approov with 42Crunch ensures that your API can only be accessed by genuine instances of your mobile app running on a safe device. Tampered mobile apps, unsafe mobile devices, as well as scripts and bots can be blocked at a single policy enforcement point in 42Crunch Micro-API firewall making true Shift-Left/Shield Right security a reality.

Learn More

Cloudflare

Cloudflare

Approov can be implemented as a Cloudflare Worker, providing a single security control-point in front of your API server. The combined solution protects against a range of threats: Approov ensures only requests from genuine, untampered instances of your mobile app get through to the API whilst Cloudflare can block network level DDoS attacks

Learn More

Fortinet

Fortinet

Approov integrates with Fortinet FortiWeb to inject Approov mobile API protection into FortiWeb WAF rules. The joint solution provides one integrated control point for APIs and web apps against bots and other malicious accesses, whether the threats are browser-based or from the mobile channel

Learn More

Kong

Kong

The integration of Approov with the Kong API Gateway ensures that your API can only be accessed by genuine instances of your mobile app running on a safedevice. Tampered mobile apps, unsafe mobile devices, as well as scripts and bots can be blocked at a single control point in the Kong gateway.

Learn More

NGINX

NGINX

The Approov integration with NGINX Plus ensures that your API can only be used by genuine instances of your mobile app. Scripts and bots will be blocked. This is achieved by adding the Approov SDK to your mobile app and does not require you to change a single line of code in the API itself. Nginx Plus provides a single control point, enhanced with Approov protection.

Learn More

Tibco/Mashery

Tibco/Mashery

The integration of Approov with the TIBCO Mashery API Gateway ensures your API can only be accessed by genuine instances of your mobile app. Tampered apps, apps running in suspicious environments, as well as scripts and bots can be blocked at a single control point in the TIBCO Mashery gateway.

Learn More

Cloud Integration

Integration with cloud gateways allows the Approov mobile app and client environment attestation check to be enforced at the gateway to ensure full and consistent security for cloud-native APIs.

AWS

AWS

The integration of Approov with the AWS API Gateway ensures your API can only be accessed by genuine instances of your mobile app. Tampered apps, apps running in suspicious environments, scripts and bots can be blocked at a single control point at the gateway before they reach your APIs.

Learn More

Microsoft Azure

Microsoft Azure

The integration of Approov with the Azure API Gateway ensures your API can only be accessed by genuine instances of your mobile app. Tampered apps, apps running in suspicious environments, scripts and bots can be blocked at a single control point in the Azure gateway before they reach your APIs.

Learn More

Browser Protection

Some mobile-first customers allow browser-based access to the same APIs used by their mobile apps. To provide a single common validation method for mobile apps and browser-based access, Approov integrates with solutions which evaluate whether a browser access is by a human or a bot. This enables a single, common authorization method for both the web and mobile API channels in order to validate legitimate access.

Fingerprint

Fingerprint

Approov mobile app and mobile environment integrity checking, when combined with the highly accurate browser fingerprinting from Fingerprint provides a very effective shield for APIs that serve both mobile apps and browsers.

Learn More

Google reCAPTCHA

Google reCAPTCHA

The integration provides a very effective shield for APIs that serve both mobile apps and browsers by combining Approov mobile app and mobile environment integrity checking with the protection from browser-based bots which is provided by Google reCAPTCHA.

Learn More

hCaptcha

hCaptcha

This integration provides a very effective shield for APIs that serve both mobile apps and browsers by combining Approov mobile app and mobile environment integrity checking with the protection from browser-based bots which is provided by hCaptcha.

Learn More