With the number of APIs increasing constantly right along with the number of cyber attacks, API security has never been so important to success in an enterprise. This Meetup will be a co-presentation from Big Compass and PingIntelligence by Ping Identity. We will dive into how API security works with MuleSoft including the API development lifecycle and implementing security policies on a live API from Anypoint Platform API Manager. We will display the monitoring capabilities from API Manager and what a policy violation might look like.

Then, we will have some fun by simulating hacks on our own API. We will simulate some common attacks and how API Manager and/or a WAF can block these common attacks.

From there, we will dive even deeper by simulating very advanced attacks like OAuth token hijacking, data theft, and DoS attacks that fly under the SLA radar. This is where we will implement PingIntelligence’s Anypoint integration custom API policy, show how a MuleSoft API can connect with PingIntelligence, and how PingIntelligence uses AI to discover and model normal behavior on learn about your APIs to prevent and report on advanced attacks and instruct Anypoint to stop these requesters.