Introduction to PingIntelligence for APIs
PingIntelligence for APIs uses artificial intelligence (AI) to secure APIs in your environment. It identifies and automatically blocks cyberattacks on APIs, exposes active APIs, and provides detailed reporting on all API activity.
Leveraging AI models specifically tailored for application programming interface (API) security, PingIntelligence brings cyberattack protection and deep API traffic insight to existing API gateways and application server-based API environments. It detects anomalous behavior on APIs and the data and applications exposed through APIs. It also automatically blocks attacks across your API environment.
Key components
PingIntelligence is a suite of three interconnected components, API Security Enforcer (ASE), API Behavioral Security (ABS) AI engine, and PingIntelligence Dashboard:
- ASE
-
The first processing layer in PingIntelligence. It captures the metadata of the monitored APIs and sends it to the ABS AI engine. You can deploy ASE in two modes, inline and sideband. When deployed in inline mode, ASE directly receives the API traffic or can work alongside other load balancers like AWSElastic Load Balancing (ELB). In sideband mode, ASE integrates with API gateways in an ecosystem and extends the cybersecurity of PingIntelligence.
- ABS AI engine
-
The AI engine infers the API traffic patterns in the metadata from ASE. It builds machine learning models that self-train based on the API traffic. ABS detects the attacks on APIs and blocks the clients from which the attacks originate. It also provides in-depth forensics on the activities performed by a client. The reports provide detailed information on the activity from an individual token, Internet Protocol (IP) address, cookie, API key, or username. In addition to attack detection, ABS continuously discovers the new and unknown APIs in an API ecosystem and brings them under observation.
- PingIntelligence Dashboard
-
PingIntelligence Dashboard provides rich analytics on API activities in an environment. It gives granular insights at an API level and across APIs. It can provide information on the training status of APIs, different kinds of attacks on APIs, and much more. PingIntelligence Dashboard also supports admin activities such as attack management and discovery of APIs.