New Checkmarx API Security Empowers the Developer/AppSec Partnership to Secure the Entire API and Software Development Lifecycle
Industry's first true shift-left API security solution exposes even shadow and zombie APIs, offering the most comprehensive API inventory available and prioritized remediation of API vulnerabilities
LAS VEGASand RAMAT GAN, Israel, Aug. 10, 2022 /PRNewswire/ -- Checkmarx, the global leader in developer-centric application security testing (AST) solutions, announced today the availability of Checkmarx API Security, the first true "shift-left" API security solution. Building on the launch of Checkmarx Fusion, which prioritizes and correlates vulnerability data from across different AppSec engines, Checkmarx API Security is delivered as part of the industry-leading application security platform Checkmarx One. The developer workflow-oriented solution inventories even shadow and zombie APIs as part of the most comprehensive inventory and remediation solution available to secure the entire API lifecycle.
According to Gartner®, "Every connected mobile, modern web or cloud-hosted application uses and exposes APIs. These APIs are used to access data and to call application functionality. APIs are easy to expose but difficult to defend. This creates a large and growing attack surface, leading to a growing number of publicized API attacks and breaches. Traditional network and web protection tools do not protect against all the security threats facing APIs, including many of those described in the OWASP API Security Top 10."i
While other API security offerings can only discover APIs already deployed in production, Checkmarx API Security addresses security issues earlier in the software development lifecycle (SDLC). This differentiation uniquely enables:
"Modern application development is increasingly dependent on APIs, which are notoriously difficult to document. Often the only place that a given API's documentation exists is on the developer's laptop," said Checkmarx CEO Emmanuel Benzaquen. "Our global enterprise customers are focusing on the transition to cloud-native application development, yet their tools have only been able to address part of the API challenge that cloud-native development imposes. The Checkmarx goal is to secure every component of every application in a way that keeps developers productive and simplifies processes for AppSec leaders, thereby keeping their organizations agile, secure and competitive."
Taking a unique, API-centric view into the problem, Checkmarx API Security offers:
Gartner has also reported that "Attacks on applications are shifting to focus on APIs, and the pace of attacks is increasing. API abuses and exploits are a common attack category that can result in data breaches. DevSecOps teams are focusing attention on the need for improved API testing in development. To identify the optimal approach to API testing, they are looking to a mix of traditional tools (such as static AST [SAST] and dynamic AST [DAST]) and emerging solutions focused specifically on the requirements of APIs."ii
Checkmarx API Security is available now. For more information, visit this page or visit booth #860 at Black Hat USA.
Checkmarx is constantly pushing the boundaries of Application Security (AppSec) Testing to make security seamless and simple for the world's developers while giving CISOs the confidence and control they need. As the AppSec leader, Checkmarx offers the industry's most comprehensive AppSec platform, Checkmarx One, that provides developers and security teams with unparalleled accuracy, coverage, visibility and guidance to reduce risk across all components of modern software—including proprietary code, open source, APIs and infrastructure as code. Over 1,800 customers worldwide, including nearly half of the Fortune 50, trust Checkmarx security technology, expert research, and global services to securely optimize development at speed and scale. For more information, visit the Checkmarx website, check out the blog or follow the company on LinkedIn.
View original content to download multimedia:https://www.prnewswire.com/news-releases/new-checkmarx-api-security-empowers-the-developerappsec-partnership-to-secure-the-entire-api-and-software-development-lifecycle-301603002.html