What is it?
Creating a centralized API architecture that makes the process of composing, securing and managing high-performance interfaces significantly simpler and more consistent.
API Management helps organizations publish APIs to external, partner and internal developers to unlock the potential of their data and services. API Management provides the core competencies to ensure a successful API program through developer engagement, business insights, analytics, security and protection.
- API Security—Enterprises cannot afford misuse or abuse of their information or of any application resources exposed by an API.
- API Lifecycle Management—Enterprises need a way to ensure API updates do not break when they upgrade/version APIs or move between environments, geographies, datacenters and the cloud.
- API Governance—Enterprises need a way to control and track the broader operational character of how APIs get exposed to different partners and developers, through policy characteristics like metering, SLA, availability and performance.
- Developer Enablement and Community Building—Enterprises need a way to bring developers on board, manage these developers and assist them in making the most of the exposed APIs.
- API Monetization—For some enterprises, publishing APIs is not enough. APIs also represent a new revenue opportunity. Different API Management solutions enable monetization to different degrees. For enterprises, addressing these functional requirements is non-negotiable. However, along with these functional requirements, an enterprise will expect its API Management solution to deliver certain operational characteristics relevant to its unique IT experience.
- Solution Manageability—Enterprises have development, test and production environments that span geographies, datacenters and clouds. They will therefore need an API Management solution that can fit their specific development styles and processes.
- Solution Reliability—Enterprises publishing APIs commercially expect 5 9’s uptime, if not greater. Enterprises cannot afford outages.
- API Integration – Ensure consistency between multiple API implementations and versions.
- Documentation (Doc) – One of the most common problems of developers is figuring out how an API works. Development time is too precious to waste in trial and error of an undocumented API. An API management service has to provide an easy way to read the documentation and enable developers to “try before they buy”. In some cases it is even possible to provide interactive documentation. Simplicity and usability are the keys.
- Analytics and Statistics (A&S) – It is critical to understand how people use your API and get insights for your business.
- Deployment (Dep) – Should be flexible and support public or private clouds, on-premises implementations, or combinations.
- Developer engagement (Dev) – Engaging with your API consumers, developer or partners is important. Getting an easily accessible developer portal will significantly facilitate onboarding.
- Sandbox environment (SBE) – This feature will increase both the value of an API and its adoption rate, making easy to test code.
- Traffic management (Tra) and caching abilities (Cch).
- Security (Sec) – APIs carry sensitive data, so it is important to protect the exposed information. The service has to at least provide identity and access management for users and developers.
- Monetization (Mon) – Provide the capability to monetize your API.
- Availability (Ava) – Should be available, scalable and redundant. An API environment can become demanding and the service should be able to deal with any kind of errors, problems or temporary traffic spikes.
|Amazon API Gateway||Yes||No||Yes||Yes||Yes|
|Azure API Management||Yes||Yes||Yes||Yes||No||Yes||Yes||Yes||No||Yes|
|CA Layer 7||Yes||Yes||Yes||Yes||Yes||Yes|
|IBM API Management||Yes||Yes||Yes||Yes|
* White boxes indicate that no documentation about subject could be found on the first looks