Express Computer
Home  »  News  »  New F5 report unveils scary truths about API security in the AI era

New F5 report unveils scary truths about API security in the AI era

0 32

F5 announced the findings of its 2024 State of Application Strategy Report: API Security, revealing concerning truths about the current state of API security across industries. The report highlights significant gaps in API protection, exposing them to potential threats that could jeopardise enterprise security and operations. These challenges are magnified by the rapid proliferation of APIs in today’s digital landscape.

The survey found that less than 70% of customer-facing APIs are secured using HTTPS (Hypertext Transfer Protocol Secure), leaving nearly one-third of these APIs completely unprotected. This is a stark contrast to the 90% of web pages that are now accessed via HTTPS, following the push for secure web communications over the past decade.

Pratik Shah, Managing Director – India & SAARC at F5, emphasised the need for API security stating that, “APIs are not just technical assets; they are the lifeblood of modern business ecosystems. As the digital world rapidly evolves, our 2024 report uncovers a critical truth: the security gaps we face today are no longer just operational challenges—they are strategic risks. Businesses that fail to address API vulnerabilities are not simply risking data breaches; they are jeopardising their future. In a world shaped by AI and multicloud, the key to long-term resilience lies in how we protect these vital connections. At F5, we’re not just solving today’s security gaps—we’re empowering businesses to innovate with confidence, secure in the knowledge that their digital foundations are built to withstand the threats of tomorrow.”

Key Findings of the Report Include:

  • Rapid growth and diverse environments: The average organisation now manages 421 different APIs, with most hosted in public cloud environments. Despite this growth, a significant number of APIs—particularly those that are customer-facing—remain unprotected.
  • Evolving API uses and security needs: As APIs increasingly connect to AI services like OpenAI, the security model must adapt to cover both inbound and outbound API traffic. Current practices largely focus on inbound traffic, leaving outbound API calls vulnerable.
  • Fragmented responsibility for API security: The report reveals a divided responsibility for API security within organisations, with 53% managing it under application security and 31% through API management and integration platforms. This division can lead to gaps in coverage and inconsistent security practices.

High demand for programmable security solutions: Respondents ranked programmability as the most valuable API security capability, underscoring the need for real-time inspection and response to API traffic and threats.

“APIs are becoming the backbone of digital transformation efforts, connecting critical services and applications across organisations,” said Lori MacVittie, Distinguished Engineer at F5. “However, as our report indicates, many organisations are not keeping pace with the security requirements needed to protect these valuable assets, especially in the context of emerging AI-driven threats.”

Addressing the gaps in API security

To address these security gaps, the report recommends organisations adopt comprehensive security solutions that can cover the entire API lifecycle, from design through deployment. By integrating API security into both development and operational phases, organisations can better protect their digital assets against a growing array of threats.

“APIs are integral to the AI era, but they must be secured to ensure that AI and digital services can operate safely and effectively,” added MacVittie. “This report is a call to action for organisations to re-evaluate their API security strategies and take the necessary steps to protect their data and services.”

Get real time updates directly on you device, subscribe now.

Leave A Reply

Your email address will not be published.

LIVE Webinar

Digitize your HR practice with extensions to success factors

Join us for a virtual meeting on how organizations can use these extensions to not just provide a better experience to its’ employees, but also to significantly improve the efficiency of the HR processes
REGISTER NOW 

Stay updated with News, Trending Stories & Conferences with Express Computer
Follow us on Linkedin
India's Leading e-Governance Summit is here!!! Attend and Know more.
Register Now!
close-image
Attend Webinar & Enhance Your Organisation's Digital Experience.
Register Now
close-image
Enable A Truly Seamless & Secure Workplace.
Register Now
close-image
Attend Inida's Largest BFSI Technology Conclave!
Register Now
close-image
Know how to protect your company in digital era.
Register Now
close-image
Protect Your Critical Assets From Well-Organized Hackers
Register Now
close-image
Find Solutions to Maintain Productivity
Register Now
close-image
Live Webinar : Improve customer experience with Voice Bots
Register Now
close-image
Live Event: Technology Day- Kerala, E- Governance Champions Awards
Register Now
close-image
Virtual Conference : Learn to Automate complex Business Processes
Register Now
close-image