API Security with CA Layer 7 & CA SiteMinder - Layer 7 Technologies

DATA SHEETAPI Security with CA Layer 7and CA SiteMinder ®Unifying Security Across Web, APIs & MobileGoing Beyond Web for Cloud & Mobile with APIsEnterprises have traditionally exposed data and applications through internal services or carefullycontrolled Web-based applications. Now, the rise of mobile and cloud technologies is forcing enterprises toopen new channels. Programmable interfaces—or APIs—are now fundamental to connecting mobile appsand cloud services with enterprise data and applications. APIs enable new revenue models, prepare theenterprise for BYOD and expand the value of existing customer and partner relationships.Accessing enterprise data and applications from the cloud and mobile devices creates novel challengesaround application integration, security, service discovery, developer management, SLA enforcement anddata analytics.CA Layer 7 provides the industry’s leading API security and management platform. The CA Layer 7 APISecurity & Management Suite empowers organizations to securely expose existing resources to mobileapps and cloud services via APIs. CA Layer 7’s technology: enables organizations to leverage existingapplication investments through protocol adaptation; protects against external threats and inappropriateaccess; reaches new markets and third-party developer networks through an API developer portal.Key Benefits/ResultsCA Layer 7’s integration with CA SiteMinderallows you to:• Extend Internal SSO – Enable API accesscontrol using existing identity stores• Enable Mobile & BYOD – Expose OAuthand OpenID Connect mobile interfaces toenterprise data assets and bridge to internalidentities• Enforce Identity Policies – Dynamicallyenforce mediation policies based on identityattributes from SiteMinderThe Role of Identity in API ManagementIdentity is a cornerstone of enterprise-grade API security and management. Mobileapplications, in particular, require a layered identity model in which the mobile end user,application developer and internal data access persona can each represent uniqueidentities that can be authenticated, authorized, mapped and managed.Identity defines these access rules but also forms the bedrock for defining enhanced userprofiles and available actions. Routing, versioning, traffic shaping, throttling andmediation decisions can all be made dynamically, based on the identities of the involvedparties, as well as contextual information about the transaction.Many enterprises have made investments in identity management solutions thatrepresent internal or Web-based identities for secure Single Sign-On (SSO). CA SiteMinderprovides the secure, Internet-scale SSO and Web access management that organizationsneed in order to authenticate users and authorize access to Web applications/portals. Itenables the secure delivery of essential information and applications to enterpriseemployees, partners, suppliers and customers, via secure SSO.CA Layer 7 & CA SiteMinder Enable New Enterprise AccessThe combination of Layer 7 and CA SiteMinder enables an identity-centric API security andmanagement infrastructure for powerful mobile and cloud initiatives. Common use cases include:• Creating a unified security view across Web, API, mobile and cloud, using an existingSiteMinder framework• Exposing OAuth for mobile apps, bridging user tokens to SiteMinder identity tokens anddelegating authorization