API Gateways—the Digital Traffic Controller

Maintain the security of your APIs

API gateways maintain a secure connection between your data and APIs, and manage API traffic, both inside and outside your company.

The Mashery gateway provides a wide range of policies for fine-grained control over how, when, and from where your user community can access your APIs.

Benefits

Prevent Unauthorized Access

APIs deliver strong business value, but can also present a serious business risk if your data is compromised. The TIBCO Mashery® gateway prevents unauthorized access to your production data and backend systems.

Secure Data Transmission

Access control is just one layer of security. Mashery also ensures that all data in-transit is fully encrypted to protect against attempts to monitor or intercept it.

Secure Data Transmission

Access control is just one layer of security. Mashery also ensures that all data in-transit is fully encrypted to protect against attempts to monitor or intercept it.

Control API Traffic Spikes

Mashery is designed to scale as needed to support API call volumes, but also provides a wide range of policies for fine-grained control over how, when, and from where, your user community can access your APIs.

API Gateways to Control API Traffic Spikes

Choose from Hybrid Deployment Options

Manage your API traffic in the SaaS cloud, on-premises, or any combination of the two. Deploy your gateways as required to align with the needs of your business and your app infrastructure.

Choose from Hybrid Deployment Options

Manage your API traffic in the SaaS cloud, on-premises, or any combination of the two. Deploy your gateways as required to align with the needs of your business and your app infrastructure.

Capabilities

Federated API Gateways

Federated Gateways

Deploy and run your gateways on-premises or in the cloud—and manage them centrally as a single pane of glass.

API Gateway to provide Traffic Throttling & Caching

Traffic Throttling & Caching

Set API traffic limits at the API, method, developer, or key level. Enforce local or global caching and geo routing policies.

API Gateway - Secure Access Control

Secure Access Control

Use SAML and/or OAuth2 authentication and allow local control of SSL termination and secrets management for keys.

API Gateway with Full Data Encryption

Full Data Encryption

Fully encrypt both inbound and outbound data traffic using SSL. Mashery also supports industry security specifications, such as PCI, HITRUST

API Gateway Runs in Docker

Runs in Docker

Deploy Mashery Local to any environment that supports Docker containers, such as Amazon Web Services, Kubernetes, or Azure.

API Gateway with Custom Extension Points

Custom Extension Points

Using our adapter SDK,write your own custom logic for integrating with existing IT infrastructure, such as identity management systems.