API Gateway

Multiple API gateway deployment options to control traffic, security, API behavior and caching response

Flexible Gateway Deployment Options

Cloud
The Mashery API Distribution Network is an enterprise grade cloud infrastructure with global points of presence, dynamic scaling and 24-hour monitoring and support.
 
Hybrid
Mashery Local is deployed locally on-premise, but tethered to the Mashery API Control Center, the central dashboard for API policies, management, and reporting.
 
On-Premise
Mashery API Exchange Gateway is deployed as a standalone on-premise API Gateway. It can be used with  the Mashery platform, but does not require it.
 
Why Cloud?
  • Lowest TCO
  • Fastest startup time
  • No infrastructure required
Why Hybrid?
  • Manage traffic locally
  • On-prem security & control
  • Reduces network latency
Why Standalone?
  • Don’t need full API management
  • Regulatory requirements
  • Unable to use SaaS products
Implement Runtime Policies
TIBCO Mashery providesend-to-end runtime policy execution in the API Gateway for security and access control, API call filtering, throttling, and all other operational policies defined in the Mashery portal environment.
 
Expose and Share Data Securely
Use API security features like secure tagging to easily manage sensitive and non-sensitive data in your API calls. Automatically enforce a high standard of encryption and enable alerts that help you track and manage API security threats. Mashery’s API security layer has been rigorously tested and is currently used by many of today’s top companies to protect their API data.
  • Culture of Security
  • PCI and HITRUST Compliant
  • OAuth and SSL

First PCI-Compliant API platform
Payment Card Industry has made Mashery the first and only PCI-compliant API management company (see our listing here).

HITRUST CSF Certified
Our HITRUST (Health Information Trust Alliance) CSF Certified status allows HIPPA-regulated organizations to show that their API programs securely handle all personal health information.

SSAE 16 SOC2 Type1 Compliant
The Statement on Standards for Attestation Engagements) assures enterprise IT organizations that Mashery is covering controls of security, confidentiality, and privacy.