Yappes

API Manager

API LIfe cycle

API Gateway

API Marketplace

Monitoring and analytics

API Security

Monetization

API Security

Zero-Trust forms the basis for both the API Control Plane and the Data Plane. Strict Role-Based Access Control (RBAC) enforces the principle of least privilege, ensuring users have explicitly authorized access to the modules and data within the Control Plane. No-anonymous access, a key component of Zero-Trust, serves as the first layer of security at the Data Plane. Building on this foundation, various API mediation policies provide additional security layers, including IP Whitelisting/Blacklisting, message signatures, traffic controls, and encryption.

Privacy

Yappes is a self-contained platform with no external dependencies. There is no Control Plane on the Internet where metadata is sent. All features are designed to work within an organization’s firewall and no data is ever sent out of the private network.

RBAC for API Manager

Yappes has multiple roles that are authorized to only perform certain changes. Only users with the authorized roles are allowed to make changes to the platform.

Audit Trail

Administrators can view the audit trail of what each user/role did on the platform using the audit trail feature.

Authenticated Users only

The platform does not allow anonymous access, even for Free subscriptions. Every user should be registered so that appropriate security policies are applied based on the roles.

Encryption

In a Zero trust environment, it is possible to use SSL Client certificates to encrypt data betweeen the gateway and the backend APi servers. Use robust encryption mechanism to hide the user identifiable information at network level.

Certification

Yappes has been certified to be compliant with OWASP Top 10 vulnerabilities as per Cert-IN standards.

API Manager

API LIfe cycle

API Gateway

API Marketplace

Monitoring and analytics

API Security

Monetization

API Security

Zero-Trust forms the basis for both the API Control Plane and the Data Plane. Strict Role-Based Access Control (RBAC) enforces the principle of least privilege, ensuring users have explicitly authorized access to the modules and data within the Control Plane. No-anonymous access, a key component of Zero-Trust, serves as the first layer of security at the Data Plane. Building on this foundation, various API mediation policies provide additional security layers, including IP Whitelisting/Blacklisting, message signatures, traffic controls, and encryption.

Privacy

Yappes is a self-contained platform with no external dependencies. There is no Control Plane on the Internet where metadata is sent. All features are designed to work within an organization’s firewall and no data is ever sent out of the private network.

RBAC for API Manager

Yappes has multiple roles that are authorized to only perform certain changes. Only users with the authorized roles are allowed to make changes to the platform.

Audit Trail

Administrators can view the audit trail of what each user/role did on the platform using the audit trail feature.

Authenticated Users only

The platform does not allow anonymous access, even for Free subscriptions. Every user should be registered so that appropriate security policies are applied based on the roles.

Encryption

In a Zero trust environment, it is possible to use SSL Client certificates to encrypt data betweeen the gateway and the backend APi servers. Use robust encryption mechanism to hide the user identifiable information at network level.

Certification

Yappes has been certified to be compliant with OWASP Top 10 vulnerabilities as per Cert-IN standards.

API Manager

API LIfe cycle

API Gateway

API Marketplace

Monitoring and analytics

API Security

Monetization

API Security

Zero-Trust forms the basis for both the API Control Plane and the Data Plane. Strict Role-Based Access Control (RBAC) enforces the principle of least privilege, ensuring users have explicitly authorized access to the modules and data within the Control Plane. No-anonymous access, a key component of Zero-Trust, serves as the first layer of security at the Data Plane. Building on this foundation, various API mediation policies provide additional security layers, including IP Whitelisting/Blacklisting, message signatures, traffic controls, and encryption.

Privacy

Yappes is a self-contained platform with no external dependencies. There is no Control Plane on the Internet where metadata is sent. All features are designed to work within an organization’s firewall and no data is ever sent out of the private network.

RBAC for API Manager

Yappes has multiple roles that are authorized to only perform certain changes. Only users with the authorized roles are allowed to make changes to the platform.

Audit Trail

Administrators can view the audit trail of what each user/role did on the platform using the audit trail feature.

Authenticated Users only

The platform does not allow anonymous access, even for Free subscriptions. Every user should be registered so that appropriate security policies are applied based on the roles.

Encryption

In a Zero trust environment, it is possible to use SSL Client certificates to encrypt data betweeen the gateway and the backend APi servers. Use robust encryption mechanism to hide the user identifiable information at network level.

Certification

Yappes has been certified to be compliant with OWASP Top 10 vulnerabilities as per Cert-IN standards.

API Operations

API Architect

Product Developers

API Consumers

API Operations

API Operations

API Architect

Product Developers

API Consumers

API Operations

API Operations

API Architect

Product Developers

API Consumers

API Operations