Salt Security, a leading API security provider, has recently introduced its revolutionary API Security Protection Platform, powered by Pepper, the company’s proprietary Large Language Model (LLM) AI. This cutting-edge platform represents a significant advancement in API security by integrating AI across the entire API lifecycle, simplifying API discovery, posture management, and threat detection to enable faster risk mitigation.
The rapid growth of generative AI has enabled developers to create applications and APIs at an unprecedented speed and scale. However, this increased speed of API creation has also introduced new risks that traditional security measures are unable to keep up with.
Nuno Teodoro, Vice President of Group Cybersecurity, emphasized the importance of securely delivering finance-related APIs for partners and customers in the rapidly evolving GenAI landscape. He highlighted the need for core capabilities in API security from technological partners like Salt Security to ensure the delivery of secure APIs that adhere to policies and best practices, enhancing cyber resilience throughout the API security lifecycle.
Salt Security’s AI-driven platform leverages generative AI to protect organizations from the risks associated with rapid application development. With APIs serving as the core of current and future applications, Salt’s platform is uniquely positioned to usher in the next phase of application security.
The latest expansion of the Salt platform offers enhanced API continuous discovery, API posture assurance, and robust API behavioral threat protection. In the discovery phase, Salt’s AI engine acts as a thorough investigator across the application landscape, automatically detecting all APIs, even undocumented or embedded within microservices, to ensure comprehensive visibility and security. The platform continuously analyzes the API ecosystem to keep the inventory up to date as APIs are rapidly created.
Moving to API posture assurance, Salt Security’s AI-driven Posture Governance monitors and analyzes API configurations to proactively identify deviations from security best practices and insecure configurations, ensuring a strong API security posture and preventing potential breaches.
In the crucial phase of threat detection, Salt Security’s patented Behavioral Threat Protection analyzes API traffic in real-time, detecting anomalies, suspicious activities, and potential zero-day exploits. The adaptive learning algorithm evolves based on new data and past incidents, providing a dynamic defense mechanism crucial in today’s rapidly evolving threat landscape.
To further reduce risks, the Salt Labs team continues to discover API security flaws that are integrated into the platform. For example, Salt recently addressed critical security flaws in the ChatGPT plugin that could have allowed unauthorized access to sensitive user data by introducing advanced OAuth protection.
According to the Salt Labs State of API Security Report, Q1 2023, organizations are managing an increasing number of APIs, with many doubling their API count over the past year. As generative AI accelerates code and API creation, traditional API security solutions struggle to keep pace with the expanding API attack surface, highlighting the need for innovative solutions like Salt’s platform.
With these enhancements, customers can adopt an API-first model for modern applications, scaling business operations securely while adhering to company and industry API policies and standards. Salt is the first security vendor to incorporate AI throughout an API security platform, offering the new platform as a SaaS solution or managed security service.
Michael Nicosia, COO and co-founder of Salt Security, emphasized the essential role of AI and ML in providing organizations with deep insights to mitigate sophisticated API security threats. Leveraging generative AI within business operations has accelerated API creation and provided attackers with new opportunities, prompting Salt to integrate Pepper, its LLM, into the platform for enhanced API management, threat response, and posture governance.
Overall, Salt Security’s new API Security Protection Platform represents a significant advancement in API security, leveraging AI to address the challenges posed by rapid application development and emerging threats in the cybersecurity landscape. Organizations can now benefit from enhanced API security measures to protect their critical assets and mitigate risks effectively.