APIs to Zip Drives

Short, sweet, and to the point. Less than 500 words that talks about the role of an API Gateway in ABAC security, and how things can tie together or be orchestrated. Enjoy! The Axway API Gateway (APIGW) has the ability to act as many roles regarding the components of ABAC security. While generally not used for the actual IDP (identity provider) portion, it does have capabilities around user generation and attribute storage. Generally the Axway APIGW will be used to connect to one or more IDPs, such as LDAP, AD, Siteminder, OAM, etc. When a user attempts to access a resource, the APIGW will authenticate the user against the appropriate IDP, which can be chosen contextually by things such as IP, URI, service invoked, digital channel [ie mobile], etc. After successful authentication, the APIGW will gather attributes from the IDP and any other sources such as attribute servers, user credential (such as a PKI credential with OU and the like), or microservices to build out a profile for

A Statement of Intent In this technological age we are constantly seeing shifting paradigms and neologisms to go along with them. Every time I get a grasp on things, something else comes along that reveals a completely new path that can be leveraged and encompassed to make new and exciting visions for how things can be done. One has to have a truly voracious appetite to keep up with even a fraction of the changes going on in this new era. Here in this blog, I hope to brain dump on some of my thoughts on these changes and concepts that are new to me, share neat things I come across, and hopefully garner conversation and technical exchange around such things. While I share my thoughts and opinions, I hope to hear what others have to say, to learn, and expand my horizons. Constructive criticism is not only desired, but required! Hopefully, there will be explanations and connections I have made in here as well that may help others to grasp some complex topics easier. Statements and c