APImeetupMWC-3scale-Jose
- 1. How to Control and Secure your IoT APIs with API Management How to Control and Secure your IoT APIs with API Management API Meetup Barcelona Jose Gorchs Jose.gorchs@3scale.net February 2016
- 2. How to Control and Secure your IoT APIs with API Management Overview Agenda Part 1: APIs and API Management 2 Part 2: Application examples
- 3. How to Control and Secure your IoT APIs with API Management 3 Importance of APIs Bridge between IT & business Effective way of leveraging digital assets Core for business success Why API’s?
- 4. How to Control and Secure your IoT APIs with API Management 4 Drivers for digital transformation Mobile: 54% ecommerce sales (Forrester) B2B: 50% of B2B collaboration via APIs by 2016 (Gartner) IoT: $7.1 Trillion revenue by 2020 (IDC) Why API’s?
- 5. How to Control and Secure your IoT APIs with API Management 5 API effectiveness examples Expedia: $2B revenue from APIs (90%) eBay: 60% listings via APIs Adidas: All digital assets internally accessible via APIs Why API’s?
- 6. How to Control and Secure your IoT APIs with API Management Why API Management? Key Benefits-factors of API Management: •Security •Analitics and Reporting •Developer Portal •Monetization 6 Main pillars of a successful API strategy
- 7. How to Control and Secure your IoT APIs with API Management A powerful API access control and traffic management makes it simpler to: • Authenticate Traffic • Restrict by Policy • Drop Unwelcome Calls • Impose Rate Limits 7 API Management : Security • Generate Overuse Alerts • Protect Backend Services • Package your API • Create access tiers
- 8. How to Control and Secure your IoT APIs with API Management 8 API Management : Security
- 9. How to Control and Secure your IoT APIs with API Management What is happening with my API? 10 API Management : Analytics and Reporting
- 10. How to Control and Secure your IoT APIs with API Management The whole point of an API is to make a developer’s life easier 11 API Management: Dev Portal
- 11. How to Control and Secure your IoT APIs with API Management Allow multiple pricing rules: • One time payment, • fixed recurring monthly fee, • tiered pricing, etc. Allow different types of billing cycles: prepaid, post paid Packetize your API Do not store credit card details! (PCI compliance) The Key to a “less painful process”…. 12 API Management: Monetization Integrate with billing providers!
- 12. How to Control and Secure your IoT APIs with API Management Lets do it in house… Best reason not to do it… 13 The same arguments why you don’t build your own • ERP • CRM • IT monitoring solution, etc. Its not your core business… (Unless you are 3scale)
- 13. How to Control and Secure your IoT APIs with API Management Overview Agenda 14 Part 2: Application examples Part 1: APIs and API Management
- 14. How to Control and Secure your IoT APIs with API Management SOME USE CASES • Very Related: government & apps • Goverment • Songdo - Smart City From Scratch • Barcelona approach • Apps • Citymapper 15 http://www.theurbantide.com/fullstory/blog/2014/11/5/5-smart-cities-case-studies
- 15. How to Control and Secure your IoT APIs with API Management SmC From Scratch: Songdo Sensors, sensors, sensors=lots of data Railway high-speed wi-fi, electronic panels at the exits of railway stations (waiting times for connecting buses), Fingerprint access to homes, household devices linked to your mobile phone, etc Pneumatic waste removal Charging stations for electric cars Buildings are mixed-use High-resolution videoconferencing 10.000 cisco telepresence units planned for 2020 They even filed a patent request for a 16 http://www.bbc.com/news/technology-23757738
- 16. How to Control and Secure your IoT APIs with API Management Barcelona Fifth overall SC in Europe Orthogonal bus network…. 17 http://www.vilaweb.cat/noticia/4175829/20140226/ten-reasons-why-barcelona-is-smart-city.html Smart bus shelters using solar panels and screens provides waiting times Bicing Parking sensors Streetlights adapt intensity when there is people around Hybrid buses
- 17. How to Control and Secure your IoT APIs with API Management Citymapper • GPS/navigation apps have a vehicle-centric vision • Most citizens do not use a commute app on a daily basis because the existing ones do not add any real value to them • Data in existing apps is mostly “static” (timetables) 18 Issue
- 18. How to Control and Secure your IoT APIs with API Management Citymapper • A to B directions that humans actually use in cities. • Live/real-time routing that updates every minute. • Nice multimodal! 19 The Ultimate Transport App • 50M investment • +1M downloads
- 19. How to Control and Secure your IoT APIs with API Management 20
- 20. How to Control and Secure your IoT APIs with API Management 21https://content.citymapper.com/api
- 21. How to Control and Secure your IoT APIs with API Management Citymapper: API.. 22https://content.citymapper.com/api Provider And Consumer ROME transport API CITYSDK Amsterdam API TMB London (TFL).. …
- 22. How to Control and Secure your IoT APIs with API Management 23
- 23. How to Control and Secure your IoT APIs with API Management Citymapper: coolest feature 24 Catapult mode!!!!!
- 24. How to Control and Secure your IoT APIs with API Management Take-away • APIs are key on any digital strategy, including SmartCities • The most efficient way to consume or publish services and data is by means of an API • If you have an API, you will have to manage IT • DIY API management is not optimal or efficient 25
- 25. How to Control and Secure your IoT APIs with API Management Some References • http://www.forbes.com/sites/mckinsey/2014/01/07/ready-for-apis-three-steps-to- unlock-the-data-economys-most-promising-channel/#71dd304289e5 • http://smartcitiescouncil.com/ • https://prezi.com/xok9vvl9h2bz/songdo/ • http:www.iflscience.com/technology/worlds-first-solar-cycle-path-installed- amsterdam// • http://www.bcnecologia.net/en/projects/orthogonal-bus-network-barcelona • https://www.forrester.com/US+Mobile+And+Tablet+Commerce+To+Top+293B+by+20 18+Total+eCommerce+To+Hit+414B/-/E-PRE7004 • https://www.itu.int/en/ITU-D/Regional- Presence/AsiaPacific/Documents/KT_Smart%20city_itu_traI_0319.pdf • http://openmobilealliance.org/static/oma-annual- reports/pages/oma_2011_AR_APIs.html 26
- 26. How to Control and Secure your IoT APIs with API Management API Meetup Barcelona Jose Gorchs Jose.gorchs@3scale.net February 2016
Editor's Notes
- #2: My name is jose gorchs I work at 3scale as TAM For those outside of Barcelona: enjoy Beautiful monuments, Great Restaurants and NICE PUBLIC TRANSPORT STRIKES!
- #4: “APIs Underpin Modern Digital Business”
- #5: Forrester: 2018 54% US sales by mobile or tablet
- #6: Salesforce.com generates 50% of its revenue through APIs, Salesforce reported 60% API based transactions Expedia.com generates 90%, and eBay, 60%
- #7: Not only related to 3scale but general areas that you should consider as part of your API program
- #8: policy manager to control access to API endpoints and track traffic. The result is a centralized overview that puts real control where it’s needed—in the data flow, not just a “firewall” to pass the data through.
- #9: policy manager to control access to API endpoints and track traffic. The result is a centralized overview that puts real control where it’s needed—in the data flow, not just a “firewall” to pass the data through.
- #10: policy manager to control access to API endpoints and track traffic. The result is a centralized overview that puts real control where it’s needed—in the data flow, not just a “firewall” to pass the data through.
- #11: Reports and charts by methods, apps, endpoints or custom metrics Provide Intuitive , clear use charts Provide insightful reports to your partners and developers..
- #12: An interactive API documentation is a very powerful engager
- #13: Fixed FEES charged beginning of month, variable fees at the end Packet= API services+ Rate Limits + Pricing A few billing providers: STRIPE, Ogone, Braintree, Authorize.net
- #17: Ubiquitos computing Flow sensors control the saltwater canal in Songdo's Central Park and the flows of cars and pedestrians Highway traffic trackers. No rubbish trucks trawling the streets or vast bins Flow sensors control the saltwater canal in Songdo's Central Park and the flows of cars and pedestrians Building managers can sense and display energy consumption to encourage people to conserve.
- #18: 28 BUS lines-> isotropic grid Check the video (Sant Cugat) TMB could not make it!
- #19: What if you want to use public transport? A dynamic city needs a dynamic app
- #21: API are part of their core business
- #24: Swagger standard 1 min signup process Developer in mind
- #25: Middle age to the rescue!