What's new in API Connect and DataPower - 2019

What’s new in API Connect &
Gateways 2019

IBM’s statements regarding its plans, directions, and intent are subject to change or withdrawal without
notice and at IBM’s sole discretion.
Information regarding potential future products is intended to outline our general product direction and it
should not be relied on in making a purchasing decision.
The information mentioned regarding potential future products is not a commitment, promise, or legal
obligation to deliver any material, code or functionality. Information about potential future products may not
be incorporated into any contract.
The development, release, and timing of any future features or functionality described for our products
remains at our sole discretion.
Performance is based on measurements and projections using standard IBM benchmarks in a controlled
environment. The actual throughput or performance that any user will experience will vary depending upon
many factors, including considerations such as the amount of multiprogramming in the user’s job stream,
the I/O configuration, the storage configuration, and the workload processed. Therefore, no assurance can
be given that an individual user will achieve results similar to those stated here.
2
Please note

• The Market Point of View & Trends
• Your Feedback. Our Investments 2019
• Tell Me What’s New & Cool
• Let’s Watch Some Live Action
Agenda
25 minutes
15 minutes

IBM API Connect: Ranked #1 in API Management
Ranked #1 in market share with
nearly double the share of the
next closest vendor (IDC June
2018)
Trusted by enterprises of all sizes
across industries and geographies
Learn more

Leader in Forrester & Gartner 2018 Reports
2018 Forrester Wave API Management
Magic Quadrant:
• IBM API Connect is clearly in the
Leaders Quadrant again!
2018 Gartner API Management Magic
Quadrant:
• IBM API Connect in Leaders Quadrant
with several vendors
• Did not take into account IBM’s v2018
release plans as Gartner focuses on GA
versions only

API Integration Market Trends
API back ends are distributed across multiple on-
premises and off-premises clouds
API volume explosion requires performance,
without sacrificing security
API Integration is becoming a core IT function,
requiring ease of operations for developers and
admins alike
Modern integration architectures with API,
Application, Messaging, Events and Fast File
Transfer are being adopted

Security-hardened and
highly performant API
Gateway service laying
the foundation for growing
API projects and volumes
What’s New in 2019
8
Scalability, flexibility &
IBM managed options
through a Microservices
and Cloud native
architecture across any
cloud
Multi-Cloud Fabric Performant & Secure Agile Operations
Simple and easy
operations for developers
and administrators with
automation and reduced
overhead

Multi-Cloud Fabric
9
• Built Into IBM Cloud Integration Platform for an integrated
UX across integration styles
• New & Simpler UX on IBM Cloud API Connect Reserved
Instance
• Multi-Cloud deployment flexibility with microservices &
Kubernetes-based API Connect
• Improved Transaction Latency thorough co-location of API
Gateway & Analytics with Systems of Records
• Handle SLAs & Usage Spikes by auto-scaling components
(i.e. API Gateway)
• Improved Resiliency through autonomic API Gateway cluster
management

IBM Cloud Integration Platform
10
Most powerful integration platform on the
market
• NEW offering incorporating traditional and
modern integration including APIs, App
Integration, Message queuing, Event
streams and Fast file transfer
Deploy wherever needed
• Supports deployment on-premises or in any
cloud
Enterprise grade
• Secure, scalable modern architecture
Businesses can save
!
"
of their integration
cost, gaining 3x the
speed
IBM Cloud
Integration

Modern User Experience on API Connect Reserved
Reserved Instance with improved
experience delivering productivity
enhancements with v2018+ as SaaS
Bring your own gateway to securely expose
APIs on-premise or in third-party Clouds
Active-active high availability with new APIC
Reserved Instance High Availability add-on
Unlimited API Gateway licenses for
customer managed use at no additional
charge in APIC Reserved Instance deployment
API Gateway
API
API Gateway
API
API Gateway
API
API Gateway
API
API Connect Reserved
Instance in IBM Cloud
IBM Managed
API Connect
API Gateway
API
Customer Managed
API Gateway
On-Premises

Multi-Cloud Deployment Flexibility
Flexibility to deploy on cloud using
Standard Kubernetes, IBM Cloud Private,
Red Hat OpenShift & VMWare
Performant, reliable and low latency
architecture with co-located gateway
deployed with analytics
Enhanced operational efficiency with
hybrid deployment topology with
components on any cloud
Hybrid licensing for IBM and Customer
managed deployments with a unified API
call volume based business model

Runtime Scale for Usage Spikes
Scale API gateway clusters to adhere
to SLAs and handle volume spikes
Autonomous gateway management,
deploy gateways on multiple clouds
without any operational impact
Self-healing gateways optimizing
scaling for usage spikes to improve
runtime resiliency
13
API
Gateway
Primary
Secondary..2
Secondary..N
API
Gateway
API
Gateway
Add to
cluster

14
• Istio Integration for improved performance & security by
passing API header and tokens into Istio
• Open API V3 support to meet security industry standards (i.e.
PSD2) & improve reuse
• OpenBanking & PSD2 Compliant including flexible JWT and
OAuth features
• 5X Improved Performance with cloud-native API-centric
Gateway Service
• Fast Time to Value through Out of the Box policies for API
Gateway Service
• Enterprise Specific Security Support through OAuth flow
customization
• Expanded Security with OIDC, CAPTCHA, Perimeter, DNS
check on Portal, etc.
Performant and Secure

Istio ready architecture to complement
capabilities of API management and
microservices management
End to end security by combining ingress
security (i.e. OAuth) with microservices security
(i.e. JWT validation) without writing any code
First & only API management platform to
propagate API security and rate limit claims
from the API Gateway into Istio to enable
microservices to provide unique client
experiences (i.e. Gold vs. Silver users)
Extending API Security into Istio Service Mesh
Microservice
Messaging
Microservice
Microservice
REST
REST
Microservice
API Gateway
JWT
JWT
JWT
JWT

Open API V3 support of Berlin Group
NextGenPSD2 framework through CLI
Accelerate your PSD2 adoption with set of
Open Banking specifications for exposing
banking information securely
Manage and enforce other OAI3 APIs within
the same constructs
Open API V3 support for Open Banking / PSD2

Protect your Client with Advanced Security
Accelerates market delivery of APIs by
delivering support for OpenID Connect to
provide Single-Sign-On (SSO) and identity
validation using JSON Web Tokens (JWT)
Granularity to Revoke OAuth access token
using enhanced token management
Advanced OAuth Consent with Dynamic
scope enforcement during API Invocation

Up to 5X+ increased performance with natively
built API Gateway using purpose-built technology for
native OpenAPI/Swagger REST and SOAP APIs
Multi-cloud scalability and extensibility to help
meet SLAs and improve client user experience
Optimized drag & drop built-in policies for security,
traffic control and mediation including flexible OAuth,
enhanced JSON & XML threat protection
Secure to the core with self-contained signed &
encrypted image to minimize risk, plus proven
security policies to quickly protect APIs
Continued support for Multiprotocol Gateway
Service to ease migrations
Before: DP Multi
protocol Gateway
Service
API call Backend
New: Native API
Gateway Service
API call Backend
Cloud-Native API Gateway Service in DataPower
API GW service

Policies for Enforcement on API Gateway Service
Gateway Script and XSLT policy support
provides flexible message mediation &
dynamic security enforcement
Dynamic Routing support through
Conditional Policy
Enforce strong security through Parse,
JSON and XML Schema Validation policy
OpenID Connect support to enable banks
to meet PSD2 / Open Banking regulations
OAuth Token revocation to enable self-
service token management
Foundational Security Mediation
Invoke API Key Map
Activity Log JWT Validate JSON-XML
Rate Limit JWT Generate Gateway Script
Throw OAuth Policy XSLT
Set Variable Parse
(Threat Detection)
Conditional Validate
User Security
OpenID Connect
Built-in policies for new API Gateway Service

Rapid OAuth policy creation to quickly create
OAuth provider security without deep security
expertise
Improved governance capabilities on
managing OAuth providers with flexible
administrative access control to enforce
enterprise standards
Ability to meet every new business demands
with customizable OAuth assembly
New User Security policy to enforce
authentication & authorization in API assembly,
adapting to unique enterprise security needs
Meeting Security Needs through New Flexible OAuth Provider

Hardened Portal Security
Supports OpenID Connect for
accelerated developer on-boarding and
social login
Enable PSD2/ Open Banking
compliance to programmatically onboard
consumers using REST Management APIs
and OpenID Connect
Enhanced spam protection against
spam bots with CAPTCHA and honeypot
Detect and prevent malicious attacks
with perimeter and DNS check

Agile Operations
22
• No-Code Automated API Testing & Monitoring for
Developer productivity
• Local API Test & Monitor App to speed adoption
• Granular Migration to transform current topology into a
modern topology
• Line of Business Autonomy with OOTB API updates for
Blue/Green deployments
• Integrated Security with ODIC for Enterprise identity
providers governing API developer and admin user access
• Auto-Generated GraphQL APIs via LoopBack for Developer
productivity
• Reduced TCO with DataPower Operations Dashboard plugin
for Splunk
• Cloud-Native operational resiliency with Istio integration

API Connect Test and Monitor
No code necessary, visual composer to
create tests in < 1 minute
Automated testing and monitoring to
understand API performance and behavior
Collaborate and win as a team by sharing
tests and detect errors earlier
No charge as a standalone offering via Cloud
and native Desktop application
Bundled with IBM products to become
ubiquitous within enterprises
Deep engagement with Developer
community to win together

Granular Migration to Future-Proof Deployment
Automated migration to modern v2018
architecture in few simple steps
Flexible and granular ability as well to choose
what you want to migrate and easily make
changes if necessary
Run current APIs as-is on modern v2018
architecture
Faster time to market with dry-run migration
capability to validate migration success before
executing
Continued support in-line with IBM Support
lifecycle for v5

Flexible Publishing Control
Near zero-downtime and rollback
capabilities via Blue/Green deployments
Simplified Blue/Green deployment
support out of the box for new API
updates with ease
Granular control to selectively publish
APIs to specific gateways providing
flexibility for multiple line of business
operation

Enhanced Troubleshooting with DataPower Operations Dashboard
Powerful API diagnostics with detailed views
across latency, version, policy, and consumer
Non-intrusive tracking of transactions across
multiple gateways without any manual policy
instrumentation
Supercharged performance for demanding
workloads via new distributed, federated server
architecture
Reduce Splunk licensing cost with DPOD
plug-in for Splunk, empowering Splunk admins
unique operational insight collected from DPOD

LoopBack
OASGraph
REST
Endpoint
GraphQL
Endpoint
Learn more
GraphQL Support via LoopBack OASGraph
Rapidly translate existing REST interfaces
to auto-create GraphQL interface
Simplified user experience through open-
source LoopBack tooling
Support for Open API V3 to meet industry
standards
CLI for CI/CD automation to generate
GraphQL schema with LoopBack module to
support dynamic enforcement

Cloud-Native Operational Resiliency with Istio Integration
New cloud-native patterns enabled
through Istio, API Connect and
DataPower integration
Increased operational resiliency,
leveraging Istio capabilities such as
circuit breaker and A/B deployment
patterns
Intelligent and dynamic routing
based on business logic via meta-data
injected into the mesh provided by API
Connect
Microservice
Messaging
Microservice
Microservice
REST
REST
Microservice
API Gateway

Notices and disclaimers
29
© 2018 International Business Machines Corporation. No part of this
document may be reproduced or transmitted in any form without
written permission from IBM.
U.S. Government Users Restricted Rights — use, duplication or
disclosure restricted by GSA ADP Schedule Contract with IBM.
Information in these presentations (including information relating to
products that have not yet been announced by IBM) has been reviewed
for accuracy as of the date of initial publication and could include
unintentional technical or typographical errors. IBM shall have no
responsibility to update this information. This document is distributed
“as is” without any warranty, either express or implied. In no event,
shall IBM be liable for any damage arising from the use of this
information, including but not limited to, loss of data, business
interruption, loss of profit or loss of opportunity. IBM products and
services are warranted per the terms and conditions of the agreements
under which they are provided.
IBM products are manufactured from new parts or new and used parts.
In some cases, a product may not be new and may have been previously
installed. Regardless, our warranty terms apply.”
Any statements regarding IBM's future direction, intent or product
plans are subject to change or withdrawal without notice.
Performance data contained herein was generally obtained in a
controlled, isolated environments. Customer examples are presented as
illustrations of how those customers have used IBM products and the
results they may have achieved. Actual performance, cost, savings or
other results in other operating environments may vary.
References in this document to IBM products, programs, or services
does not imply that IBM intends to make such products, programs or
services available in all countries in which IBM operates or does
business.
Workshops, sessions and associated materials may have been prepared
by independent session speakers, and do not necessarily reflect the
views of IBM. All materials and discussions are provided for
informational purposes only, and are neither intended to, nor shall
constitute legal or other guidance or advice to any individual participant
or their specific situation.
It is the customer’s responsibility to insure its own compliance
with legal requirements and to obtain advice of competent legal counsel
as to the identification and interpretation of any relevant laws and
regulatory requirements that may affect the customer’s business and
any actions the customer may need to take to comply with such
laws. IBM does not provide legal advice or represent or warrant that its
services or products will ensure that the customer follows any law.

Notices and disclaimers
continued
30
Information concerning non-IBM products was obtained from the
suppliers of those products, their published announcements or other
publicly available sources. IBM has not tested those products about this
publication and cannot confirm the accuracy of performance,
compatibility or any other claims related to non-IBM products.
Questions on the capabilities of non-IBM products should be addressed
to the suppliers of those products. IBM does not warrant the quality of
any third-party products, or the ability of any such third-party products
to interoperate with IBM’s products. IBM expressly disclaims all
warranties, expressed or implied, including but not limited to, the
implied warranties of merchantability and fitness for a purpose.
The provision of the information contained herein is not intended to, and
does not, grant any right or license under any IBM patents, copyrights,
trademarks or other intellectual property right.
IBM, the IBM logo, ibm.com and [names of other referenced IBM
products and services used in the presentation] are trademarks of
International Business Machines Corporation, registered in many
jurisdictions worldwide. Other product and service names might
be trademarks of IBM or other companies. A current list of IBM
trademarks is available on the Web at “Copyright and trademark
information” at: www.ibm.com/legal/copytrade.shtml.

What's new in API Connect and DataPower - 2019

More Related Content

What's hot (20)

Similar to What's new in API Connect and DataPower - 2019 (20)

Recently uploaded (20)

What's new in API Connect and DataPower - 2019