Imperva
LoginCloud Security ConsoleBot Management ConsoleRASP Console
EnglishENDeutschDE日本語JP中文CN
Schedule DemoFree TrialSchedule DemoFree Trial
  • Products
    Imperva Sonar logo mobile Imperva Sonar logo4

    Protect what matters most by securing workloads anywhere and data everywhere.

    • Platform Overview
    • Imperva Plans
    Application Security
    Continuously protect applications and APIs.
    • Web Application Firewall
    • Runtime Protection
    • API Security
    • Advanced Bot Protection
    • Client-Side Protection
    • Attack Analytics
    Data Security
    Secure data wherever it lives.
    • Cloud Data Security
    • Database Security
    • Data Risk Analytics
    Edge Security
    Accelerate content delivery and guarantee uptime.
    • DDoS Protection
    • Secure CDN
  • Solutions
    Attacks are rising

    Bad bots are the top vector and API attacks are steadily rising. You can remediate the most targeted vulnerabilities.

    • Read the Report
    One platform that meets your industry’s unique security needs.
    • Healthcare
    • Financial Services
    • Telecom & ISPs
    • Retail
    Protect your multi-cloud applications, APIs, and databases.
    • Amazon Web Services (AWS)
    • Microsoft Azure
    • Google Cloud Platform (GCP)
  • Support
    Need support? Check out our channels.
    • Technical Support
    • Services
    • Imperva University
    • Community
    • Documentation
    • EOL Policy
    • Support Portal Login
  • Partners
    Working with our partners for growth and results.
    • Imperva Partner Ecosystem
    • Channel Partners
    • Technology Alliances
    • Find a Partner
    • Partner Portal Login
  • Customers
  • Resources
    Get the tools, resources and research you need.
    • Resource Library
    • Blog
    • Free Tools
    • Cyber Threat Index
    • Cyber Threat Attack Map
  • About
    We are Imperva. Find out more about us.
    • Who We Are
    • Press & Awards
    • Events
    • Locations
    • Careers

Home > API Security 

API Security

Imperva API Security protects your APIs with an automated positive security model, detecting vulnerabilities in your applications, and shielding them from exploitation.Watch Video →

Simplified API Security

  • Builds a strict model of behavior for every API
  • Maintenance-free API security automation
  • Automatically pull OpenAPI specification
  • Holistic insights & analytics platform
  • Eliminates misuse of APIs
Schedule DemoFree Trial
dot1
dot2
dot3
dot4
dot5
dot6
dot7

Modern applications need API protection

Holistic endpoint visibility

Organizations manage a minimum of 300 APIs on average. Imperva’s API Security amplifies your security posture by automatically generating a Positive Security Model for every uploaded API Swagger file.

Automated security validation

APIs are being churned out faster than Security teams can review, influence, and sign off on before they’re pushed into production. Imperva’s API Security enables your teams to stay ahead of DevOps via automation.

Continuous API Endpoint Protection

Imperva API Security empowers your approach with out-of-the-box security rules adjusted to your APIs.

This ensures complete OWASP API coverage and promotes visibility for all security events per API endpoint.

Schedule Demo or Learn more

Covering all OWASP API Top 10

  • Injection OWASP
  • Mass Assignment OWASP
  • Broken Authentication OWASP
  • Security Misconfiguration OWASP
  • Excessive Data Exposure OWASP
  • Broken Object-level
    Authorization OWASP
  • Improper Asset Management OWASP
  • Lack of Resource Rate
    Limiting OWASP
  • Broken Function Level
    Authorization OWASP
  • Insufficient Logging &
    Monitoring OWASP

Positive security model

  • Automation
  • Integration Partners
Automation

With API Security, simply upload the OpenAPI specification file that your DevOps team has created and Imperva will automatically build a positive security model. This will ensure only the traffic you want accesses your API, and all of your API endpoints are protected as soon as they’re published.

API Security automation
Integration Partners
apps and microservices API Gateway Vendors
  • MS Azure logo
  • AWS logo
  • google cloud logo
  • Logo RedHat

Stopping more than just API attacks

Going beyond the OWASP API Top 10, Imperva protects your APIs from the latest in automated attacks, such as:

  • Advanced Bot Protection

    Manage bot traffic and protect against bad bots attacks

  • DDoS Protection

    Defend from application and layer DDoS threats, backed by 3-sec mitigation SLA

  • Cloud WAF

    Prevent technical app attacks and vulnerability exploits

  • Account Takeover

    Stop credential stuffing

“The increased confidence we have in reducing our appetite for risk has been well received across our development teams with the introduction of API Security”

Christophe Spoden Security Architect
orange

See how we can help you secure your web applications and data.

Schedule DemoFree Trial
imperva cyber security demo light imperva cyber security mobile demo mobile light

Additional Resources

Watch Next

API Gateways and API Security webinar

How Imperva views API Gateway vs API Security

API Security Demo

Imperva API Security Demo

Read Next
Imperva API Security
DatasheetsImperva API Security
Complete Visibility Throughout API Endpoints
WebinarsAPI Security: Discover Complete Visibility Throughout Your API Endpoints
Open Banking
WhitepapersOpen Banking – Reshaping Financial Services
From our blog
Serverless Computing
The Advantages and Risks of Serverless Computing
Peter Klimek■Dec 29■3min read
Software Supply Chain
Software Supply Chain Attacks: From Formjacking to Third Party Code Changes
Matthew Hathaway■Jan 6■2min read
Related products
Application Security
Web Application Firewall
Imperva Plans
Imperva
+1 866 926 4678
Partners
  • Imperva Partner Ecosystem
  • Channel Partners
  • Technology Alliances
  • Find a Partner
  • Partner Portal Login
Resources
  • Imperva Blog
  • Resource Library
  • Case Studies
  • Learning Center
About Us
  • Who We Are
  • Press & Awards
  • Events
  • Partners
  • Careers
Network
  • Network Map
  • System Status
Support
  • Emergency DDoS Protection
  • Support Portal
  • Imperva Community
  • Documentation Portal
  • API Integration
Cookie Policy Modern Slavery Statement Privacy and & Legal
EnglishDeutsch日本語中文
Contact us +1 866 926 4678
EnglishDeutsch日本語中文
Cookie Policy Modern Slavery Statement Privacy and & Legal
Copyright © 2021 Imperva. All rights reserved

Schedule your personal demo

“Imperva prevented 10,000 attacks in the first 4 hours of Black Friday weekend with no latency to our online customers.”

Top 3 US Retailer

Thank you!

envelope

An Imperva security specialist will contact you shortly.