API Gateway Platform and Vendor Analysis Best Practices
Story
When evaluating API Gateway platforms, there are a number of capabilities to consider. Below I have provided a list of such capabilities for API Gateways that you should score the platforms (and vendors) on. This is a high level list, and I have a more detailed list if interested in reviewing for evaluation purposes. Also, this article is focused just on API Gateway capabilities. I will publish 2 more articles focused on 2 more capabilities to evaluate platforms (and vendors) on: (1) API Management (2) API Portals.
Please reach out to me if you would like to discuss or review these capabilities in more detail with your team at: Jordan.Braunstein@visualintegrator.com . I have personally evaluated and score-carded the following API Gateway Platforms (in no particular order):
- MuleSoft
- WSO2
- Kong
- AWS API Gateway
- Azure API Gateway
- Gravitee
- Boomi
- Redhat 3Scale
- CA Layer 7
- Apigee
Pricing and Vendor Overview
- Core Product Pricing Model
- Product Support Model
Security
- Support for HIPAA and PHI Protection
- PCI Compliance
- Use of Open Source Software and Plugins that are vulnerable to Security
- Support for OAuth 2.0, JWT, OpenID Connect and SAML
- Security Policies provided out of the box (OAuth 2 validation, IP Filtering, Client Certificates, JWT Validation, OpenID Connect, Integration with External Identity Provider)
- Integration with Identity Management Platforms
Infrastructure and Architecture
- Scalability and Redundancy
- Support for Containers, Docker, etc.
- Cloud vs On-Premise Installations
- Support for Serverless Architecture on a Cloud Provider
Configuration and Development Features
- Installation Complexity
- Custom Policy Development Kit
- Throttling solution
- Documenting APIs on the Gateway
Enterprise Runtime Features
- Logging
- Monitoring and Alerts, including Integration with External Monitoring Platforms
- Technical Analytics
- Caching
- Micro Gateways
- Business Analytics (Scraping or dripping Payloads for BI)
- Training
- Debugging and Testing Tools
Recent Comments