Category
API Management
API governance, lifecycle, security, gateway architecture, and developer portal strategy across enterprise estates.
6 articles
Modern API Management Practices
What was emerging API management practice in 2020 is now table stakes in 2023. A practitioner synthesis of the disciplines that have moved from leading-edge to baseline, what remains genuinely advanced, and where the next round of capability is forming.
API Gateway Modernization
Most enterprise estates running legacy API gateways have outgrown them in ways that aren't yet causing crisis. A practitioner view of when to migrate, when to leave the legacy gateway alone, and how to architect the migration so it doesn't become a years-long programme.
API Governance Fundamentals
API governance means everything and nothing. A framework that distinguishes the governance work that produces operational value from the governance work that produces theatre — and the minimum disciplines a maturing API estate cannot skip.
API Security Architecture
API security is a layered problem. The architecture that holds up treats the gateway, the transport, the authentication, the authorisation, the input handling, and the audit posture as separate concerns — each defended independently.
API Lifecycle Management
Most APIs in enterprise estates do not have a managed lifecycle. They have a birth and a slow decline. A practical view of what each lifecycle stage actually demands — and what the platforms that promise lifecycle management actually deliver.
API-Led Connectivity Fundamentals
API-led connectivity is the most consequential architectural idea to come out of enterprise integration in the last decade. It is also the most commonly misunderstood. A practitioner's view of what it actually means, where it fits, and where it falls down.