Includes compliance with Common Criteria Certification Protection Profile for Enterprise Security Management-Access Control Version 2.1,  Enterprise Security Management - Policy Management Version 2.1, and FIPS and NIST B security compliance.

Security policies

Optimal flexibility and granularity of security policies whether globally applied or at the business or technical API level. Security policies can be determined based on API operation and based on information supplied as part of the API request from the client. Over 80 policy filters for security simplify creating security policies including the OWASP Top 10 threats.

Identity management

Identity security mechanisms with API Key / Secret Key, all 2-leg/3-leg OAuth 2.0 flows, and the ability to add an authentication step to any existing Identity Assertion Provider (IDP) using SAML, Kerberos, and those from Oracle, Tivoli, CA, RSA, and Sun and to generate the tokens that back-end services currently expect.

Operational stability

Prevent threats to operational stability with throttling and quota mechanisms, and authorization to control access.

BMW relies on Axway API security

Learn how the ConnectedDrive platform that connects BMW to its vehicles uses centralized security.

Watch Video

Meet complex security requirements

Too many security threats that are successful are the result of improperly managed security. AMPLIFY API management simplifies the task enabling easier security configuration and the ability to meet complex security requirements. Use predefined security policies and a visual editor to configure security quickly and easily.


Axway AMPLIFY API Management

Learn more about AMPLIFY API Management

Implementing API security should not be difficult

Mitigate risk by securing your APIs providing access for those who need it and specifying the conditions that prevent unauthorized access.


Manage identity and reduce risk

Simplify managing identity and protect against potential identity threats using predefined policy filters.


Mitigate risk with threat protection against foundational API and sophisticated cybersecurity attacks

Learn how to achieve optimal security by leveraging PingIntelligence for APIs, an artificial intelligence (AI) engine, integrated with Axway AMPLIFY™ API Gateway, for automatic detection and blocking of new cyberattacks on APIs.


Get started today

Sign up now to experience the Axway AMPLIFY platform for free