Pre-Con Ed: CA API Gateway: Developing Custom Policies to Secure Your Enterprise APIs
Download as pptx, pdf1 like487 views
This document summarizes a presentation about developing custom policies to secure enterprise APIs using CA API Gateway. The presentation covers an introduction to services, policies, and assertions in API Gateway and how they are used to secure APIs. It then demonstrates securing an API in a live demo and discusses performance considerations and troubleshooting policies. The agenda includes introductions to core concepts, securing an API, performance factors, and troubleshooting.
1 of 10
Downloaded 36 times
Ad
Recommended
Pre-Con Ed: CA API Developer Portal: Policy Writing for the Portal Using the ...
Pre-Con Ed: CA API Developer Portal: Policy Writing for the Portal Using the ...CA Technologies This document discusses using context variables and custom fields in CA API Developer Portal policy writing. It describes how portal policy templates and custom fields allow additional input that can be leveraged by gateway policies. The presentation includes an example of a policy template, discusses typical use cases, and demonstrates a policy that uses a custom field to variably set quotas on HTTP methods and restrict partner access.
Pre-Con Ed: How to Provide Mobile Users With a Convenient, Yet Secure, Sessio...
Pre-Con Ed: How to Provide Mobile Users With a Convenient, Yet Secure, Sessio...CA Technologies The document discusses the challenges of maintaining user sessions in mobile applications when integrating with third-party web applications and describes how to utilize CA Mobile API Gateway features with OAuth and SAML to streamline user experience. It outlines the scenario, the components involved, and the technical details of transitioning from a native app to a web application. Additionally, it includes information about recommended sessions related to enterprise mobile app management.
Tech Talk: CA API Gateway: Deploying Docker Container Gateways
Tech Talk: CA API Gateway: Deploying Docker Container GatewaysCA Technologies The document discusses deploying CA API Gateway using Docker containers. It begins with an introduction to the benefits of Docker environments like consistency, portability, and enabling microservices architecture. It then discusses how CA API Gateway can be deployed as a Docker container for simplified deployment. The presentation includes two demos, the first showing the CA API Gateway Docker container and the second demonstrating how it can be used for microservices through service discovery and API publishing/proxying. Recommended related sessions on DevOps, API management, and microservices are also listed.
Pre-Con Ed: CA Mobile App Services: Build the Powerful Mobile App Every Enter...
Pre-Con Ed: CA Mobile App Services: Build the Powerful Mobile App Every Enter...CA Technologies The document outlines how CA Mobile App Services can enable enterprises to efficiently build mobile and IoT applications with powerful backend capabilities using minimal code. It emphasizes the flexibility, security, and reduced complexity offered by the service, with a focus on features like user authentication and messaging. A demo showcases the ease of app development using the platform's SDK.
Strategies for DevOps in the API and Microservices World
Strategies for DevOps in the API and Microservices WorldCA Technologies The document discusses strategies for implementing DevOps in an API and microservices environment. It outlines some of the challenges companies face when transitioning to microservices, including lack of agility and dependencies between services. It then provides several strategies for DevOps success, such as starting with a smaller initial project to learn microservices, focusing on reducing the size and dependencies of deliverables to enable faster deployment, and considering replacing rather than upgrading services. The conclusion emphasizes learning to build and deploy small, with attention to dependencies, in order to balance speed, safety and time to market.
Tech Talk: CA Live API Creator MythBuster: Database Design Takes an Expert
Tech Talk: CA Live API Creator MythBuster: Database Design Takes an ExpertCA Technologies Val Huber from CA Technologies gave a presentation on CA Live API Creator. The presentation discussed how API Creator allows non-experts to easily create APIs, apps, and databases without advanced coding skills. It also discussed how API Creator provides strategic value by enabling both business empowerment through shadow IT and enterprise agility through a unified development platform.
Pre-Con Ed: CA Live API Creator: Build and Deploy Enterprise-class APIs With...
Pre-Con Ed: CA Live API Creator: Build and Deploy Enterprise-class APIs With...CA Technologies The document outlines a presentation on building and deploying enterprise-class APIs, focusing on the importance of reactive logic for automating integrations and enhancing security. It introduces concepts like multi-table validations, the significance of API-driven communication in the app economy, and the reduction of coding effort through abstraction. Attendees will learn practical skills, including creating APIs from existing databases and implementing reactive logic.
Pre-Con Ed: CA API Gateway: Managing and Migrating Policies with the Gateway ...
Pre-Con Ed: CA API Gateway: Managing and Migrating Policies with the Gateway ...CA Technologies The document discusses how to use the Gateway Migration Utility to manage and migrate configurations between different environments for CA API Gateway. It covers migration concepts like exporting policies and resources, using mappings to define how resources are imported, and templating for environmental resources. The presentation provides an overview of these concepts and demonstrates how to use mappings in the utility to automate the migration process.
Pre-Con Ed: CA Live API Creator: How to Integrate Enterprise Data for Mobile ...
Pre-Con Ed: CA Live API Creator: How to Integrate Enterprise Data for Mobile ...CA Technologies This document provides an overview of a presentation on integration with API servers. The presentation discusses how API servers can enable integration between on-premises and partner systems through APIs and webhooks. It also covers hands-on examples of creating APIs that span multiple databases, processing webhooks to integrate between systems, and sending requests to partner systems. The goals are to learn how to create an API server that exposes APIs for partners and mobile apps, enforces logic, and creates webhooks for integration with partner systems.
Pre-Con Ed: CA Live API Creator: Learn How to Integrate Data From Enterprise...
Pre-Con Ed: CA Live API Creator: Learn How to Integrate Data From Enterprise...CA Technologies The document presents an overview of how organizations can integrate enterprise applications like Salesforce with local domain-specific applications using CA Live API Creator. It discusses the importance of APIs in enabling agility and competitiveness in the app economy and outlines steps for configuring and connecting to Salesforce to create custom resources. Additionally, it emphasizes the need for businesses to maintain their logic while allowing for seamless data integration from multiple sources.
Pros, Cons, Pitfalls of common Docker container architectures (#dockitecture)
Pros, Cons, Pitfalls of common Docker container architectures (#dockitecture)CA Technologies This document discusses common Docker container architectures including monolithic, hybrid, and microservice approaches. It provides pros and cons of each architecture based on factors like maintainability, scalability, and extensibility. The document also presents scorecards to evaluate architectures and summarizes that hybrid and microservice designs are seeing benefits for non-functional requirements. Docker is enabling more organizations to adopt microservice architectures through containerization.
Pre-Con Ed: CA Live API Creator: How to Create, Deploy, Secure and Scale an E...
Pre-Con Ed: CA Live API Creator: How to Create, Deploy, Secure and Scale an E...CA Technologies The document discusses creating enterprise-class APIs using CA Live API Creator, emphasizing a faster and more efficient approach compared to traditional coding. It outlines the session's agenda, practical demonstrations, and the ability to integrate various data sources. Participants will receive an evaluation copy of the tool to implement in their own businesses.
Tech Talk: CA Live API Creator: APIs and the App Economy
Tech Talk: CA Live API Creator: APIs and the App EconomyCA Technologies This document summarizes a presentation about CA Live API Creator. It discusses how APIs can help meet the requirements of the app economy, including multi-channel access, enforced data integrity and security, integration, business agility, and simplicity. The presentation provides an example of how an API server can address these challenges using automated API logic, reactive logic, and integration logic. It argues that CA Live API Creator can dramatically reduce the effort required for API logic and business logic compared to conventional coding approaches.
Securing your API Portfolio with API Management
Securing your API Portfolio with API ManagementCA Technologies This document discusses securing APIs and the benefits of using an API management (APIM) solution. It covers topics like the differences between APIM and web access management (WAM), securing APIs for mobile and single-page applications, JSON web tokens, OpenID Connect vs OAuth, and real-world use cases from Verizon and Duke Energy. The presentation emphasizes the importance of flexibility in API security and how APIM allows centralized handling of security for multiple APIs.
Critical Considerations for Mobile and IoT Strategy
Critical Considerations for Mobile and IoT StrategyCA Technologies The document discusses seven critical considerations for developing a mobile and IoT strategy: 1) Ensuring security of data and services, 2) Designing apps suited for mobile use, 3) Supporting user identities, 4) Planning integrations with enterprise systems, 5) Encrypting data in transit and at rest, 6) Enabling communication and collaboration, 7) Planning a scalable IoT architecture. It notes the importance of these issues and provides examples of how to address each consideration when building a mobile and IoT strategy.
Pre-Con Ed: Learn What's New in CA Spectrum®
Pre-Con Ed: Learn What's New in CA Spectrum®CA Technologies This document provides an agenda and overview for a presentation on new features in CA Spectrum. The presentation will cover enhancements to the CA Spectrum web client and topology views, improved Jaspersoft reporting, bidirectional integration with CA Unified Infrastructure Management, new support for wireless controller/access point management and Cisco ACI, and other enhancements. It provides background on CA Spectrum and the value it delivers, as well as descriptions and examples of many of the specific new features.
Securing Mobile Payments: Applying Lessons Learned in the Real World
Securing Mobile Payments: Applying Lessons Learned in the Real WorldCA Technologies 1) The document discusses best practices for securing mobile payments based on lessons learned, including mobile authentication using push notifications and biometrics, securing in-app purchases, leveraging real-time risk analytics, and securely provisioning cards to mobile wallets.
2) It outlines CA's strategy for secure mobile payments which includes solutions for mobile authentication, in-app purchases, mobile wallets, real-time risk scoring, and NFC mobile wallet provisioning with cardholder authentication.
3) The document provides details on CA's mobile authentication solutions, risk analytics network model which considers device reputation across banks, and mobile wallet provisioning flow which incorporates one-time passcodes for authentication.
CA API Management: A DevOps Enabler
CA API Management: A DevOps EnablerRajat Vijayvargiya The document discusses the role of CA API Management (APIM) in enabling DevOps and promoting digital transformation in enterprises by leveraging APIs. It highlights the importance of creating an agile API architecture that enhances developer collaboration, ensures security, and improves user experience while accelerating app delivery. Additionally, it emphasizes managing APIs like products and fostering developer communities to drive business growth and optimize integration across various platforms.
5 pillars of API Management
5 pillars of API ManagementJames Farley-Sutton The document discusses the 5 pillars of API management with CA Technologies:
1. Expose enterprise data and functionality in API-friendly formats like RESTful APIs.
2. Protect information assets exposed via APIs to prevent misuse through measures like an API gateway.
3. Authorize secure, seamless access for valid identities using standards like OAuth.
4. Optimize system performance and manage the API lifecycle with features in an API gateway.
5. Engage, onboard, educate and manage developers through an interactive online portal.
Pre-Con Ed: CA Live API Creator: Using Data Explorer to Test APIs, Create Bac...
Pre-Con Ed: CA Live API Creator: Using Data Explorer to Test APIs, Create Bac...CA Technologies The document outlines a presentation by Val Huber on using the Live API Creator and Data Explorer, emphasizing its capabilities in building and customizing applications without requiring coding skills. Key topics include simplifying database creation, empowering business users, and enabling agile app development through reactive logic and integration. The session also highlights the importance of APIs in achieving agility in the app economy.
Tech Talk: CA Live API Creator: Modern Integration Strategies—API Integration...
Tech Talk: CA Live API Creator: Modern Integration Strategies—API Integration...CA Technologies Val Huber of CA Technologies gave a presentation on modern integration strategies using APIs and webhooks. The presentation discussed how past integration approaches copied large amounts of data between systems, which is slow and can create outdated data. Modern approaches use API integration to consolidate multiple on-premises systems without data copying, and webhooks to integrate with partners via RESTful web services. The talk illustrated these approaches and how CA Live API Creator enables faster API, logic, and integration development compared to traditional approaches through features like reactive logic, automatic object modeling, and database integration.
Pre-Con Ed (Lab): Making CA Identity Suite Deployment Incredibly Easy
Pre-Con Ed (Lab): Making CA Identity Suite Deployment Incredibly EasyCA Technologies This document summarizes a presentation about making deployments of the CA Identity Suite incredibly easy. It discusses using the CA Identity Suite Virtual Appliance to install and integrate the full Identity Suite in under 30 minutes. It also discusses using Deployment Xpress to easily deploy use cases within the Identity Suite with just a few clicks by selecting from a marketplace of available use cases. The presentation includes demos of both the virtual appliance and Deployment Xpress.
Introduction to Service Virtualization
Introduction to Service VirtualizationCA Technologies This document provides an overview and agenda for a presentation on CA Service Virtualization. The presentation introduces service virtualization, discusses why it is important for addressing the speed and quality quandary in software development, and how it works to improve software development and testing. Key points include that service virtualization models the behavior of software services to remove constraints in development and testing. It can help teams complete work faster, improve quality, and reduce costs. The demonstration portion will show how service virtualization improves on traditional stubs and mocks.
Pre-Con Ed: Leverage the Dynamic Service Modeling Functionality With CA Servi...
Pre-Con Ed: Leverage the Dynamic Service Modeling Functionality With CA Servi...CA Technologies The document discusses CA Service Operations Insight, which enhances the ability to meet service level agreements by modeling and monitoring critical business services rather than just individual components. It emphasizes leveraging the dynamic service import capabilities and service discovery policies to reduce manual effort in building service models. The presentation outlines the transformation from traditional operations centers to a business operations center focused on service health, triage, and collaboration across different domains.
Tech Talk: Agile Product Management Playbook
Tech Talk: Agile Product Management PlaybookCA Technologies This document summarizes a presentation about embedding agile product management practices. It discusses iteratively working on initiatives and features at different levels, from executive strategy down to development teams. It presents techniques for collaboration between product managers and teams, gathering continuous feedback, planning in initiative and feature roadmaps and releases, and executing work within timed releases. The overall message is how to structure work hierarchically while enabling collaboration across roles to deliver the most valuable functionality.
Tech Talk: CA Live API Creator MythBuster: Domain Logic Requires Domain-spec...
Tech Talk: CA Live API Creator MythBuster: Domain Logic Requires Domain-spec...CA Technologies This document summarizes a presentation about using reactive logic to handle domain-specific business logic. Reactive logic uses spreadsheet-like expressions to define validations and computations across multiple database tables. This approach is more concise and executable than traditional coding, scaling effectively to handle complex enterprise problems like payment allocation and price rollups through a few simple rules. The reactive logic approach claims to provide faster development and greater agility than traditional coding for business logic, which typically requires a significant amount of code.
Data on Demand: Now That’s What we’re Lookin’ For!
Data on Demand: Now That’s What we’re Lookin’ For!CA Technologies This document discusses how CA Test Data Manager can provide test data on demand for development and testing teams. It presents three use cases: 1) allowing testers to reserve unique test data through integration with CA Agile Central, 2) cloning missing test data from production environments, and 3) enabling synthetic generation of application objects. Live demonstrations are provided for each use case. The presentation concludes that CA Test Data Manager's capabilities for finding, generating, and delivering test data help ensure development and testing teams have the right data when and where they need it.
Digital transformation in financial services through trusted digital relation...
Digital transformation in financial services through trusted digital relation...CA Technologies This document summarizes a presentation about digital transformation in financial services. The presentation discusses how financial services have become digital businesses and must transform digitally to stay competitive against new fintech startups. It highlights how building trusted digital relationships with customers through secure digital identity management can help financial institutions innovate, drive customer acquisition and retention, and grow their business. The presentation provides examples of how some financial institution customers are using CA's digital relationship platform and identity and access management solutions to transform their business through trusted digital relationships.
CA API Gateway: Web API and Application Security
CA API Gateway: Web API and Application SecurityCA Technologies This document discusses how CA API Gateway can be used to secure web APIs and applications. It begins with an introduction to securing the new digital perimeter where APIs are increasingly exposed. It then provides an overview of the CA API Management suite and common use cases. The remainder of the document discusses various security considerations and features that the CA API Gateway provides, such as authentication, authorization, encryption, auditing, and protection from common vulnerabilities and attacks. It concludes by recommending where organizations should start in securing their APIs and applications.
Pre-Con Ed: CA API Gateway: How to Deploy Your Gateway Across Multiple Enviro...
Pre-Con Ed: CA API Gateway: How to Deploy Your Gateway Across Multiple Enviro...CA Technologies The document outlines deployment scenarios and best practices for CA API Gateway, covering on-premises, public cloud, private cloud, and hybrid options. It discusses various deployment models, their pros and cons, and offers real-world examples for each scenario. Additionally, the document includes best practices for load balancing, VMware configurations, and performance testing to optimize the implementation.
More Related Content
What's hot (20)
Pre-Con Ed: CA Live API Creator: How to Integrate Enterprise Data for Mobile ...
Pre-Con Ed: CA Live API Creator: How to Integrate Enterprise Data for Mobile ...CA Technologies This document provides an overview of a presentation on integration with API servers. The presentation discusses how API servers can enable integration between on-premises and partner systems through APIs and webhooks. It also covers hands-on examples of creating APIs that span multiple databases, processing webhooks to integrate between systems, and sending requests to partner systems. The goals are to learn how to create an API server that exposes APIs for partners and mobile apps, enforces logic, and creates webhooks for integration with partner systems.
Pre-Con Ed: CA Live API Creator: Learn How to Integrate Data From Enterprise...
Pre-Con Ed: CA Live API Creator: Learn How to Integrate Data From Enterprise...CA Technologies The document presents an overview of how organizations can integrate enterprise applications like Salesforce with local domain-specific applications using CA Live API Creator. It discusses the importance of APIs in enabling agility and competitiveness in the app economy and outlines steps for configuring and connecting to Salesforce to create custom resources. Additionally, it emphasizes the need for businesses to maintain their logic while allowing for seamless data integration from multiple sources.
Pros, Cons, Pitfalls of common Docker container architectures (#dockitecture)
Pros, Cons, Pitfalls of common Docker container architectures (#dockitecture)CA Technologies This document discusses common Docker container architectures including monolithic, hybrid, and microservice approaches. It provides pros and cons of each architecture based on factors like maintainability, scalability, and extensibility. The document also presents scorecards to evaluate architectures and summarizes that hybrid and microservice designs are seeing benefits for non-functional requirements. Docker is enabling more organizations to adopt microservice architectures through containerization.
Pre-Con Ed: CA Live API Creator: How to Create, Deploy, Secure and Scale an E...
Pre-Con Ed: CA Live API Creator: How to Create, Deploy, Secure and Scale an E...CA Technologies The document discusses creating enterprise-class APIs using CA Live API Creator, emphasizing a faster and more efficient approach compared to traditional coding. It outlines the session's agenda, practical demonstrations, and the ability to integrate various data sources. Participants will receive an evaluation copy of the tool to implement in their own businesses.
Tech Talk: CA Live API Creator: APIs and the App Economy
Tech Talk: CA Live API Creator: APIs and the App EconomyCA Technologies This document summarizes a presentation about CA Live API Creator. It discusses how APIs can help meet the requirements of the app economy, including multi-channel access, enforced data integrity and security, integration, business agility, and simplicity. The presentation provides an example of how an API server can address these challenges using automated API logic, reactive logic, and integration logic. It argues that CA Live API Creator can dramatically reduce the effort required for API logic and business logic compared to conventional coding approaches.
Securing your API Portfolio with API Management
Securing your API Portfolio with API ManagementCA Technologies This document discusses securing APIs and the benefits of using an API management (APIM) solution. It covers topics like the differences between APIM and web access management (WAM), securing APIs for mobile and single-page applications, JSON web tokens, OpenID Connect vs OAuth, and real-world use cases from Verizon and Duke Energy. The presentation emphasizes the importance of flexibility in API security and how APIM allows centralized handling of security for multiple APIs.
Critical Considerations for Mobile and IoT Strategy
Critical Considerations for Mobile and IoT StrategyCA Technologies The document discusses seven critical considerations for developing a mobile and IoT strategy: 1) Ensuring security of data and services, 2) Designing apps suited for mobile use, 3) Supporting user identities, 4) Planning integrations with enterprise systems, 5) Encrypting data in transit and at rest, 6) Enabling communication and collaboration, 7) Planning a scalable IoT architecture. It notes the importance of these issues and provides examples of how to address each consideration when building a mobile and IoT strategy.
Pre-Con Ed: Learn What's New in CA Spectrum®
Pre-Con Ed: Learn What's New in CA Spectrum®CA Technologies This document provides an agenda and overview for a presentation on new features in CA Spectrum. The presentation will cover enhancements to the CA Spectrum web client and topology views, improved Jaspersoft reporting, bidirectional integration with CA Unified Infrastructure Management, new support for wireless controller/access point management and Cisco ACI, and other enhancements. It provides background on CA Spectrum and the value it delivers, as well as descriptions and examples of many of the specific new features.
Securing Mobile Payments: Applying Lessons Learned in the Real World
Securing Mobile Payments: Applying Lessons Learned in the Real WorldCA Technologies 1) The document discusses best practices for securing mobile payments based on lessons learned, including mobile authentication using push notifications and biometrics, securing in-app purchases, leveraging real-time risk analytics, and securely provisioning cards to mobile wallets.
2) It outlines CA's strategy for secure mobile payments which includes solutions for mobile authentication, in-app purchases, mobile wallets, real-time risk scoring, and NFC mobile wallet provisioning with cardholder authentication.
3) The document provides details on CA's mobile authentication solutions, risk analytics network model which considers device reputation across banks, and mobile wallet provisioning flow which incorporates one-time passcodes for authentication.
CA API Management: A DevOps Enabler
CA API Management: A DevOps EnablerRajat Vijayvargiya The document discusses the role of CA API Management (APIM) in enabling DevOps and promoting digital transformation in enterprises by leveraging APIs. It highlights the importance of creating an agile API architecture that enhances developer collaboration, ensures security, and improves user experience while accelerating app delivery. Additionally, it emphasizes managing APIs like products and fostering developer communities to drive business growth and optimize integration across various platforms.
5 pillars of API Management
5 pillars of API ManagementJames Farley-Sutton The document discusses the 5 pillars of API management with CA Technologies:
1. Expose enterprise data and functionality in API-friendly formats like RESTful APIs.
2. Protect information assets exposed via APIs to prevent misuse through measures like an API gateway.
3. Authorize secure, seamless access for valid identities using standards like OAuth.
4. Optimize system performance and manage the API lifecycle with features in an API gateway.
5. Engage, onboard, educate and manage developers through an interactive online portal.
Pre-Con Ed: CA Live API Creator: Using Data Explorer to Test APIs, Create Bac...
Pre-Con Ed: CA Live API Creator: Using Data Explorer to Test APIs, Create Bac...CA Technologies The document outlines a presentation by Val Huber on using the Live API Creator and Data Explorer, emphasizing its capabilities in building and customizing applications without requiring coding skills. Key topics include simplifying database creation, empowering business users, and enabling agile app development through reactive logic and integration. The session also highlights the importance of APIs in achieving agility in the app economy.
Tech Talk: CA Live API Creator: Modern Integration Strategies—API Integration...
Tech Talk: CA Live API Creator: Modern Integration Strategies—API Integration...CA Technologies Val Huber of CA Technologies gave a presentation on modern integration strategies using APIs and webhooks. The presentation discussed how past integration approaches copied large amounts of data between systems, which is slow and can create outdated data. Modern approaches use API integration to consolidate multiple on-premises systems without data copying, and webhooks to integrate with partners via RESTful web services. The talk illustrated these approaches and how CA Live API Creator enables faster API, logic, and integration development compared to traditional approaches through features like reactive logic, automatic object modeling, and database integration.
Pre-Con Ed (Lab): Making CA Identity Suite Deployment Incredibly Easy
Pre-Con Ed (Lab): Making CA Identity Suite Deployment Incredibly EasyCA Technologies This document summarizes a presentation about making deployments of the CA Identity Suite incredibly easy. It discusses using the CA Identity Suite Virtual Appliance to install and integrate the full Identity Suite in under 30 minutes. It also discusses using Deployment Xpress to easily deploy use cases within the Identity Suite with just a few clicks by selecting from a marketplace of available use cases. The presentation includes demos of both the virtual appliance and Deployment Xpress.
Introduction to Service Virtualization
Introduction to Service VirtualizationCA Technologies This document provides an overview and agenda for a presentation on CA Service Virtualization. The presentation introduces service virtualization, discusses why it is important for addressing the speed and quality quandary in software development, and how it works to improve software development and testing. Key points include that service virtualization models the behavior of software services to remove constraints in development and testing. It can help teams complete work faster, improve quality, and reduce costs. The demonstration portion will show how service virtualization improves on traditional stubs and mocks.
Pre-Con Ed: Leverage the Dynamic Service Modeling Functionality With CA Servi...
Pre-Con Ed: Leverage the Dynamic Service Modeling Functionality With CA Servi...CA Technologies The document discusses CA Service Operations Insight, which enhances the ability to meet service level agreements by modeling and monitoring critical business services rather than just individual components. It emphasizes leveraging the dynamic service import capabilities and service discovery policies to reduce manual effort in building service models. The presentation outlines the transformation from traditional operations centers to a business operations center focused on service health, triage, and collaboration across different domains.
Tech Talk: Agile Product Management Playbook
Tech Talk: Agile Product Management PlaybookCA Technologies This document summarizes a presentation about embedding agile product management practices. It discusses iteratively working on initiatives and features at different levels, from executive strategy down to development teams. It presents techniques for collaboration between product managers and teams, gathering continuous feedback, planning in initiative and feature roadmaps and releases, and executing work within timed releases. The overall message is how to structure work hierarchically while enabling collaboration across roles to deliver the most valuable functionality.
Tech Talk: CA Live API Creator MythBuster: Domain Logic Requires Domain-spec...
Tech Talk: CA Live API Creator MythBuster: Domain Logic Requires Domain-spec...CA Technologies This document summarizes a presentation about using reactive logic to handle domain-specific business logic. Reactive logic uses spreadsheet-like expressions to define validations and computations across multiple database tables. This approach is more concise and executable than traditional coding, scaling effectively to handle complex enterprise problems like payment allocation and price rollups through a few simple rules. The reactive logic approach claims to provide faster development and greater agility than traditional coding for business logic, which typically requires a significant amount of code.
Data on Demand: Now That’s What we’re Lookin’ For!
Data on Demand: Now That’s What we’re Lookin’ For!CA Technologies This document discusses how CA Test Data Manager can provide test data on demand for development and testing teams. It presents three use cases: 1) allowing testers to reserve unique test data through integration with CA Agile Central, 2) cloning missing test data from production environments, and 3) enabling synthetic generation of application objects. Live demonstrations are provided for each use case. The presentation concludes that CA Test Data Manager's capabilities for finding, generating, and delivering test data help ensure development and testing teams have the right data when and where they need it.
Digital transformation in financial services through trusted digital relation...
Digital transformation in financial services through trusted digital relation...CA Technologies This document summarizes a presentation about digital transformation in financial services. The presentation discusses how financial services have become digital businesses and must transform digitally to stay competitive against new fintech startups. It highlights how building trusted digital relationships with customers through secure digital identity management can help financial institutions innovate, drive customer acquisition and retention, and grow their business. The presentation provides examples of how some financial institution customers are using CA's digital relationship platform and identity and access management solutions to transform their business through trusted digital relationships.
Viewers also liked (20)
CA API Gateway: Web API and Application Security
CA API Gateway: Web API and Application SecurityCA Technologies This document discusses how CA API Gateway can be used to secure web APIs and applications. It begins with an introduction to securing the new digital perimeter where APIs are increasingly exposed. It then provides an overview of the CA API Management suite and common use cases. The remainder of the document discusses various security considerations and features that the CA API Gateway provides, such as authentication, authorization, encryption, auditing, and protection from common vulnerabilities and attacks. It concludes by recommending where organizations should start in securing their APIs and applications.
Pre-Con Ed: CA API Gateway: How to Deploy Your Gateway Across Multiple Enviro...
Pre-Con Ed: CA API Gateway: How to Deploy Your Gateway Across Multiple Enviro...CA Technologies The document outlines deployment scenarios and best practices for CA API Gateway, covering on-premises, public cloud, private cloud, and hybrid options. It discusses various deployment models, their pros and cons, and offers real-world examples for each scenario. Additionally, the document includes best practices for load balancing, VMware configurations, and performance testing to optimize the implementation.
A How-to Guide to OAuth & API Security
A How-to Guide to OAuth & API SecurityCA API Management This document provides an overview of OAuth and how it can be implemented securely. It defines OAuth as an emerging web standard for authorizing limited access to applications and data. A simple example is given showing how OAuth allows users to grant access to resources like photos on Flickr to third party applications like a photo printing site. The document also discusses how OAuth formalizes delegation of identity mapping to users while promoting a model of least privilege. It notes that while OAuth is important, it only one component of a full API access control and security solution, and the benefits Layer 7 provides in implementing OAuth securely for enterprises.
DevOps: A Culture Transformation, More than Technology
DevOps: A Culture Transformation, More than TechnologyCA Technologies DevOps is a cultural transformation in software development focused on improving collaboration, communication, and integration between development and operations teams to enhance software delivery speed and performance. It emphasizes breaking down silos, fostering trust, and embracing feedback, while requiring changes in processes, roles, and skills. The document outlines concepts, practices, and fundamental changes necessary for organizations to successfully implement a DevOps approach.
TechTalk: Extend Existing Architectures to Digital Endpoints with CA API Mana...
TechTalk: Extend Existing Architectures to Digital Endpoints with CA API Mana...CA Technologies The document presents a discussion on the CA API Gateway and its role in integrating legacy systems with modern cloud, mobile, and IoT applications. It outlines common integration challenges, showcases the platform's capabilities for API security and management, and highlights case studies demonstrating successful deployments. Additionally, it details the extensibility of the API Gateway for developers to create custom assertions and manage integrations effectively.
Developing Secure Mobile Applications
Developing Secure Mobile ApplicationsCA Technologies This document provides an overview of developing secure mobile applications using CA's identity and access management capabilities. It discusses how CA Secure Cloud and the Mobile API Gateway SDK can help embed identity and access management into mobile apps. The agenda includes demonstrations of how to secure iOS and Android apps using CA's solutions, as well as an Android app lab. It recommends attending additional CA World 2015 sessions on identity management, security, and the future of identity and access.
Vocabulary Lists for the SAT & Academic Sucess
Vocabulary Lists for the SAT & Academic SucessRyan Frank This document provides a word list intended to help students improve vocabulary, along with suggestions for how to learn the words. The word list contains 720 words compiled from past SATs, literature, and general vocabulary. A 40-week study plan is proposed to learn the words in sets of 9 at a time, averaging 4 words per day. Learning techniques suggested include using flashcards, putting words in sentences, learning word roots, and using words in conversations. The goal is to equip students with a broader vocabulary through an organized yet flexible learning approach.
Seamless Migration
Seamless Migrationjasnow Jeff Yeary gave a presentation about seamlessly migrating platforms from .NET to Rails. He discussed his company's history with various platforms and why they chose to build a new global responsive Rails platform. Their basic approach was to transition APIs, create a responsive mobile site, adopt OAuth authentication, and use Zuul as a reverse proxy to route between the existing and new platforms. Zuul provides a simple way to route requests and choose which application to send them to while logging statistics.
Making Spinnaker Go @ Stitch Fix
Making Spinnaker Go @ Stitch FixDiana Tkachenko The document outlines the process of setting up Spinnaker at Stitch Fix, detailing the infrastructure and deployment methods utilized in an AWS environment. It covers the installation steps, challenges faced, particularly related to authentication, and differences in configuration compared to other setups, emphasizing the importance of SSL, OAuth2.0, and client certificates. The author shares insights gained from the experience and expresses anticipation for Spinnaker's production use.
Multi-node ZUUL OpenStack gate for bare metal and Docker
Multi-node ZUUL OpenStack gate for bare metal and DockerVikram G Hosakote Zuul is a tool used to gate source code repositories and only allow changes to be merged if tests pass. It facilitates running tests and automated tasks in response to code changes. Zuul uses a trigger, cloner, launcher and reporter architecture. It integrates with Jenkins using the Gearman plugin to pass parameters between them. Zuul can be run on multi-node infrastructures and bare metal using configuration playbooks and by replacing DevStack scripts. It is used by OpenStack Kolla to deploy OpenStack in Docker containers during gating.
Microservices in Action
Microservices in ActionBhagwat Kumar The document discusses microservices architecture, contrasting it with traditional monolithic architecture, highlighting the benefits and challenges of microservices including independent deployment and operational complexity. It covers characteristics like decentralized governance and fault isolation, and introduces tools like Spring Cloud and Netflix OSS for managing microservices. Additionally, it addresses misconceptions in distributed computing and provides references for further reading.
Production Ready Services at Netflix
Production Ready Services at NetflixJonah Horowitz The document outlines the essential characteristics of production-ready services at Netflix, emphasizing reliability, scalability, performance, and monitoring. Key features include automated deployment pipelines, chaos monkey for reliability, and proactive scalability methods. The document also mentions team engagements and automated checks to ensure service health and performance.
Case Study: Orange Goes from Dev "Oops" to DevOps
With CA Application Perfor...
Case Study: Orange Goes from Dev "Oops" to DevOps
With CA Application Perfor...CA Technologies Orange has implemented a lifecycle reliability improvement (LCRI) process using CA Application Performance Management (CA APM) to evaluate application quality with a global maturity score. As of this year, all suppliers to Orange must comply with LCRI, highlighting CA APM's role in enhancing application quality. The session details the design, implementation, and successes of the LCRI process at Orange.
Building A DevOps Platform for Microservices
Building A DevOps Platform for MicroservicesTim Cochran The document discusses building a DevOps platform for microservices, emphasizing the importance of allowing developers to focus on functionality while providing necessary tools and services. Key concepts include self-service capabilities, infrastructure testing, and avoiding configuration drift through practices like phoenix servers. The document also highlights the need for a collaborative DevOps culture and effective resource provisioning.
Json(::PP) is a-changing
Json(::PP) is a-changingcharsbar This document discusses recent changes and improvements made to the JSON and JSON::PP Perl modules, including fixing various issues, adding better and faster number detection, incremental parsing, and UTF-16/32 support in an experimental capacity. It also notes that specifying PERL_JSON_BACKEND=Cpanel::JSON::XS should now work properly and that a few incompatible changes may have been introduced between JSON::PP and Cpanel::JSON::XS.
Introducing in-house PaaS in SmartNews
Introducing in-house PaaS in SmartNewsNobutoshi Ogata SmartNews introduced an in-house Platform as a Service (PaaS) called spaas to easily deploy and operate docker-based applications. Spaas uses ECS and Terraform for container hosting and provisioning. It features load balancing, service discovery using ELB and Consul, log management with Fluentd and S3, and a CLI for creating, configuring, deploying, and rolling back services. Future plans include adding deployment pipelines, priority task definitions, termination hooks, dedicated hosts, and CDN integration.
摩登開發團隊的DevOps之道 (@DevOpsTaiwan)
摩登開發團隊的DevOps之道 (@DevOpsTaiwan)Chen Cheng-Wei 本文件探讨了DevOps的概念、目的和实施方法,强调通过自动化和文化变革提高软件交付速度与质量。DevOps旨在缩短开发周期,提高协作效率,并通过衡量和共享数据来优化流程。文中还提到,DevOps工程师的角色因公司需求而异。
Building Bizweb Microservices with Docker
Building Bizweb Microservices with DockerKhôi Nguyễn Minh This document discusses using Docker to build and deploy microservices for a Bizweb application. It proposes using Docker Swarm mode for orchestration along with Netflix OSS components like Eureka, Zuul and Ribbon to provide service discovery, API gateway functionality and load balancing between microservices. Continuous integration is achieved using Jenkins to build Docker images from code commits, tag them and push to a private Docker registry. When code is committed, Jenkins triggers deployment of updated services to a Docker Swarm cluster for testing or production. This approach aims to reduce delivery time, simplify deployment and scaling of microservices.
Bizweb Microservices Architecture
Bizweb Microservices ArchitectureKhôi Nguyễn Minh Tài liệu trình bày về việc chuyển đổi kiến trúc Bizweb từ monolithic sang microservices, nhằm khắc phục các vấn đề như công nghệ lạc hậu và khó khăn trong việc mở rộng. Kiến trúc mới sẽ đơn giản hóa quy trình phát triển, cho phép dễ dàng tích hợp và quy mô hệ thống. Tài liệu cũng chia sẻ những khó khăn và thuận lợi trong quá trình chuyển đổi cũng như các công nghệ sử dụng trong kiến trúc microservices.
Ad
Similar to Pre-Con Ed: CA API Gateway: Developing Custom Policies to Secure Your Enterprise APIs (20)
Microservice Lifecycle Demo Presentation
Microservice Lifecycle Demo PresentationMatt McLarty The document presents a demonstration by Jay Thorne and Matt McLarty on creating a microservices-based system to enhance software development speed and safety. It discusses essential and accidental complexities in microservices, illustrating these concepts through a demo scenario related to an event management application. The presentation emphasizes the importance of service discoverability, policy enforcement, and rapid prototyping within the microservices lifecycle.
Orchestrating Legacy Services Into Contemporary RESTful WEB APIs With CA App ...
Orchestrating Legacy Services Into Contemporary RESTful WEB APIs With CA App ...CA Technologies The document discusses the CA App Services Orchestrator (CA ASO), highlighting its vision to evolve legacy SOAP services into modern RESTful APIs, aimed at enhancing mobile and web application development. It outlines the intended roadmap and features of CA ASO, emphasizing an API-first design approach and various resource integration capabilities. Additionally, it encourages customer collaboration to shape the future of CA ASO and improve the development process through agile practices.
Tech Talk: CA Live API Creator: API Servers vs. App Servers
Tech Talk: CA Live API Creator: API Servers vs. App ServersCA Technologies This document summarizes a presentation about API servers versus application servers. It discusses how systems have evolved from client-server architectures to application servers for scalability and integration. However, application servers have issues with communication protocols and agility. API servers are better suited for the app economy by providing simpler integration through REST APIs. The presentation covers how to create and manage API servers while leveraging existing investments in application servers. It also discusses using reactive logic in API servers for integration that is 40 times more concise.
Survive Industry Disruption and Deliver a Great Customer Experience with APIs...
Survive Industry Disruption and Deliver a Great Customer Experience with APIs...CA Technologies The document discusses the necessity of APIs and service virtualization to adapt to industry disruption and enhance customer experiences, highlighting successful case studies and technology tools. It emphasizes the importance of a frictionless developer environment in accelerating app development and turning data into business insights. The insights shared aim to guide organizations in achieving agile development and improved service quality to maintain competitiveness in a rapidly changing digital landscape.
Creating an Omnichannel Experience for Your Customers
Creating an Omnichannel Experience for Your CustomersCA Technologies The document discusses the importance of creating an omnichannel experience for customers in today's digital business landscape. It highlights the need for enterprises to implement secure API management and a customer-centric approach to deliver seamless interactions across various platforms while addressing security concerns. The presentation outlines CA Technologies' omnichannel solutions that enable consistent access management and risk evaluation, ensuring a secure yet user-friendly experience.
Building regression tests to increase velocity and prevent things from “Going...
Building regression tests to increase velocity and prevent things from “Going...CA Technologies The presentation discusses the significance of building regression tests for software products to ensure stability during agile practices and frequent releases. It highlights the importance of understanding common APIs, testing contracts, and building trust among service providers and consumers to prevent functionality disruptions. The session includes demonstrations on generating API tests and enhancing visibility into application behavior changes.
TechTalk: Extreme Automation
Creating Headless Tests “Automagically”
TechTalk: Extreme Automation
Creating Headless Tests “Automagically”CA Technologies The presentation discusses the importance of automated testing, particularly regression testing, in software development, emphasizing the need for tests to follow the user's journey through applications. It highlights various methods for generating API tests that effectively track user interactions, including utilizing plugins to assess API requests and responses. The document also addresses the shift from static to dynamic web applications and provides insights into optimizing testing processes with automation.
Case Study: Rogers Communications Integrates CA API Management and CA Service...
Case Study: Rogers Communications Integrates CA API Management and CA Service...CA Technologies Rogers Communications utilizes CA API Management and CA Service Virtualization to enhance continuous delivery through improved system integration and API usage, enabling consistent customer experiences. The document outlines challenges in testing environments and emphasizes the importance of virtualizing testing to reduce costs and speed up product delivery. It highlights the integration of planning, building, and running APIs as key pillars for accelerating IT delivery and improving software quality.
Enabling the Multi-Device Universe
Enabling the Multi-Device UniverseCA API Management The document discusses the transition from traditional single sign-on (SSO) systems to a more seamless, cross-device access experience using APIs, particularly within mobile environments. It highlights the increasing significance of mobile applications, projecting substantial growth and usage patterns, while also addressing the challenges of balancing user experience with security risks. The implementation of an API management solution at JM Smucker Company provides a framework for achieving efficient and secure SSO across multiple applications and devices.
Pre-Con Ed: Workshop on Policy Creation, Management and Support for OAuth and...
Pre-Con Ed: Workshop on Policy Creation, Management and Support for OAuth and...CA Technologies This document contains the slides from a workshop on policy creation and management using the CA API Gateway. The workshop covers topics such as the basics of policy, policy creation, policy management, and more advanced uses including leveraging external APIs and authorization standards like OAuth and OpenID Connect. The slides include an introduction to the CA API Gateway, what policies are, how to create and manage them, examples of simple policies, and how to integrate APIs with OAuth.
APIs Fueling the Connected Car Opportunity - Scott Morrison, SVP & Distinguis...
APIs Fueling the Connected Car Opportunity - Scott Morrison, SVP & Distinguis...CA API Management The document discusses the role of APIs in the connected car ecosystem, highlighting their importance for customer acquisition, development, and enhancing user experience. It examines various business scenarios, including remote companion apps and automotive commerce, while emphasizing security and risk management associated with API usage. Additionally, it outlines considerations for API management to drive innovation and partnerships within the connected car market.
API Monetization: Unlock the Value of Your Data
API Monetization: Unlock the Value of Your DataCA API Management This document discusses opportunities for companies to monetize their application programming interfaces (APIs) and data. It outlines how exposing data through APIs can extend a company's brand and reach while also generating revenue. The document recommends practices for unlocking the value of enterprise data, such as by creating targeted products and services. It also provides tips on best practices for monetizing data APIs, including modeling revenue and simplifying API discovery for developers.
CA Microgateway: Deploying, Configuring, and Extending CA Microgateway
CA Microgateway: Deploying, Configuring, and Extending CA MicrogatewayCA Technologies CA Microgateway is a lightweight, container-based API gateway designed for rapid deployment and management using Docker, with features like policy templates for microservices developers. It allows administrators to create or extend policy templates easily, supporting microservices architectures. The document outlines deployment models, configuration practices, and associated sessions from the CA World 2017 conference.
Putting Security in Identity-as-a-Service
Putting Security in Identity-as-a-ServiceCA Technologies Nishant Kaushik presents on CA's Identity-as-a-Service solution for securing access to Software-as-a-Service applications. The solution addresses enterprises' concerns about managing user access and permissions across numerous SaaS apps. It provides single sign-on, automated user provisioning and deprovisioning, access governance, and other identity management capabilities. The comprehensive IDaaS platform builds an "identity graph" to manage user lifecycles and enforce policies consistently across SaaS and on-premises applications.
Case Study: Gala Coral Improves the Odds in Retail Gaming and Entertainment w...
Case Study: Gala Coral Improves the Odds in Retail Gaming and Entertainment w...CA Technologies Gala Coral, a leading online sports betting operator in Europe, has implemented CA API Management to enable secure and consistent third-party integrations with their platform. This solution helps streamline the betting process by providing common APIs for account management, authentication, and bet placement, addressing challenges posed by legacy integrations. The initial phases of the project successfully delivered core functionalities, with ongoing plans for further API expansions and new applications.
Enable and Secure Business Growth in the New Application Economy
Enable and Secure Business Growth in the New Application EconomyCA Technologies The document outlines the critical role of security and APIs in facilitating growth within the application economy. It emphasizes the need for businesses to prioritize security measures—especially in mobile apps—to enhance customer experience and trust. Additionally, it showcases how CA Technologies' solutions aim to support organizations in achieving secure development and management of applications while maintaining user access across various channels.
Pre-Con Education: How to Deliver a
"5-Star" Mobile App Experience With
CA ...
Pre-Con Education: How to Deliver a
"5-Star" Mobile App Experience With
CA ...CA Technologies The document outlines how to enhance mobile app experiences using CA Mobile App Analytics, focusing on integrating app performance management and analytics for optimizing user experience. It stresses the importance of understanding user behavior, detecting crashes, and improving app performance to achieve high ratings. The presentation includes demos, session overviews, and integration steps for leveraging the CA Mobile App Analytics tools effectively.
'Shift-Right' - Rapid Evolution with DesignOps
'Shift-Right' - Rapid Evolution with DesignOpsCA Technologies The document discusses the concept of "DesignOps" which provides a value-driven approach to defining, building, and deploying solutions through accelerated communication, collaboration, integration, measurement and automation across ideation, design, development, testing, and operations. It summarizes a presentation about using DesignOps and continuous testing platforms to rapidly evolve processes and adopt modern scaled agile and lean approaches. The presentation addresses shifting development practices left to involve design earlier, shifting assurance practices up to focus on business value, and shifting operations practices right to enable insight-driven and self-healing systems.
Technology Primer: Building Applications the New-Fashioned Way
Technology Primer: Building Applications the New-Fashioned WayCA Technologies The document presents insights from a presentation at CA World 2015 by Chris Kraus, focusing on modern application development challenges and solutions in the context of the application economy. It emphasizes contract-first development, automation in testing, and the importance of CA Continuous Application Insight for identifying defects and improving customer experiences. The presentation outlines strategies for building better applications faster, while addressing legacy systems and fostering collaboration through API testing.
Tech Talk: Service Virtualization on Demand—Have Everything, Whenever and Whe...
Tech Talk: Service Virtualization on Demand—Have Everything, Whenever and Whe...CA Technologies The document outlines a tech talk by CA Technologies on service virtualization on demand, highlighting its potential to enhance application delivery and quality while alleviating development and testing constraints. It discusses common challenges faced by developers and testers, such as lack of available dependencies and costly third-party services, and presents service virtualization as a solution. The talk emphasizes the ease of deployment and pay-as-you-use pricing for CA's virtualization solutions.
Ad
More from CA Technologies (20)
CA Mainframe Resource Intelligence
CA Mainframe Resource IntelligenceCA Technologies The document discusses the importance of assessing current mainframe resource utilization and capacity in order to improve service delivery, optimize costs, and enhance security measures. It outlines challenges faced by organizations, such as high software costs and skill gaps, while presenting CA Mainframe Resource Intelligence as a solution for automated assessments and actionable recommendations. Best practices are also provided for achieving better business outcomes through improved efficiency and compliance with regulations.
Mainframe as a Service: Sample a Buffet of IBM z/OS® Platform Excellence
Mainframe as a Service: Sample a Buffet of IBM z/OS® Platform ExcellenceCA Technologies The presentation discusses the concept of 'Mainframe as a Service' by CA Technologies, highlighting how it can enhance enterprise-grade toolsets and streamline development and operations in mainframe environments. It emphasizes the benefits of self-service provisioning, utilization of DevOps practices, and the automation of workflows to improve operational efficiency and reduce total cost of ownership. The session aims to illustrate how modern approaches can deconstruct traditional silos in IT management, ultimately allowing for greater flexibility and efficiency.
Case Study: How CA Went From 40 Days to Three Days Building Crystal-Clear Tes...
Case Study: How CA Went From 40 Days to Three Days Building Crystal-Clear Tes...CA Technologies The case study illustrates how CA Technologies improved its software testing process by reducing the time required to produce regression test cases from 40 days to just three, while enhancing test coverage. It highlights the implementation of collaborative modeling between product owners and engineers to clarify requirements and the use of a model-based testing (MBT) approach to generate comprehensive test cases. The results included fewer defects, better functional coverage, and increased efficiency in the testing process.
Case Study: How The Home Depot Built Quality Into Software Development
Case Study: How The Home Depot Built Quality Into Software DevelopmentCA Technologies The document outlines how The Home Depot transitioned from traditional waterfall software development to agile practices to enhance quality in their software development processes. It details their focus on defining core beliefs, minimizing defects through early detection, reducing delays, and optimizing processes while adopting continuous delivery methodologies. Key areas of improvement included process transformation, re-tooling the quality team, and implementing a structured quality assurance framework.
Pre-Con Ed: Privileged Identity Governance: Are You Certifying Privileged Use...
Pre-Con Ed: Privileged Identity Governance: Are You Certifying Privileged Use...CA Technologies The document discusses the importance of privileged identity governance in managing and certifying privileged user access to minimize security risks. It highlights the significant challenges organizations face with legacy identity access management solutions and presents CA Technologies' Privileged Access Manager as a comprehensive approach to mitigate these issues. A case study is provided showing how automation in access governance led to substantial time and cost savings for CA Technologies.
Case Study: Privileged Access in a World on Time
Case Study: Privileged Access in a World on TimeCA Technologies The document discusses the importance of managing privileged access in organizations, highlighting that it is crucial for business and security. It details how CA Privileged Access Manager (PAM) can mitigate risks associated with excessive access through the use of two-factor authentication, automated password handling, and session recording. Real-world use cases from FedEx illustrate the transition from manual and exposure-prone practices to secure, audited processes facilitated by PAM.
Case Study: How SGN Used Attack Path Mapping to Control Privileged Access in ...
Case Study: How SGN Used Attack Path Mapping to Control Privileged Access in ...CA Technologies SGN, a leading UK critical infrastructure company, has transformed its operations by fully adopting cloud technologies and utilizing IoT for gas pipeline management. The organization implemented attack path mapping to enhance privileged access management and mitigate risks during its digital transformation. Mo Ahddoud, SGN's CISO, discussed their approach to securely leveraging AWS and improving overall security posture.
Case Study: Putting Citizens at The Center of Digital Government
Case Study: Putting Citizens at The Center of Digital GovernmentCA Technologies The document highlights the transformation of public services in Louisiana and Amazonas, emphasizing a citizen-centric approach to digital government that enhances accessibility and engagement. Both regions are noted for their innovative strategies, leveraging technology to break down silos and improve service delivery. The presentation outlines a model that prioritizes citizen needs and fosters collaboration among government agencies.
Making Security Work—Implementing a Transformational Security Program
Making Security Work—Implementing a Transformational Security ProgramCA Technologies The document discusses SunTrust Bank's approach to transforming its security program in response to increasing cyber threats and recent data breaches. It highlights the importance of evolving identity and access management (IAM) practices, investing in technology, and fostering a culture of security awareness within the organization. Key strategies include enhancing technical capabilities, establishing clear roles, and engaging employees as advocates for security change.
Keynote: Making Security a Competitive Advantage
Keynote: Making Security a Competitive AdvantageCA Technologies The document discusses the importance of integrating security into the application economy to maximize performance and minimize risks, highlighting that a majority of data breaches stem from application defects and identity fraud. CA's security strategy focuses on ensuring secure software development through various methodologies and tools, fostering a frictionless security experience. It emphasizes the need for organizations to embrace new security thinking and technologies in an increasingly digital and connected world.
Emerging Managed Services Opportunities in Identity and Access Management
Emerging Managed Services Opportunities in Identity and Access ManagementCA Technologies The document discusses the growing demand for identity and access management (IAM) services, highlighting a survey revealing that less than 20% of enterprises have automated IAM processes, indicating significant challenges in meeting organizational needs. It emphasizes the role of external partners in assisting enterprises to overcome IAM obstacles and improve security measures. Additionally, the presentation outlines the importance of identity in delivering personalized experiences in the evolving application economy.
The Unmet Demand for Premium Cloud Monitoring Services—and How Service Provid...
The Unmet Demand for Premium Cloud Monitoring Services—and How Service Provid...CA Technologies The document discusses the challenges enterprises face in monitoring hybrid cloud and on-premises environments, highlighting opportunities for service providers to offer premium cloud monitoring services. It outlines various case studies showcasing how cloud service providers can address these challenges by implementing unified management solutions. The document emphasizes that businesses are willing to invest in overcoming these monitoring difficulties, presenting a significant market opportunity for service providers.
Leveraging Monitoring Governance: How Service Providers Can Boost Operational...
Leveraging Monitoring Governance: How Service Providers Can Boost Operational...CA Technologies The document discusses the importance of monitoring governance for managed service providers to enhance operational efficiency and scalability in the software business. It emphasizes the need for a comprehensive framework that delivers actionable insights to align IT services with business value. Case studies highlight how organizations have adapted to increase customer experience and overcome technological complexities.
The Next Big Service Provider Opportunity—Beyond Infrastructure: Architecting...
The Next Big Service Provider Opportunity—Beyond Infrastructure: Architecting...CA Technologies The document discusses the importance of establishing a modern software factory for businesses in the competitive application economy, emphasizing the need for agility, automation, insights, and security to enhance customer experiences. It highlights how successful companies are leveraging technology to improve their services and stay ahead in the market. The key takeaway is that becoming a software-centric organization requires new methodologies and support from partners to navigate this transformation.
Application Experience Analytics Services: The Strategic Digital Transformati...
Application Experience Analytics Services: The Strategic Digital Transformati...CA Technologies The document discusses the importance of application experience analytics services for service providers aiming to facilitate digital business transformation. It highlights the growing demand for these services due to high user expectations and the critical role applications play in customer experience and business success. By leveraging application experience analytics, service providers can enhance performance, improve customer retention, and drive innovation.
Application Experience Analytics Services: The Strategic Digital Transformati...
Application Experience Analytics Services: The Strategic Digital Transformati...CA Technologies The presentation outlines the vision for Mainframe as a Service by CA Technologies, emphasizing its potential to unify IT operations and reduce costs via self-service and DevOps practices. It highlights the capabilities of IBM Z systems to enhance productivity, streamline security, and facilitate agile development while addressing challenges such as vendor lock-in and lack of specialized skills. Key features include automated provision of resources, enhanced collaboration tools for developers, and the incorporation of machine learning for operational intelligence.
Strategic Direction Session: Deliver Next-Gen IT Ops with CA Mainframe Operat...
Strategic Direction Session: Deliver Next-Gen IT Ops with CA Mainframe Operat...CA Technologies The presentation discusses strategies for transforming IT operations with CA Mainframe Operational Intelligence, focusing on the need for proactive measures and machine learning to enhance efficiency and reliability. Key challenges such as unplanned downtime and data security are addressed, along with techniques for automating processes and improving performance insights. The session encourages a shift towards self-driven data center management through augmented intelligence and automation, ultimately aiming to reduce operational costs and enhance service delivery.
Strategic Direction Session: Enhancing Data Privacy with Data-Centric Securit...
Strategic Direction Session: Enhancing Data Privacy with Data-Centric Securit...CA Technologies The presentation discusses enhancing data privacy through a data-centric security strategy for mainframes, emphasizing the importance of protecting sensitive data while ensuring compliance with regulations such as GDPR. It highlights solutions like CA Data Content Discovery and CA Compliance Event Manager to improve data management and security. Key challenges addressed include internal threats, regulatory requirements, and the need for advanced authentication and logging for user access management.
Blockchain: Strategies for Moving From Hype to Realities of Deployment
Blockchain: Strategies for Moving From Hype to Realities of DeploymentCA Technologies The document discusses the transition from blockchain hype to practical deployment, highlighting its potential across various industries through real-world use cases with immutable smart contracts. Key considerations for deploying blockchain include scalability, data security, integration with existing systems, and governance models. It emphasizes the importance of community engagement, agile methodologies, and pilot projects for successful blockchain implementation.
Establish Digital Trust as the Currency of Digital Enterprise
Establish Digital Trust as the Currency of Digital EnterpriseCA Technologies The document discusses how establishing digital trust can help companies become digital enterprises. It outlines barriers that companies face in areas like ensuring resources, assuring systems, delivering digital experiences, verifying people, and protecting data. The document provides best practices and CA technologies that can help companies optimize their platforms, assure systems through tools like AI and automation, deliver digital experiences through DevSecOps, verify people with identity management, and protect data with discovery tools. Following these practices can help companies transform to digital enterprises by establishing digital trust.
Recently uploaded (20)
Tech-ASan: Two-stage check for Address Sanitizer - Yixuan Cao.pdf
Tech-ASan: Two-stage check for Address Sanitizer - Yixuan Cao.pdfcaoyixuan2019 A presentation at Internetware 2025.
WebdriverIO & JavaScript: The Perfect Duo for Web Automation
WebdriverIO & JavaScript: The Perfect Duo for Web Automationdigitaljignect In today’s dynamic digital landscape, ensuring the quality and dependability of web applications is essential. While Selenium has been a longstanding solution for automating browser tasks, the integration of WebdriverIO (WDIO) with Selenium and JavaScript marks a significant advancement in automation testing. WDIO enhances the testing process by offering a robust interface that improves test creation, execution, and management. This amalgamation capitalizes on the strengths of both tools, leveraging Selenium’s broad browser support and WDIO’s modern, efficient approach to test automation. As automation testing becomes increasingly vital for faster development cycles and superior software releases, WDIO emerges as a versatile framework, particularly potent when paired with JavaScript, making it a preferred choice for contemporary testing teams.
You are not excused! How to avoid security blind spots on the way to production
You are not excused! How to avoid security blind spots on the way to productionMichele Leroux Bustamante We live in an ever evolving landscape for cyber threats creating security risk for your production systems. Mitigating these risks requires participation throughout all stages from development through production delivery - and by every role including architects, developers QA and DevOps engineers, product owners and leadership. No one is excused! This session will cover examples of common mistakes or missed opportunities that can lead to vulnerabilities in production - and ways to do better throughout the development lifecycle.
A Constitutional Quagmire - Ethical Minefields of AI, Cyber, and Privacy.pdf
A Constitutional Quagmire - Ethical Minefields of AI, Cyber, and Privacy.pdfPriyanka Aash A Constitutional Quagmire - Ethical Minefields of AI, Cyber, and Privacy
Connecting Data and Intelligence: The Role of FME in Machine Learning
Connecting Data and Intelligence: The Role of FME in Machine LearningSafe Software In this presentation, we want to explore powerful data integration and preparation for Machine Learning. FME is known for its ability to manipulate and transform geospatial data, connecting diverse data sources into efficient and automated workflows. By integrating FME with Machine Learning techniques, it is possible to transform raw data into valuable insights faster and more accurately, enabling intelligent analysis and data-driven decision making.
10 Key Challenges for AI within the EU Data Protection Framework.pdf
10 Key Challenges for AI within the EU Data Protection Framework.pdfPriyanka Aash 10 Key Challenges for AI within the EU Data Protection Framework
Using the SQLExecutor for Data Quality Management: aka One man's love for the...
Using the SQLExecutor for Data Quality Management: aka One man's love for the...Safe Software The SQLExecutor is one of FME’s most powerful and flexible transformers. Pivvot maintains a robust internal metadata hierarchy used to support ingestion and curation of thousands of external data sources that must be managed for quality before entering our platform. By using the SQLExecutor, Pivvot can efficiently detect problems and perform analysis before data is extracted from our staging environment, removing the need for rollbacks or cycles waisted on a failed job. This presentation will walk through three distinct examples of how Pivvot uses the SQLExecutor to engage its metadata hierarchy and integrate with its Data Quality Management workflows efficiently and within the source postgres database. Spatial Validation –Validating spatial prerequisites before entering a production environment. Reference Data Validation - Dynamically validate domain-ed columns across any table and multiple columns per table. Practical De-duplication - Removing identical or near-identical well point locations from two distinct source datasets in the same table.
" How to survive with 1 billion vectors and not sell a kidney: our low-cost c...
" How to survive with 1 billion vectors and not sell a kidney: our low-cost c...Fwdays Let's talk about our history. How we started the project with a small vector database of less than 2 million records. Later, we received a request for +100 million records, then another +100... And so gradually we reached almost 1 billion. Standard tools were quickly running out of steam - we were running into performance, index size, and very limited resources. After a long series of trials and errors, we built our own low-cost cluster, which today stably processes thousands of queries to more than 1B vectors.
Enhance GitHub Copilot using MCP - Enterprise version.pdf
Enhance GitHub Copilot using MCP - Enterprise version.pdfNilesh Gule Slide deck related to the GitHub Copilot Bootcamp in Melbourne on 17 June 2025
GenAI Opportunities and Challenges - Where 370 Enterprises Are Focusing Now.pdf
GenAI Opportunities and Challenges - Where 370 Enterprises Are Focusing Now.pdfPriyanka Aash GenAI Opportunities and Challenges - Where 370 Enterprises Are Focusing Now
PyCon SG 25 - Firecracker Made Easy with Python.pdf
PyCon SG 25 - Firecracker Made Easy with Python.pdfMuhammad Yuga Nugraha Explore the ease of managing Firecracker microVM with the firecracker-python. In this session, I will introduce the basics of Firecracker microVM and demonstrate how this custom SDK facilitates microVM operations easily. We will delve into the design and development process behind the SDK, providing a behind-the-scenes look at its creation and features. While traditional Firecracker SDKs were primarily available in Go, this module brings a simplicity of Python to the table.
Smarter Aviation Data Management: Lessons from Swedavia Airports and Sweco
Smarter Aviation Data Management: Lessons from Swedavia Airports and SwecoSafe Software Managing airport and airspace data is no small task, especially when you’re expected to deliver it in AIXM format without spending a fortune on specialized tools. But what if there was a smarter, more affordable way?
Join us for a behind-the-scenes look at how Sweco partnered with Swedavia, the Swedish airport operator, to solve this challenge using FME and Esri.
Learn how they built automated workflows to manage periodic updates, merge airspace data, and support data extracts – all while meeting strict government reporting requirements to the Civil Aviation Administration of Sweden.
Even better? Swedavia built custom services and applications that use the FME Flow REST API to trigger jobs and retrieve results – streamlining tasks like securing the quality of new surveyor data, creating permdelta and baseline representations in the AIS schema, and generating AIXM extracts from their AIS data.
To conclude, FME expert Dean Hintz will walk through a GeoBorders reading workflow and highlight recent enhancements to FME’s AIXM (Aeronautical Information Exchange Model) processing and interpretation capabilities.
Discover how airports like Swedavia are harnessing the power of FME to simplify aviation data management, and how you can too.
Techniques for Automatic Device Identification and Network Assignment.pdf
Techniques for Automatic Device Identification and Network Assignment.pdfPriyanka Aash Techniques for Automatic Device Identification and Network Assignment
From Manual to Auto Searching- FME in the Driver's Seat
From Manual to Auto Searching- FME in the Driver's SeatSafe Software Finding a specific car online can be a time-consuming task, especially when checking multiple dealer websites. A few years ago, I faced this exact problem while searching for a particular vehicle in New Zealand. The local classified platform, Trade Me (similar to eBay), wasn’t yielding any results, so I expanded my search to second-hand dealer sites—only to realise that periodically checking each one was going to be tedious. That’s when I noticed something interesting: many of these websites used the same platform to manage their inventories. Recognising this, I reverse-engineered the platform’s structure and built an FME workspace that automated the search process for me. By integrating API calls and setting up periodic checks, I received real-time email alerts when matching cars were listed. In this presentation, I’ll walk through how I used FME to save hours of manual searching by creating a custom car-finding automation system. While FME can’t buy a car for you—yet—it can certainly help you find the one you’re after!
cnc-processing-centers-centateq-p-110-en.pdf
cnc-processing-centers-centateq-p-110-en.pdfAmirStern2 מרכז עיבודים תעשייתי בעל 3/4/5 צירים, עד 22 החלפות כלים עם כל אפשרויות העיבוד הדרושות. בעל שטח עבודה גדול ומחשב נוח וקל להפעלה בשפה העברית/רוסית/אנגלית/ספרדית/ערבית ועוד..
מסוגל לבצע פעולות עיבוד שונות המתאימות לענפים שונים: קידוח אנכי, אופקי, ניסור, וכרסום אנכי.
Oh, the Possibilities - Balancing Innovation and Risk with Generative AI.pdf
Oh, the Possibilities - Balancing Innovation and Risk with Generative AI.pdfPriyanka Aash Oh, the Possibilities - Balancing Innovation and Risk with Generative AI
Salesforce Summer '25 Release Frenchgathering.pptx.pdf
Salesforce Summer '25 Release Frenchgathering.pptx.pdfyosra Saidani Salesforce Summer '25 Release Frenchgathering.pptx.pdf
Curietech AI in action - Accelerate MuleSoft development
Curietech AI in action - Accelerate MuleSoft developmentshyamraj55 CurieTech AI in Action – Accelerate MuleSoft Development
Overview:
This presentation demonstrates how CurieTech AI’s purpose-built agents empower MuleSoft developers to create integration workflows faster, more accurately, and with less manual effort
linkedin.com
+12
curietech.ai
+12
meetups.mulesoft.com
+12
.
Key Highlights:
Dedicated AI agents for every stage: Coding, Testing (MUnit), Documentation, Code Review, and Migration
curietech.ai
+7
curietech.ai
+7
medium.com
+7
DataWeave automation: Generate mappings from tables or samples—95%+ complete within minutes
linkedin.com
+7
curietech.ai
+7
medium.com
+7
Integration flow generation: Auto-create Mule flows based on specifications—speeds up boilerplate development
curietech.ai
+1
medium.com
+1
Efficient code reviews: Gain intelligent feedback on flows, patterns, and error handling
youtube.com
+8
curietech.ai
+8
curietech.ai
+8
Test & documentation automation: Auto-generate MUnit test cases, sample data, and detailed docs from code
curietech.ai
+5
curietech.ai
+5
medium.com
+5
Why Now?
Achieve 10× productivity gains, slashing development time from hours to minutes
curietech.ai
+3
curietech.ai
+3
medium.com
+3
Maintain high accuracy with code quality matching or exceeding manual efforts
curietech.ai
+2
curietech.ai
+2
curietech.ai
+2
Ideal for developers, architects, and teams wanting to scale MuleSoft projects with AI efficiency
Conclusion:
CurieTech AI transforms MuleSoft development into an AI-accelerated workflow—letting you focus on innovation, not repetition.
You are not excused! How to avoid security blind spots on the way to production
You are not excused! How to avoid security blind spots on the way to productionMichele Leroux Bustamante
Pre-Con Ed: CA API Gateway: Developing Custom Policies to Secure Your Enterprise APIs
- 1. Developing Custom Policies to Secure Your Enterprise APIs Jamie Williams Senior Software Engineer CA Technologies DO3X47EV DEVOPS
- 2. 3 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD © 2016 CA. All rights reserved. All trademarks referenced herein belong to their respective companies. The content provided in this CA World 2016 presentation is intended for informational purposes only and does not form any type of warranty. The information provided by a CA partner and/or CA customer has not been reviewed for accuracy by CA. For Informational Purposes Only Terms of this Presentation
- 3. 4 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Abstract In this session on CA API Gateway we'll focus on basic policy creation and demonstrate the ease with which enterprise APIs can be secured. We will also spend some time on policy performance factors, troubleshooting, and understanding points of failure when securing APIs. Jamie Williams CA Technologies Senior Software Engineer
- 4. 5 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Agenda INTRODUCTION TO SERVICES, POLICIES, AND ASSERTIONS SECURING YOUR API PERFORMANCE CONSIDERATIONS TROUBLESHOOTING 1 2 3 4
- 5. 6 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Introduction to Services, Policies, and Assertions A Service is a logical construct that represents the sum of the API calls the client side can call to access the service that the Gateway is protecting Every service has a policy that implements an individual flow of data between the client and the back-end service Assertions are the building blocks of policy that determine the authentication method, identity credentials, transport method, and routing method for the service
- 6. 7 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Live Demo
- 7. 8 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Recommended Sessions SESSION # TITLE DATE/TIME DO3X49E CA API Gateway: Managing and migrating Gateway policies with the Gateway Migration Utility 11/14/2016 at 11:00 am DO3X52E CA Mobile App Services: Build the Powerful Mobile App Every Enterprise Needs in Under an Hour 11/14/2016 at 1:00 pm DO3X51E Workshop on Policy Creation, Management and Support for OAuth and OIDC in CA Mobile API Gateway 11/14/2016 at 2:00 pm
- 8. 9 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Questions?
- 9. 10 © 2016 CA. ALL RIGHTS RESERVED.@CAWORLD #CAWORLD Thank you. Stay connected at communities.ca.com
- 10. @CAWORLD #CAWORLD © 2016 CA. All RIGHTS RESERVED.11 @CAWORLD #CAWORLD DevOps – API Management and Application Development For more information on DevOps – API Management and Application Development, please visit: http://cainc.to/DL8ozQ