Deploying Enterprise APIs for an Interconnected World: 10 Best Practices

 
 
By Chris Preimesberger  |  Posted 2013-08-16 Email Print this article Print
 
 
 
 
 
 
 
 

Three huge IT trends—social media, mobile and cloud computing—have completely altered the way we, as device users, interact with our applications. What used to be a one-to-one link with a single interface or point of connection is now a series of interactions between applications and functions. Users benefit greatly from multiple applications and user interfaces to access a back-end service because more functionality results. Application programming interfaces (APIs) are key parts of the software stack that makes everything work. APIs have become essential for technology-driven business, signaling a crossover from a standard to a more customer-centric, collaborative business model. The immediate success of this business model and the potential for organizations to drive more business value through the effective delivery of APIs has created a thriving "API economy." A combination of API-driven components, called a mashup, delivers new, more complex and yet more useful capabilities to users on their devices. Startups such as 3Scale and Apigee are helping companies find the right APIs for the requirement. Others, such as Axway, provide high-end integration services of their own. Resources for this slide show include Axway, industry research and eWEEK reporting.

 
 
 
  • Deploying Enterprise APIs for an Interconnected World: 10 Best Practices

    by Chris Preimesberger
    1 - Deploying Enterprise APIs for an Interconnected World: 10 Best Practices
  • Have a Clear API Strategy

    The enterprise should have a clear idea and plan about what it wants to achieve with its API program and build it out into defined steps. Enterprises can use APIs in myriad ways, and not just for retail applications. In fact, a well-executed API strategy can help any enterprise create more selling channels, better engage with customers and prospects, and offer greater value to partners. Conversely, a poor strategy delivers no value and wastes both time and money.
    2 - Have a Clear API Strategy
  • Know Your APIs: Consumer vs. Enterprise

    To build the most effective API management strategy and technology road map for your organization, you must start by asking what types of APIs will be delivered on your API management platform. There are two types of APIs that fundamentally drive API management requirements: consumer APIs and enterprise APIs. Here, we'll be talking solely about enterprise APIs, which transmit sensitive information or execute business transactions that can only be made available to approved and authenticated counterparties.
    3 - Know Your APIs: Consumer vs. Enterprise
  • Strategy Depends on Where APIs Originate

    Most organizations that have invested in B2B integration or service-oriented architecture (SOA) have an abundance of Web services and APIs already in use for both internal and external point-to-point integrations. These services are usually based on standards such as Simple Object Access Protocol (SOAP), XML, electronic data exchange (EDI) or Java Message Service (JMS). To become compatible with the new Web and mobile API design patterns and standards mentioned above, these services will require a rewrite or transformation. Because existing services and APIs are used for internal or trusted B2B integrations, they will likely require extensive operational support from an API management platform to add security, control and monitoring.
    4 - Strategy Depends on Where APIs Originate
  • API Life Cycle: The 5 Phases of API Management

    API management is the next evolution of service-oriented architecture, but it extends beyond the enterprise with Web-centric architecture. Thus it should be no surprise that the API life cycle is similar to the SOA life cycle. While consumer and enterprise APIs share the same API management life cycle phases, they require that different emphasis be placed on the use of technology at each phase of the life cycle. The following slides outline the five phases to successfully manage enterprise APIs.
    5 - API Life Cycle: The 5 Phases of API Management
  • Phase 1: Planning

    This process ensures that the right APIs are built the right way. It involves portfolio planning, API modeling, business justification, how to monetize the API and other aspects common to traditional SOA governance practice. Enterprise APIs require more planning than consumer APIs because they are tied to back-end transaction systems that are highly protected or secured. These APIs carry financial and business liabilities. So must be carefully designed and deployed to remain as functionally stable as possible over long periods of time. Much of the traditional SOA planning disciplines and technologies apply directly to enterprise APIs with minimal changes.
    6 - Phase 1: Planning
  • Phase 2: Building

    The build phase involves the coding and/or reconfiguration of APIs. This can include developing new APIs from scratch using integrated development environments (IDE) or any variety of development tools and framework. It can also include creating new APIs by transforming existing APIs using tools and technologies such as an API Gateway, business process management or Enterprise Service Bus. Enterprise APIs are more complicated than consumer APIs, which are mostly used with newer technology platforms where the build phase is already done as part of back-end application development. This can involve complete rebuilding of new REST- or SOAP-style APIs, or utilizing a mediation technology such as a gateway to transform old interfaces.
    7 - Phase 2: Building
  • Phase 3: Distribution

    The distribution phase involves making APIs available and driving adoption via targeted API consumer base. Enterprise APIs are very different from consumer APIs when it comes to distribution. Typically, these are only available to trusted business partners, and the developer portal is often closed to public access. For example, companies such as American Express or HSBC cannot allow public access to their enterprise APIs that transmit sensitive financial data and execute financial transactions. If enterprise APIs will be exposed to the general public to generate partnership interest, API traffic from unapproved applications must be routed and confined to a sandbox environment for isolation, with demonstration data only.
    8 - Phase 3: Distribution
  • Phase 4: Runtime

    The runtime phase involves the operational delivery of the APIs, including servicing API calls, delivering content and executing transactions. Enterprise APIs are usually consumed by business partners, and those partners and users are usually managed by an existing partner management system. The API runtime environment needs to integrate with these partner management databases to make runtime decisions using partner profiles, user roles and service contracts. It is important to note that the management of partner and user information is handled by sales or support organizations and the user on-boarding tools they deploy, not by developers via a developer portal.
    9 - Phase 4: Runtime
  • Phase 5: Monitoring and Billing

    The monitoring and billing phase is about measuring the usage of APIs and execution of the revenue cycle. Enterprise APIs usually have much more stringent monitoring and auditing requirements than consumer APIs. In addition to usage statistics for business analysis, enterprise APIs require rigorous and accurate transaction logging to meet compliance requirements and to provide evidential audit trails. Real-time monitoring and alerting on service levels are often implemented to uphold SLAs and avoid any penalties. Finally, detailed usage logging and service-level measurements need to be delivered to billing systems to complete the revenue recognition cycle.
    10 - Phase 5: Monitoring and Billing
  • Using an API Management Platform

    Fundamentally, your API management platform architecture will be driven by a) the types you need to deliver, b) the readiness of your source APIs and c) integration requirements. With cloud, mobile and social media now mainstream computing concepts, consumer and business users all demand access to applications and data from multiple devices, inside and outside the enterprise, around the clock, 365 days a year. This means users will interact with your enterprise through many different interfaces, and those interfaces all converge at the API layer. A flexible API management platform can create differentiation and help your enterprise compete in the "API economy."
    11 - Using an API Management Platform
 
 
 
 
 
 
 
 
 
 
 

Submit a Comment

Loading Comments...
 
Manage your Newsletters: Login   Register My Newsletters























 
 
 
 
 
 
 
 
 
Rocket Fuel