Akamai API Security

Akamai API Security (formerly Noname Security) provides comprehensive API discovery, posture management, and threat protection for organizations across cloud, on-premises, and hybrid environments. The platform continuously discovers and monitors all APIs, identifies vulnerabilities and misconfigurations, detects and responds to API threats in real time, and provides pre-production security testing integrated into CI/CD pipelines.

2 APIs 6 Features

API DiscoveryAPI SecurityCloud SecurityPosture ManagementRuntime ProtectionThreat Protection

APIs

Akamai API Security

Akamai API Security provides end-to-end API protection including discovery, posture management, runtime protection, and active testing. It discovers all APIs including shadow an...

Akamai APIs

Akamai provides a comprehensive set of REST APIs for managing and configuring their platform services, including API security, CDN, edge computing, and security products. The AP...

Features

API Discovery

Automatically discovers all APIs including shadow, zombie, GenAI, LLM, and MCP server APIs across cloud, on-premises, and hybrid environments.

Posture Management

Audits APIs for vulnerabilities and misconfigurations including the full OWASP API Top 10, generating posture findings from runtime incidents.

Runtime Protection

Uses contextual insights to detect and block API threats including business logic abuse, credential attacks, data scraping, and malicious bots in real time.

CI/CD Security Testing

Runs 200+ dynamic security tests simulating OWASP API Top 10 attacks integrated into CI/CD pipelines without sacrificing development speed.

GitHub Integration

Automatically scans GitHub repositories for OpenAPI specs and adds them to the API library for security analysis and posture assessment.

App and API Protector Integration

Direct integration with Akamai App and API Protector for blocking API threats detected at runtime.

Use Cases

Shadow API Discovery

Security teams automatically discover undocumented and shadow APIs across their environment to eliminate blind spots.

API Vulnerability Assessment

Security engineers assess API posture against OWASP API Top 10 and compliance frameworks to prioritize remediation.

Real-Time Threat Detection

SOC analysts detect and respond to API attacks, data leakage, and suspicious behavior in real time.

Pre-Production API Testing

Development teams integrate API security testing into CI/CD pipelines to find and fix vulnerabilities before production.

Compliance Reporting

Compliance teams assess API security posture against industry frameworks and generate audit-ready reports.

Integrations

Akamai App and API Protector

Direct integration for blocking API threats detected by API Security

GitHub

Automatic OpenAPI spec discovery from GitHub repositories

CI/CD Pipelines

Integration with development pipelines for pre-production security testing

SIEM

Export security events to SIEM platforms for centralized monitoring

AWS Marketplace

Available on AWS Marketplace for cloud-native deployments

Semantic Vocabularies

Akamai Api Security Context

71 classes · 180 properties

JSON-LD

API Governance Rules

Akamai API Security API Rules

23 rules · 12 errors 11 warnings

SPECTRAL

JSON Structure

Api Security Attack Payload Logging Get 200 Structure

3 properties

JSON STRUCTURE

Api Security Attack Payload Logging Put 200 Structure

3 properties

JSON STRUCTURE

Api Security Attack Payload Logging Put Structure

3 properties

JSON STRUCTURE

Api Security Attack Payload Logging Structure

1 properties

JSON STRUCTURE

Api Security Bypass Network Lists Get Structure

1 properties

JSON STRUCTURE

Api Security Bypass Network Lists Put Structure

1 properties

JSON STRUCTURE

Api Security Client Reputation Condition Structure

5 properties

JSON STRUCTURE

Api Security Config Clone Post Structure

2 properties

JSON STRUCTURE

Api Security Config Get Structure

7 properties

JSON STRUCTURE

Api Security Config Post Structure

6 properties

JSON STRUCTURE

Api Security Config Rename Structure

2 properties

JSON STRUCTURE

Api Security Configs Get Structure

1 properties

JSON STRUCTURE

Api Security Cookie Settings Structure

2 properties

JSON STRUCTURE

Api Security Custom Denies Structure

1 properties

JSON STRUCTURE

Api Security Custom Deny Structure

4 properties

JSON STRUCTURE

Api Security Custom Rule Structure

16 properties

JSON STRUCTURE

Api Security Custom Rules Structure

1 properties

JSON STRUCTURE

Api Security Effective Time Period Structure

3 properties

JSON STRUCTURE

Api Security Evasive Path Match Get 200 Structure

1 properties

JSON STRUCTURE

Api Security Evasive Path Match Put 200 Structure

1 properties

JSON STRUCTURE

Api Security Evasive Path Match Put Structure

1 properties

JSON STRUCTURE

Api Security Header Logging Get 200 Structure

4 properties

JSON STRUCTURE

Api Security Header Logging Put 200 Structure

4 properties

JSON STRUCTURE

Api Security Header Logging Put Structure

4 properties

JSON STRUCTURE

Api Security Host Info In Config Structure

6 properties

JSON STRUCTURE

Api Security Hostname Coverage Match Target Get 200 Structure

1 properties

JSON STRUCTURE

Api Security Hostname Coverage Match Target Structure

14 properties

JSON STRUCTURE

Api Security Hostname Coverage Overlapping Get 200 Structure

1 properties

JSON STRUCTURE

Api Security Hostname Object Structure

6 properties

JSON STRUCTURE

Api Security Hostnames Structure

2 properties

JSON STRUCTURE

Api Security Logging Header Setting Structure

2 properties

JSON STRUCTURE

Api Security Logging Option Structure

3 properties

JSON STRUCTURE

Api Security Malware Policies Content Types Structure

1 properties

JSON STRUCTURE

Api Security Malware Policies Structure

1 properties

JSON STRUCTURE

Api Security Malware Policy Structure

9 properties

JSON STRUCTURE

Api Security Match Target Structure

16 properties

JSON STRUCTURE

Api Security Match Targets Sequence Structure

2 properties

JSON STRUCTURE

Api Security Match Targets Structure

1 properties

JSON STRUCTURE

Api Security Overlap Config Structure

6 properties

JSON STRUCTURE

Api Security Pii Learning Structure

1 properties

JSON STRUCTURE

Api Security Pragma Header Structure

3 properties

JSON STRUCTURE

Api Security Prefetch Request Get 200 Structure

4 properties

JSON STRUCTURE

Api Security Prefetch Request Put 200 Structure

4 properties

JSON STRUCTURE

Api Security Prefetch Request Put Structure

4 properties

JSON STRUCTURE

Api Security Problem Details Structure

6 properties

JSON STRUCTURE

Api Security Rate Policies Structure

1 properties

JSON STRUCTURE

Api Security Rate Policy Evaluation Put Structure

1 properties

JSON STRUCTURE

Api Security Rate Policy Structure

28 properties

JSON STRUCTURE

Api Security Reputation Profile Structure

9 properties

JSON STRUCTURE

Api Security Reputation Profiles Structure

1 properties

JSON STRUCTURE

Api Security Request Body Structure

1 properties

JSON STRUCTURE

Api Security Request Header Condition 2 Structure

7 properties

JSON STRUCTURE

Api Security Security Controls Structure

7 properties

JSON STRUCTURE

Api Security Siem Settings Structure

6 properties

JSON STRUCTURE

Api Security Siem Version Structure

2 properties

JSON STRUCTURE

Api Security Siem Versions Structure

1 properties

JSON STRUCTURE

Api Security Tls Fingerprint Condition Structure

3 properties

JSON STRUCTURE

Api Security Url Protection Bypass Client List Condition Structure

4 properties

JSON STRUCTURE

Api Security Url Protection Bypass Request Header Condition Structure

7 properties

JSON STRUCTURE

Api Security Url Protection Category Structure

1 properties

JSON STRUCTURE

Api Security Url Protection Client List Category Structure

3 properties

JSON STRUCTURE

Api Security Url Protection Policies Structure

1 properties

JSON STRUCTURE

Api Security Url Protection Policy Hostpath Structure

2 properties

JSON STRUCTURE

Api Security Url Protection Policy Structure

18 properties

JSON STRUCTURE

Api Security Validation Structure

5 properties

JSON STRUCTURE

Api Security Validations Structure

3 properties

JSON STRUCTURE

Api Security Version Notes Get 200 Structure

1 properties

JSON STRUCTURE

Api Security Version Notes Put 200 Structure

1 properties

JSON STRUCTURE

Api Security Version Notes Put Structure

1 properties

JSON STRUCTURE

Api Security Waf Config Version Structure

9 properties

JSON STRUCTURE

Api Security Waf Config Versions Structure

11 properties

JSON STRUCTURE

Example Payloads

Api Security Attack Payload Logging Example

1 fields

EXAMPLE

Api Security Attack Payload Logging Get 200 Example

3 fields

EXAMPLE

Api Security Attack Payload Logging Put 200 Example

3 fields

EXAMPLE

Api Security Attack Payload Logging Put Example

3 fields

EXAMPLE

Api Security Bypass Network Lists Get Example

1 fields

EXAMPLE

Api Security Bypass Network Lists Put Example

1 fields

EXAMPLE

Api Security Client Reputation Condition Example

5 fields

EXAMPLE

Api Security Config Clone Post Example

2 fields

EXAMPLE

Api Security Config Get Example

7 fields

EXAMPLE

Api Security Config Post Example

6 fields

EXAMPLE

Api Security Config Rename Example

2 fields

EXAMPLE

Api Security Configs Get Example

1 fields

EXAMPLE

Api Security Cookie Settings Example

2 fields

EXAMPLE

Api Security Custom Denies Example

1 fields

EXAMPLE

Api Security Custom Deny Example

4 fields

EXAMPLE

Api Security Custom Rule Example

16 fields

EXAMPLE

Api Security Custom Rules Example

1 fields

EXAMPLE

Api Security Effective Time Period Example

3 fields

EXAMPLE

Api Security Evasive Path Match Get 200 Example

1 fields

EXAMPLE

Api Security Evasive Path Match Put 200 Example

1 fields

EXAMPLE

Api Security Evasive Path Match Put Example

1 fields

EXAMPLE

Api Security Header Logging Get 200 Example

4 fields

EXAMPLE

Api Security Header Logging Put 200 Example

4 fields

EXAMPLE

Api Security Header Logging Put Example

4 fields

EXAMPLE

Api Security Host Info In Config Example

6 fields

EXAMPLE

Api Security Hostname Coverage Match Target Example

14 fields

EXAMPLE

Api Security Hostname Coverage Match Target Get 200 Example

1 fields

EXAMPLE

Api Security Hostname Coverage Overlapping Get 200 Example

1 fields

EXAMPLE

Api Security Hostname Object Example

6 fields

EXAMPLE

Api Security Hostnames Example

2 fields

EXAMPLE

Api Security Logging Header Setting Example

2 fields

EXAMPLE

Api Security Logging Option Example

3 fields

EXAMPLE

Api Security Malware Policies Content Types Example

1 fields

EXAMPLE

Api Security Malware Policies Example

1 fields

EXAMPLE

Api Security Malware Policy Example

9 fields

EXAMPLE

Api Security Match Target Example

16 fields

EXAMPLE

Api Security Match Targets Example

1 fields

EXAMPLE

Api Security Match Targets Sequence Example

2 fields

EXAMPLE

Api Security Overlap Config Example

6 fields

EXAMPLE

Api Security Pii Learning Example

1 fields

EXAMPLE

Api Security Pragma Header Example

3 fields

EXAMPLE

Api Security Prefetch Request Get 200 Example

4 fields

EXAMPLE

Api Security Prefetch Request Put 200 Example

4 fields

EXAMPLE

Api Security Prefetch Request Put Example

4 fields

EXAMPLE

Api Security Problem Details Example

6 fields

EXAMPLE

Api Security Rate Policies Example

1 fields

EXAMPLE

Api Security Rate Policy Evaluation Put Example

1 fields

EXAMPLE

Api Security Rate Policy Example

28 fields

EXAMPLE

Api Security Reputation Profile Example

9 fields

EXAMPLE

Api Security Reputation Profiles Example

1 fields

EXAMPLE

Api Security Request Body Example

1 fields

EXAMPLE

Api Security Request Header Condition 2 Example

7 fields

EXAMPLE

Api Security Security Controls Example

7 fields

EXAMPLE

Api Security Siem Settings Example

6 fields

EXAMPLE

Api Security Siem Version Example

2 fields

EXAMPLE

Api Security Siem Versions Example

1 fields

EXAMPLE

Api Security Tls Fingerprint Condition Example

3 fields

EXAMPLE

Api Security Url Protection Bypass Client List Condition Example

4 fields

EXAMPLE

Api Security Url Protection Bypass Request Header Condition Example

7 fields

EXAMPLE

Api Security Url Protection Category Example

1 fields

EXAMPLE

Api Security Url Protection Client List Category Example

3 fields

EXAMPLE

Api Security Url Protection Policies Example

1 fields

EXAMPLE

Api Security Url Protection Policy Example

18 fields

EXAMPLE

Api Security Url Protection Policy Hostpath Example

2 fields

EXAMPLE

Api Security Validation Example

5 fields

EXAMPLE

Api Security Validations Example

3 fields

EXAMPLE

Api Security Version Notes Get 200 Example

1 fields

EXAMPLE

Api Security Version Notes Put 200 Example

1 fields

EXAMPLE

Api Security Version Notes Put Example

1 fields

EXAMPLE

Api Security Waf Config Version Example

9 fields

EXAMPLE

Api Security Waf Config Versions Example

11 fields

EXAMPLE

Visuals

Resources

GitHubOrganization

Sources

aid: akamai-api-security
name: Akamai API Security
description: >-
  Akamai API Security (formerly Noname Security) provides comprehensive API discovery, posture management, and threat
  protection for organizations across cloud, on-premises, and hybrid environments. The platform continuously discovers
  and monitors all APIs, identifies vulnerabilities and misconfigurations, detects and responds to API threats in real
  time, and provides pre-production security testing integrated into CI/CD pipelines.
type: Index
image: https://kinlane-images.s3.amazonaws.com/shared/apis-json/apis-json-logo.jpg
tags:
  - API Discovery
  - API Security
  - Cloud Security
  - Posture Management
  - Runtime Protection
  - Threat Protection
url: https://raw.githubusercontent.com/api-evangelist/akamai-api-security/refs/heads/main/apis.yml
created: '2026-03-26'
modified: '2026-05-19'
specificationVersion: '0.19'
apis:
  - aid: akamai-api-security:api-security
    name: Akamai API Security
    description: >-
      Akamai API Security provides end-to-end API protection including discovery, posture management, runtime
      protection, and active testing. It discovers all APIs including shadow and zombie APIs, identifies vulnerabilities
      and misconfigurations, and detects and blocks API-based attacks in real time.
    humanURL: https://www.akamai.com/products/api-security
    tags:
      - API Discovery
      - API Security
      - Runtime Protection
      - Threat Protection
    properties:
      - type: Documentation
        url: https://techdocs.akamai.com/api-security/docs/welcome
      - type: GettingStarted
        url: https://techdocs.akamai.com/api-security/docs/get-started
      - type: OpenAPI
        url: >-
          https://raw.githubusercontent.com/api-evangelist/akamai-api-security/refs/heads/main/openapi/akamai-api-security-openapi.json
  - aid: akamai-api-security:akamai-apis
    name: Akamai APIs
    description: >-
      Akamai provides a comprehensive set of REST APIs for managing and configuring their platform services, including
      API security, CDN, edge computing, and security products. The APIs use the Akamai EdgeGrid authentication
      mechanism.
    humanURL: https://techdocs.akamai.com/home/page/products-tools-a-z
    tags:
      - Configuration
      - EdgeGrid
      - Platform API
      - REST API
    properties:
      - type: Documentation
        url: https://techdocs.akamai.com/home/page/products-tools-a-z
      - type: Authentication
        url: https://techdocs.akamai.com/developer/docs/authenticate-with-edgegrid
      - type: GettingStarted
        url: https://techdocs.akamai.com/developer/docs/get-started
common:
  - type: Website
    url: https://www.akamai.com/products/api-security
  - type: Documentation
    url: https://techdocs.akamai.com
  - type: Blog
    url: https://www.akamai.com/blog
  - type: Pricing
    url: https://www.akamai.com/products/api-security#pricing
  - type: Support
    url: https://www.akamai.com/support
  - type: Login
    url: https://control.akamai.com
  - type: SignUp
    url: https://www.akamai.com/free-trials
  - type: GitHubOrganization
    url: https://github.com/akamai
  - type: StatusPage
    url: https://www.akamaistatus.com
  - type: LinkedIn
    url: https://www.linkedin.com/company/akamai-technologies
  - type: X
    url: https://twitter.com/Akamai
  - type: SpectralRules
    url: >-
      https://raw.githubusercontent.com/api-evangelist/akamai-api-security/refs/heads/main/rules/akamai-api-security-spectral-rules.yml
  - type: Vocabulary
    url: >-
      https://raw.githubusercontent.com/api-evangelist/akamai-api-security/refs/heads/main/vocabulary/akamai-api-security-vocabulary.yaml
  - type: Features
    data:
      - name: API Discovery
        description: >-
          Automatically discovers all APIs including shadow, zombie, GenAI, LLM, and MCP server APIs across cloud,
          on-premises, and hybrid environments.
      - name: Posture Management
        description: >-
          Audits APIs for vulnerabilities and misconfigurations including the full OWASP API Top 10, generating posture
          findings from runtime incidents.
      - name: Runtime Protection
        description: >-
          Uses contextual insights to detect and block API threats including business logic abuse, credential attacks,
          data scraping, and malicious bots in real time.
      - name: CI/CD Security Testing
        description: >-
          Runs 200+ dynamic security tests simulating OWASP API Top 10 attacks integrated into CI/CD pipelines without
          sacrificing development speed.
      - name: GitHub Integration
        description: >-
          Automatically scans GitHub repositories for OpenAPI specs and adds them to the API library for security
          analysis and posture assessment.
      - name: App and API Protector Integration
        description: Direct integration with Akamai App and API Protector for blocking API threats detected at runtime.
  - type: UseCases
    data:
      - name: Shadow API Discovery
        description: >-
          Security teams automatically discover undocumented and shadow APIs across their environment to eliminate blind
          spots.
      - name: API Vulnerability Assessment
        description: >-
          Security engineers assess API posture against OWASP API Top 10 and compliance frameworks to prioritize
          remediation.
      - name: Real-Time Threat Detection
        description: SOC analysts detect and respond to API attacks, data leakage, and suspicious behavior in real time.
      - name: Pre-Production API Testing
        description: >-
          Development teams integrate API security testing into CI/CD pipelines to find and fix vulnerabilities before
          production.
      - name: Compliance Reporting
        description: Compliance teams assess API security posture against industry frameworks and generate audit-ready reports.
  - type: Integrations
    data:
      - name: Akamai App and API Protector
        description: Direct integration for blocking API threats detected by API Security
      - name: GitHub
        description: Automatic OpenAPI spec discovery from GitHub repositories
      - name: CI/CD Pipelines
        description: Integration with development pipelines for pre-production security testing
      - name: SIEM
        description: Export security events to SIEM platforms for centralized monitoring
      - name: AWS Marketplace
        description: Available on AWS Marketplace for cloud-native deployments
maintainers:
  - FN: Kin Lane
    email: kin@apievangelist.com