Welcome!

Microservices Expo Authors: Liz McMillan, Pat Romanski, Mehdi Daoudi, Stackify Blog, Mamoon Yunus

Related Topics: @CloudExpo, Microservices Expo, Containers Expo Blog, @BigDataExpo, SDN Journal, @ThingsExpo, @DevOpsSummit

@CloudExpo: Article

Internet of Things Will Become The API of Things

2014 Predictions for APIs – Hold on to Your Hats

When we made our 2013 predictions for the realm of APIs, our premise was that API adoption and use was still a relatively nascent area, but one about to explode once smart people figured out its potential. We were certainly spot-on in that regard, but few believed us when we suggested that the API Economy was about to get as vibrant as it did. It may be safe to say that 2013 was the year that APIs really caught the business world's attention.

In these past 12 months, we've seen major acquisitions of API enablement companies, new industry conferences dedicated to the business of APIs, and talk of API management is on the lips of leading business executives. Untold billions of dollars have been transacted, all enabled by APIs, and innovation is making the world an easier place to transact as a result of applications, mash-ups and APIs. As we predicted, the discussion and decision-making about how to use APIs to increase customer and user engagement through channels has moved to now include both the technical and business sides of an organization.

It's quite clear that APIs are getting the attention they deserve and that smart business people recognize that their companies and organizations had either take advantage of what APIs have to offer, or await the fate of rapid obsolescence. In 2014, we are going to see a huge leap forward in how APIs are put to use to drive innovation and help organizations be more efficient and profitable. In some cases this will happen on top of existing technologies and business practices. But the fun will happen because of the innovation that will come out of all that API development. One could say that the streets have been paved, and now it's time to start putting people on the road. We see these as the key trends for the coming year:

Cloud and Mobile = API Ownership: We see more IT and product development teams dedicated to API development to create and extend applications on top of, and through, cloud, SaaS and mobile. The reason is the realization that cloud is not just a platform, but an enabler. And when APIs work through the cloud, their ability to connect and deliver is made exponentially easier than having to do it through traditional platforms. Even with all the talk of the API Economy, many IT organizations neglected the capabilities of APIs. Call it the "Big Wake Up," perhaps, but there are dramatic efforts being made to ensure that organizations use the tools at their disposal to leverage cloud and mobile to create ecosystems of stakeholders.

Rapid Channel Development: Until now, APIs have been seen as a mechanism to get eyeballs and users. In 2014, APIs will be recognized for their ability to drive channels of partners, users, customers and all types of stakeholders. This will put them into an ecosystem of people and organizations that encourage more business connectivity and transactions. The term "API Economy" has seemed to many like a marketing brand, but when they put together the pieces to develop revenue-generating channels through strategic API management, they'll see that truly, an economy forms as a result of the simple work of this software tool.

Massive API adoption: In 2013, a lot of new faces were talking about APIs and how they would use them, but it still remained primarily the domain of the big brands (Facebook, Twitter, Amazon, etc.). But the business imperatives are clear and undeniable - businesses that want to grow and leverage the work of partners and others in their ecosystem will begin API development and adoption. We're starting to see it more and more in major industries like retail, transportation, telco and finance, and smart organizations recognize that the best way to increase reach and profit is by developing and executing an accessible API strategy.

The continued app explosion: Use of Web sites as a vehicle for content, commerce and data may not decrease anytime soon, but there is a massive rise in the use of apps to acquire information and perform transactions. Our customers are creating unique applications made up of vast networks of functionality from partners and other stakeholders. The thing that enables this interconnectivity among apps is APIs. We are going to see a much heavier emphasis on apps because of the competitive advantage they offer: data can be customized and optimized, depending on the user need. And APIs will be driving this.

SOA and APIs - together again (and always): SOA started the whole thing, and it continues to be a services foundation. But at the end of the day, all we're trying to do is connect data and services. Operationally there are not many differences between APIs and SOA, but in practice, we see APIs being adopted at a fast rate, mainly because of their flexibility, openness, and ease of integration. We are going to see more recognition that SOA and APIs are complementary, and that for one to be successful, the other needs to be used. Organizations with a strong SOA foundation will recognize the ease with which they can extend services through development of APIs.

Software-defined datacenters will rely on APIs: Big Data, cloud, virtualization; the buzzwords are, in fact, very real, but they also can only exist if there's organization to how they're accessed, used and managed. So in order to enable organizations to make use of the massive amounts of data available to them, they rely on software-driven controllers that manage the hardware that stores, integrates and transports all this data and makes it available. That alone is impressive. But where things will get interesting in 2014 is with smart organizations adopting an API-based platform for their datacenters so they can realize cost and resource efficiencies from their cloud initiatives, and gain greater control of their infrastructure resources. They will recognize a higher degree of security optimization and a more measured approach to risk management.

APIs drive mobile apps: We're seeing massive usage numbers for APIs (both by users and developers), and we're seeing much of that usage recently being focused on translation and integration of data for mobile devices. We suspect that there will an increased focus among developers to use APIs to bring apps to users' smart phones and tablets, and that this will rise to the top of the "to do" list of many CIOs. Users are demanding it more than ever, and APIs are enabling a much faster path to all that data. With the right levels of security and management, we are going to see enterprises dramatically increase connection points with customers and partners, as well as the financial upside that comes with that.

API security will take center stage: APIs are enabling a mind-boggling amount of data to be transmitted around the Web. Ensuring that all those transactions happen securely and can be managed effectively will result in a much deeper focus on API security. Consider too the implications of the recent NSA spying imbroglio and some well-publicized corporate security leaks that happened during 2013. The rub is no longer between whether or not to let others access your data through APIs - it's clear that progressive companies NEED to do that. The focus now will be on securing that data.

Internet of Things will become the API of Things: IoT is rapidly becoming THE buzz-term-du-jour, but it implies a vastly different way of conducting business, both personal and enterprise. It dramatically changes the customer experience, and that experience IS the company's brand. At the heart of the IoT concept is really just a bunch of APIs connecting with each other and benefitting from the idea of the whole being greater than the sum of its parts. For all those things to be connected, they need a common tool to open the door and allow data to be moved and acted on. But to benefit from IoT, APIs will need to be created, distributed and used intelligently and according to smart business strategies. In 2014, we'll see that companies who distribute their APIs widely, and use their APIs as a data channel (and not just as a tool for getting more eyeballs) will benefit most. In the coming year, the bandwagon will get very, very crowded, as consumer companies will try to leverage their internal and enterprise data into something usable and accessible. That bandwagon will also be filled with some incredibly interesting business opportunities.

Industry-specific APIs: We see that, as a way to leverage the work being done by others in a vertical, companies will look to use APIs to create massively connected apps and mash-ups. So rather than just a banking app, it's more powerful to create an app that combines the comprehensive needs of someone needing a loan: application, credit report, financing, delivery, all combined into a single app. Whereas some might have been leery of combining their capabilities with those of competitors, they are starting to recognize that serving the customer with the best experience is what is most beneficial to their business. Nothing can enable that as efficiently as an API, and the recognition of such is finally getting the attention it deserves.

Evolution of REST (and beyond): We have long been proponents of REST as a protocol for facilitating connections among data and services, but we're also aware of its limitations. We expect to see the emergence of new standards like WADL, Swagger, RAML and others, all due to their flexibility and that these will fill in holes left by REST and the deficiencies it has with defining service descriptions. We also will see REST being replaced by MQTT for specific use case in Mobile and IoT and with Web sockets for real time applications. In all these cases you will need to apply the SOA governance principles as you do today for SOA and APIs.

Read the original blog entry...

More Stories By Roberto Medrano

Roberto Medrano, Executive Vice President at SOA Software, is a recognized executive in the information technology fields of SOA, internet security, governance, and compliance. He has extensive experience with both start-ups and large companies, having been involved at the beginning of four IT industries: EDA, Open Systems, Computer Security and now SOA.

Prior to joining SOA Software, he was CEO of PoliVec, a leader in security policy. Before joining PoliVec, he was one of the top 100 Sr. Executives at Hewlett Packard. At Hewlett-Packard (HP) served as the General Manager of the E-Services and Internet Security Divisions. Medrano has held executive positions at Finjan, Avnet Inc, and Sun Microsystems. Medrano participated in President Clinton’s White House Security Summit and has been an active member on National Cyber Security Summits, and the White House National Strategy to Secure Cyberspace.

Medrano has been selected as one of “The 100 most influential Hispanics in US”, “The 100 most influential Latinos in Silicon Valley” “Top 100 most influential Hispanics in Information Technology” and is co-founder and CEO for Hispanic-Net, a non-profit organization. Medrano holds an MBA from UCLA, a MSEE from MIT, BSEE from USC.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


@MicroservicesExpo Stories
Most companies are adopting or evaluating container technology - Docker in particular - to speed up application deployment, drive down cost, ease management and make application delivery more flexible overall. As with most new architectures, this dream takes a lot of work to become a reality. Even when you do get your application componentized enough and packaged properly, there are still challenges for DevOps teams to making the shift to continuous delivery and achieving that reduction in cost ...
Enterprise architects are increasingly adopting multi-cloud strategies as they seek to utilize existing data center assets, leverage the advantages of cloud computing and avoid cloud vendor lock-in. This requires a globally aware traffic management strategy that can monitor infrastructure health across data centers and end-user experience globally, while responding to control changes and system specification at the speed of today’s DevOps teams. In his session at 20th Cloud Expo, Josh Gray, Chie...
"At the keynote this morning we spoke about the value proposition of Nutanix, of having a DevOps culture and a mindset, and the business outcomes of achieving agility and scale, which everybody here is trying to accomplish," noted Mark Lavi, DevOps Solution Architect at Nutanix, in this SYS-CON.tv interview at @DevOpsSummit at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
We have already established the importance of APIs in today’s digital world (read about it here). With APIs playing such an important role in keeping us connected, it’s necessary to maintain the API’s performance as well as availability. There are multiple aspects to consider when monitoring APIs, from integration to performance issues, therefore a general monitoring strategy that only accounts for up-time is not ideal.
Web services have taken the development world by storm, especially in recent years as they've become more and more widely adopted. There are naturally many reasons for this, but first, let's understand what exactly a web service is. The World Wide Web Consortium (W3C) defines "web of services" as "message-based design frequently found on the Web and in enterprise software". Basically, a web service is a method of sending a message between two devices through a network. In practical terms, this ...
As many know, the first generation of Cloud Management Platform (CMP) solutions were designed for managing virtual infrastructure (IaaS) and traditional applications. But that’s no longer enough to satisfy evolving and complex business requirements. In his session at 21st Cloud Expo, Scott Davis, Embotics CTO, will explore how next-generation CMPs ensure organizations can manage cloud-native and microservice-based application architectures, while also facilitating agile DevOps methodology. He wi...
API Security is complex! Vendors like Forum Systems, IBM, CA and Axway have invested almost 2 decades of engineering effort and significant capital in building API Security stacks to lockdown APIs. The API Security stack diagram shown below is a building block for rapidly locking down APIs. The four fundamental pillars of API Security - SSL, Identity, Content Validation and deployment architecture - are discussed in detail below.
While some vendors scramble to create and sell you a fancy solution for monitoring your spanking new Amazon Lambdas, hear how you can do it on the cheap using just built-in Java APIs yourself. By exploiting a little-known fact that Lambdas aren’t exactly single-threaded, you can effectively identify hot spots in your serverless code. In his session at @DevOpsSummit at 21st Cloud Expo, Dave Martin, Product owner at CA Technologies, will give a live demonstration and code walkthrough, showing how ...
Translating agile methodology into real-world best practices within the modern software factory has driven widespread DevOps adoption, yet much work remains to expand workflows and tooling across the enterprise. As models evolve from pockets of experimentation into wholescale organizational reinvention, practitioners find themselves challenged to incorporate the culture and architecture necessary to support DevOps at scale.
We define Hybrid IT as a management approach in which organizations create a workload-centric and value-driven integrated technology stack that may include legacy infrastructure, web-scale architectures, private cloud implementations along with public cloud platforms ranging from Infrastructure-as-a-Service to Software-as-a-Service.
With Cloud Foundry you can easily deploy and use apps utilizing websocket technology, but not everybody realizes that scaling them out is not that trivial. In his session at 21st Cloud Expo, Roman Swoszowski, CTO and VP, Cloud Foundry Services, at Grape Up, will show you an example of how to deal with this issue. He will demonstrate a cloud-native Spring Boot app running in Cloud Foundry and communicating with clients over websocket protocol that can be easily scaled horizontally and coordinate...
Did you know that you can develop for mainframes in Java? Or that the testing and deployment can be automated across mobile to mainframe? In his session and demo at @DevOpsSummit at 21st Cloud Expo, Dana Boudreau, a Senior Director at CA Technologies, will discuss how increasingly teams are developing with agile methodologies, using modern development environments, and automating testing and deployments, mobile to mainframe.
DevOps at Cloud Expo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 21st Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time to w...
If you cannot explicitly articulate how investing in a new technology, changing the approach or re-engineering the business process will help you achieve your customer-centric vision of the future in direct and measurable ways, you probably shouldn’t be doing it. At Intellyx, we spend a lot of time talking to technology vendors. In our conversations, we explore emerging new technologies that are either disrupting the way enterprise organizations work or that help enable those organizations to co...
In his session at 20th Cloud Expo, Scott Davis, CTO of Embotics, discussed how automation can provide the dynamic management required to cost-effectively deliver microservices and container solutions at scale. He also discussed how flexible automation is the key to effectively bridging and seamlessly coordinating both IT and developer needs for component orchestration across disparate clouds – an increasingly important requirement at today’s multi-cloud enterprise.
IT organizations are moving to the cloud in hopes to approve efficiency, increase agility and save money. Migrating workloads might seem like a simple task, but what many businesses don’t realize is that application migration criteria differs across organizations, making it difficult for architects to arrive at an accurate TCO number. In his session at 21st Cloud Expo, Joe Kinsella, CTO of CloudHealth Technologies, will offer a systematic approach to understanding the TCO of a cloud application...
Docker is on a roll. In the last few years, this container management service has become immensely popular in development, especially given the great fit with agile-based projects and continuous delivery. In this article, I want to take a brief look at how you can use Docker to accelerate and streamline the software development lifecycle (SDLC) process.
API Security has finally entered our security zeitgeist. OWASP Top 10 2017 - RC1 recognized API Security as a first class citizen by adding it as number 10, or A-10 on its list of web application vulnerabilities. We believe this is just the start. The attack surface area offered by API is orders or magnitude larger than any other attack surface area. Consider the fact the APIs expose cloud services, internal databases, application and even legacy mainframes over the internet. What could go wrong...
The goal of Continuous Testing is to shift testing left to find defects earlier and release software faster. This can be achieved by integrating a set of open source functional and performance testing tools in the early stages of your software delivery lifecycle. There is one process that binds all application delivery stages together into one well-orchestrated machine: Continuous Testing. Continuous Testing is the conveyer belt between the Software Factory and production stages. Artifacts are m...
Cloud adoption is often driven by a desire to increase efficiency, boost agility and save money. All too often, however, the reality involves unpredictable cost spikes and lack of oversight due to resource limitations. In his session at 20th Cloud Expo, Joe Kinsella, CTO and Founder of CloudHealth Technologies, tackled the question: “How do you build a fully optimized cloud?” He will examine: Why TCO is critical to achieving cloud success – and why attendees should be thinking holistically abo...