TrustRadius Insights
The Salt Security API Protection Platform has been widely deployed across enterprises to gain better visibility into all APIs used, …
Overview
What is Salt Security API Protection Platform?
For API-driven organizations, Salt Security is an API security platform that protects internal, external, and third-party APIs. The Salt C-3A Context-based API Analysis Architecture combines coverage and AI-powered big data todiscover APIs and exposed sensitive data - continuous and automatic discoverystop attackers…
Recent Reviews
Product Details
- About
- Integrations
- Competitors
- Tech Details
What is Salt Security API Protection Platform?
For API-driven organizations,
Salt Security is an API security platform
that protects internal, external, and third-party APIs.
The Salt C-3A Context-based API Analysis Architecture combines coverage and AI-powered big data to
According to the vendor the Salt Platform differs from WAFs and API gateways, that cover only some APIs and operate on a narrow, single-transaction perspective, and is designed to understand the full context of APIs and users to provide complete security across the full API lifecycle.
The Salt platform deploys out of band, with no agents, and runs in cloud, on-premise and traditional or container/Kubernetes environments.
- discover APIs and exposed sensitive data - continuous and automatic discovery
- stop attackers in their tracks - block attackers by integrating with inline devices
- provide remediation insights - for developers to improve API security posture
According to the vendor the Salt Platform differs from WAFs and API gateways, that cover only some APIs and operate on a narrow, single-transaction perspective, and is designed to understand the full context of APIs and users to provide complete security across the full API lifecycle.
The Salt platform deploys out of band, with no agents, and runs in cloud, on-premise and traditional or container/Kubernetes environments.
Salt Security API Protection Platform Features
- Supported: discovery of APIs and exposed sensitive data
- Supported: attack prevention
- Supported: remediation insights
Salt Security API Protection Platform Integrations
Salt Security API Protection Platform Competitors
Salt Security API Protection Platform Technical Details
| Deployment Types | Software as a Service (SaaS), Cloud, or Web-Based |
|---|---|
| Operating Systems | Unspecified |
| Mobile Application | No |
| Supported Countries | US, EMEA, Asia Pac |
| Supported Languages | English |
Salt Security API Protection Platform Customer Size Distribution
| Consumers | 0% |
|---|---|
| Small Businesses (1-50 employees) | 0% |
| Mid-Size Companies (51-500 employees) | 35% |
| Enterprises (more than 500 employees) | 65% |
Comparisons
Compare with
Reviews and Ratings
(6)
Community Insights
TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!
- Business Problems Solved
- Pros
- Cons
The Salt Security API Protection Platform has been widely deployed across enterprises to gain better visibility into all APIs used, including those in different cloud architectures and both in-house and third-party applications. Users have found this platform helpful for inventorying APIs and detecting attacks and unauthorized data access through these APIs. By providing a realistic view of the entire API infrastructure and the potential threats these APIs face, Salt Security API Protection Platform allows users to respond faster and more appropriately to potential attacks that exploit APIs as an attack vector. This platform addresses the need for visibility and control over the APIs being used and how they are consumed.
One key use case of the Salt Security API Protection Platform is to identify anomalies and support incident response. The platform integrates with SOC/SIEM tools to report detected attacks, facilitating investigations and faster incident response. Customers have implemented this platform in their in-house developed applications to identify and protect publicly accessible APIs. Salt Security API Protection Platform provides valuable information about data consumption via APIs and call management at application endpoints, considering PII tracking and access patterns of potential attackers. Users report productivity gains from the alerts generated and the intelligence provided by Salt Security API Protection Platform in analyzing vulnerabilities and threats. Additionally, the platform offers visibility into API traffic, enabling proactive identification of PII, discrepancies between API documentation and real traffic, potential attackers, as well as suggestions for countermeasures and improvements such as missing HTTP headers or endpoints lacking authorization. Customers appreciate that Salt Security API Protection Platform allows them to gain insights into their API traffic, which would be challenging without the platform given the number of endpoints and traffic volume.
Easy Deployment: Multiple users have expressed their appreciation for the easy deployment process of the product, which allowed them to set it up smoothly and without any hassle.
Excellent Visibility into API Activity: Many reviewers have specifically mentioned that the product offers excellent visibility into activity on APIs. This feature enables them to easily track and monitor how their APIs are being used.
Valuable Insights into Inventory: Some users have found great value in the product's ability to provide insights into their inventory. By using this tool, they were able to discover items that they were previously unaware of, resulting in a better understanding of their inventory.
Difficult Customized Deployments: Some users have found the process of setting up customized deployments to be challenging. They have encountered difficulties in configuring and implementing their specific requirements, which has resulted in frustration and delays.
Reporting Functionality Needs Improvement: Several reviewers have mentioned that the reporting functionality across the enterprise needs enhancement, not just in specific environments. Users have expressed a need for more comprehensive and robust reporting capabilities, including customizable reports, advanced analytics, and seamless integration with other systems.
Lack of Access to API Requests and Responses: A number of users have expressed a desire for access to requests and responses from all APIs, not just those related to attacks. They feel that having visibility into all API activities would allow them to better monitor and analyze potential threats or vulnerabilities.
Reviews
(1-6 of 6)Companies can't remove reviews or game the system. Here's why
Score 9 out of 10
Vetted Review
Verified User
- Constant monitoring and alert for possible attacks based on API consumption baseline
Score 8 out of 10
Vetted Review
Verified User
- Detailed Attacks information
- Integration with SOC/SIEM Tools
- Senstive data control
April 12, 2022
Salt review
Score 9 out of 10
Vetted Review
Verified User
- Alertting
- Attack identification
- PII identification
April 11, 2022
API traffic compliance and security visibility
Score 10 out of 10
Vetted Review
Verified User
- PII identification.
- Traffic analysis to get insights on improvements and potential attackers.
September 30, 2021
Salt Security Review
Score 9 out of 10
Vetted Review
Verified User
- API and endpoint identification
- Identification of attackers and what they were doing on the API
Score 10 out of 10
Vetted Review
Verified User
- Inventory
- API monitoring
- SDLC integration