Xolv Technology Solutions, a provider of end-to-end solutions that reduce the complexity of delivering health care, is protecting its API-driven applications using the Salt Security API Protection Platform. Xolv uses the Salt platform to discover and secure the APIs that serve as the foundation for its technologies that enable home and community-based health services to improve accessibility, affordability, and care outcomes.
Xolv built its custom web and mobile applications, used by both patients and care providers, using a combination of more than 90 APIs in a hybrid cloud infrastructure that spans on-prem, AWS, and GCP environments. Xolv found that the traditional tools it was using for API protection, including web application firewalls (WAFs) and API gateways, were generating errors, blocking non-malicious activity, and missing API attacks.
The company turned to Salt Security and its platform that distinguishes proper API calls from malicious ones, discovers the full breadth of APIs across Xolv’s environments, supports testing and remediation insights for API development, and secures the Xolv applications from data exposure, exfiltration, and other malicious API attacks.
The Salt Security API Protection Platform provides comprehensive security of APIs’ entire lifecycle – build, deploy, and runtime. It enables organizations to catalog their APIs, see where they expose sensitive data, detect and block API attackers, scan and test APIs, and provide remediation insights that developers can use to harden APIs and improve the security posture over time.
Through its patented API Context Engine (ACE) architecture – powered by big data, AI, and ML – the platform can identify the early indicators of an attack, stop attackers from advancing and turn attackers into penetration testers, leading to valuable feedback for security teams to identify and eliminate vulnerabilities, keeping API-connected data and services safe, even as APIs change and environments scale.