Kumar Srivastava

As businesses in today’s mobile-first digital world interact with partners, developers, and internal resources through app experiences and APIs, the number of sources of useful data has exploded. Success for enterprises requires end-to-end visibility across your entire digital value chain - from the backend, to the APIs that expose data and services, to the developers and apps that consume your APIs and build the customer experiences. Whether you are a product manager, app developer, API… Show more

As businesses in today’s mobile-first digital world interact with partners, developers, and internal resources through app experiences and APIs, the number of sources of useful data has exploded. Success for enterprises requires end-to-end visibility across your entire digital value chain - from the backend, to the APIs that expose data and services, to the developers and apps that consume your APIs and build the customer experiences. Whether you are a product manager, app developer, API developer, or API operations engineer, this course is designed to help you identify the metrics you should track for business and operational success of your API program, and gain an understanding of the analytics capabilities of Apigee Edge. Show less

Enterprises are adopting API strategies to open up access to their back-end systems enabling developers to innovate and build web and mobile apps. Today's economy is exploding with business being done via apps, and as a result more and more transactions flow from end users and developers to enterprises.

As enterprises adjust to the new reality of business having moved beyond their core and legacy systems of record - to millions of mobile devices and social networks at the edge of the enterprise, to new distribution channels in the shape of apps which are often built by third party or partner developers - the question of end user privacy becomes increasingly important. As the app economy matures, it’s participants will have to quickly move from self governance to establishing standards or even… Show more

As enterprises adjust to the new reality of business having moved beyond their core and legacy systems of record - to millions of mobile devices and social networks at the edge of the enterprise, to new distribution channels in the shape of apps which are often built by third party or partner developers - the question of end user privacy becomes increasingly important. As the app economy matures, it’s participants will have to quickly move from self governance to establishing standards or even regulation to address end-user privacy expectations. Show less

Meeting key business objectives (in the context of a platform strategy) such as increasing market share or profitability in the enterprise’s niche can be achieved by increasing the enterprise’s user base, the user engagement and improving the product mix.

As a product manager managing an API program, one can have several different factors to consider, track and plan for your API program. The considerations also vary by the stage of the API program that you are managing i.e. you could be launching a new API program or be tasked with managing a program that have been in existence for some time.
The basics of product management do not change. Identifying your customers and ensuring that your product serves their needs is still the first and… Show more

As a product manager managing an API program, one can have several different factors to consider, track and plan for your API program. The considerations also vary by the stage of the API program that you are managing i.e. you could be launching a new API program or be tasked with managing a program that have been in existence for some time.
The basics of product management do not change. Identifying your customers and ensuring that your product serves their needs is still the first and foremost goal of managing an API program.
There are several customers for an API program but the main customer is the app developer that will use your APIs to build Apps. The end user of these apps is also your customer because actual use of your API will be done by end users using the apps that your developers would have built. Internally to your organization, your business line manager, operations, developers and internal system owners are also your customers as their workflows and day-to-day deliverables are tied intimately with your product.
A successful API program hinges on your ability to delight your developers. A happy developer leads to incredible apps that use your APIs in ways that you could not have predicted leading to a more diverse end user set and higher profits. Show less

The article describes data as fast becoming the de-facto currency for facilitating business deals and that a driver of a new model of collaboration. Data marketplaces are an up-and-coming business and while the Internet is full of open data, there's also plenty of data that companies will be willing to pay for - particularly if it's timely, curated, well aggregated, and insightful.

Ability for businesses to access and synthesize data is a competitive edge. We will see more and more… Show more

The article describes data as fast becoming the de-facto currency for facilitating business deals and that a driver of a new model of collaboration. Data marketplaces are an up-and-coming business and while the Internet is full of open data, there's also plenty of data that companies will be willing to pay for - particularly if it's timely, curated, well aggregated, and insightful.

Ability for businesses to access and synthesize data is a competitive edge. We will see more and more enterprises exposing their data schemas, formats and other related capabilities publicly though a common data description language and data explorer capabilities accessible by both humans and machines. Show less

This article describes the "cachiness factor" as the degree to which your API design supports the caching of responses. An API proxy can be designed to do a number of things when a request arrives including to determine the quality or fidelity of the data requested by the app or end user, pre-fetch data based on temporal and spatial locality, pre-fetch data based on similarity, and so on.

"Cachiness in an API design refers to understanding how a piece of retrieved data can be reused to… Show more

This article describes the "cachiness factor" as the degree to which your API design supports the caching of responses. An API proxy can be designed to do a number of things when a request arrives including to determine the quality or fidelity of the data requested by the app or end user, pre-fetch data based on temporal and spatial locality, pre-fetch data based on similarity, and so on.

"Cachiness in an API design refers to understanding how a piece of retrieved data can be reused to serve other API requests. Such an understanding can be transformed into a set of actions that store the retrieved copy of the data in an optimal form for reuse.This coupled with insights from API usage analytics can provide direct benefits in terms of app performance and operational costs." Show less

This article discusses common kinds of abuse and spam problems for APIs, apps and users. Also steps developers can take to protect their apps and end users, and API providers can take to protect their APIs.

Protecting users, apps, and APIs from abuse
http://blog.apigee.com/detail/protecting_users_apps_and_apis_from_abuse/

The second post (Dealing with malicious attacks) looked at ways to react when a malicious user or app is detected, including blocking users and apps, quotas… Show more

This article discusses common kinds of abuse and spam problems for APIs, apps and users. Also steps developers can take to protect their apps and end users, and API providers can take to protect their APIs.

Protecting users, apps, and APIs from abuse
http://blog.apigee.com/detail/protecting_users_apps_and_apis_from_abuse/

The second post (Dealing with malicious attacks) looked at ways to react when a malicious user or app is detected, including blocking users and apps, quotas and throttling or denying service. http://blog.apigee.com/detail/dealing_with_malicious_attacks/

Part III (User Experience, data quality and dealing with mistakes) deals with considerations for designing for online safety, including the ability to dial the aggressiveness of the protection, detection, and remediation mechanisms up and down, and considerations for fine tuning such systems to optimize the security and experience of legitimate users while protecting APIs, apps, and users against abuse.
http://blog.apigee.com/detail/user_experience_data_quality_and_dealing_with_mistakes/ Show less

Over the internet, users interact through different mechanisms such as emails, blogs and discussion boards. With the advent of Session Initiation Protocol (SIP) based sessions, users are able to easily interact with each other through IP telephony and instant messages. Such SIP-based relationships create a wealth of information that can be used to map out relationships between users based on their communication behavior. These relationships can then be represented through social networks. We… Show more

Over the internet, users interact through different mechanisms such as emails, blogs and discussion boards. With the advent of Session Initiation Protocol (SIP) based sessions, users are able to easily interact with each other through IP telephony and instant messages. Such SIP-based relationships create a wealth of information that can be used to map out relationships between users based on their communication behavior. These relationships can then be represented through social networks. We present a mapping whereby SIP-based sessions can be aggregated to create communication-based relationships which in turn can be used to create comprehensive and detailed social networks. Show less

As IP telephony becomes more widely deployed and used, tele-marketers or other spammers are bound to start using SIP-based calls and instant messages as a medium for sending spam. As is evident from the fate of email, protection against spam has to be built into SIP systems otherwise they are bound to fall prey to spam. Traditional approaches used to prevent spam in email such as content-based filtering and access lists are not applicable to SIP calls and instant messages in their present form.… Show more

As IP telephony becomes more widely deployed and used, tele-marketers or other spammers are bound to start using SIP-based calls and instant messages as a medium for sending spam. As is evident from the fate of email, protection against spam has to be built into SIP systems otherwise they are bound to fall prey to spam. Traditional approaches used to prevent spam in email such as content-based filtering and access lists are not applicable to SIP calls and instant messages in their present form. We propose Domain-based Authentication and Policy-Enforced for SIP (DAPES): a system that can be easily implemented and deployed in existing SIP networks. Our system is capable of determining in real time, whether an incoming call or instant message is likely to be spam or not, while at the same time, supporting communication between both known and unknown parties. DAPES includes the deployment of reputation systems in SIP networks to enable real-time transfer of reputation information between parties to allow communication between entities unknown to each other. Show less

Mobile phone and device carriers face stiff competition in their ranks. However, mobile phone carriers have access to tremendous amounts of continuous streams of data about users, their usage of mobile phones and services and their history of the service usage. This offers a massive opportunity to carriers to utilize this data to understand their users, the user lifecycle and phone and data usage models to implement market share increasing, profit increasing and customer satisfaction increasing… Show more

Mobile phone and device carriers face stiff competition in their ranks. However, mobile phone carriers have access to tremendous amounts of continuous streams of data about users, their usage of mobile phones and services and their history of the service usage. This offers a massive opportunity to carriers to utilize this data to understand their users, the user lifecycle and phone and data usage models to implement market share increasing, profit increasing and customer satisfaction increasing strategies with key in house or third party data analytics. Show less

As consumers send more and more time online, they face an ever increasing set of threats such as spam, phishing, malware, scams and spim. Similarly, online vendors and cloud service providers become the target of hacker and abuser attacks through malicious user registration, malicious content generation and distribution to legitimate users. This paper proposes the argument that no one online service provider has the data required to completely protect their customers and the nature of the… Show more

As consumers send more and more time online, they face an ever increasing set of threats such as spam, phishing, malware, scams and spim. Similarly, online vendors and cloud service providers become the target of hacker and abuser attacks through malicious user registration, malicious content generation and distribution to legitimate users. This paper proposes the argument that no one online service provider has the data required to completely protect their customers and the nature of the threat requires online service providers to work together, share data and jointly counteract the online safety threat. This paper describes a model for data sharing that supports and protects the online service provider’s business and strategic goals while providing a deeper and stronger line of defense for their service offerings. Ultimately, the entire ecosystem becomes more secure while enabling service providers to invest a majority of resources into features and improvements that users expect and care about from the service. Show less

As consumers send more and more time online, they face an ever increasing set of threats such as spam, phishing, malware, scams and spim. Similarly, online vendors and cloud service providers become the target of hacker and abuser attacks through malicious user registration, malicious content generation and distribution to legitimate users. This paper discusses the various challenges, issues and ideas that need careful assessment and planning to ensure that services can successfully deal with… Show more

As consumers send more and more time online, they face an ever increasing set of threats such as spam, phishing, malware, scams and spim. Similarly, online vendors and cloud service providers become the target of hacker and abuser attacks through malicious user registration, malicious content generation and distribution to legitimate users. This paper discusses the various challenges, issues and ideas that need careful assessment and planning to ensure that services can successfully deal with abuse on their online services or can provider such a service to other service vendors at internet scale. Show less