at Financial Technnology Year
This content is provided by FinTechBenchmarker.com who are responsible for the content. Please contact them if you have any questions.
TIBCO Cloud Mashery from TIBCO Software
API gateway, developer portal, analytics, financial services security controls, traffic management, monetization capabilities, and integration with TIBCO's broader connected intelligence platform.
Product analysis by function
API Management for IT and Infrastructure
Systems for developing, managing, securing, and monitoring APIs that connect banking systems internally and with external partners.
More API Management
More IT and Infrastructure ...
API Security
(11 Yes /11 Known /13 Possible features)
|
OAuth 2.0 Support Ability to use OAuth 2.0 protocol for secure authorization. |
Mashery provides OAuth 2.0 support for API authentication, as detailed in TIBCO Cloud Mashery documentation & public OAuth examples. | |
|
API Key Management Supports creation, issuance, and life-cycle management of API keys. |
API key management is a primary feature in Mashery's developer portal and API management tools. | |
|
IP Whitelisting/Blacklisting Enable or restrict API access based on user IP addresses. |
Mashery supports access control based on IP/cidr blocks for whitelisting/blacklisting via configuration. | |
|
Rate Limiting Limits the number of requests a client can make to avoid abuse. |
Mashery includes built-in quota and rate limiting controls within its API traffic management section. | |
|
Throttling Ability to control bandwidth and request frequency. |
Documentation lists request throttling as a supported feature for traffic management. | |
|
Data Encryption Supports encryption of data in transit and at rest (e.g., TLS, HTTPS). |
Mashery enforces TLS/HTTPS and supports data encryption at rest as described in financial services and compliance literature. | |
|
JWT (JSON Web Token) Validation Capability to validate JWTs for API access management. |
Mashery supports JWTs for OAuth and session/state management, with validation options documented. | |
|
Audit Trails Tracks and stores all API access and activity logs for compliance and debugging. |
Detailed audit and access/usage logs are a core part of Mashery's compliance and analytics capabilities. | |
|
DDoS Protection Protection mechanisms against Distributed Denial of Service attacks. |
No information available | |
|
Mutual TLS (mTLS) Supports mutual TLS authentication to secure API connections. |
Mashery offers mTLS support for bank/FI customers per feature specs and industry use cases. | |
|
Access Control Lists (ACLs) Ability to define detailed access permissions for API consumers. |
Detailed role and ACL management are included in administration features. | |
|
Security Patch Management Automated updates for emerging threats and vulnerabilities. |
No information available | |
|
Regulatory Compliance Certifications Supports and maintains compliance (e.g., PCI DSS, PSD2, GDPR) for financial data and operations. |
Mashery markets compliance with PCI DSS, PSD2/Open Banking, and supports GDPR as a financial services solution. |
API Gateway Functionality
(8 Yes /8 Known /11 Possible features)
|
Request Routing Routes incoming API requests to appropriate backend services. |
Request routing is at the core of Mashery’s gateway and API traffic management features. | |
|
API Aggregation Combines multiple API calls into a single request/response. |
API aggregation documented as part of request transformation and orchestration functions. | |
|
Caching Caches API responses to reduce backend load and latency. |
Mashery caches API responses as part of its performance improvement suite. | |
|
Load Balancing Distributes incoming API traffic among multiple backends. |
Load balancing is natively supported for APIs in the platform. | |
|
Protocol Transformation Converts between different protocols (e.g., REST, SOAP, gRPC). |
Protocol transformation (REST, SOAP, JSON/XML) is explicitly outlined in architecture and integration docs. | |
|
Content-Based Routing Routes requests based on content type or header values. |
Content-based routing is present in Mashery’s configuration for advanced traffic management. | |
|
URL Rewriting Ability to rewrite request URLs on the fly for routing efficiency. |
No information available | |
|
Failover Support Automatic rerouting of traffic in case of backend failure. |
Mashery provides failover for high availability described in TIBCO’s enterprise documentation. | |
|
Timeout Configuration Customizable timeouts for upstream requests. |
Mashery allows users to set customizable timeout configurations for API calls. | |
|
API Mocking Ability to simulate API responses during development and testing. |
No information available | |
|
Advanced Traffic Shaping Customizable traffic shaping rules for granular control. |
No information available |
Developer Experience
(10 Yes /10 Known /11 Possible features)
|
Interactive API Documentation Auto-generated documentation with try-it-out features (e.g., Swagger, OpenAPI). |
Mashery includes interactive Swagger/OpenAPI documentation and try-it-out features on developer portals. | |
|
API Sandbox Environment Safe, limited test environment for developer experimentation. |
API Sandbox environments are offered for developer testing and onboarding. | |
|
Self-Service Portal Portal for onboarding, documentation access, and API key management. |
Self-service developer portal advertised as a key feature. | |
|
SDK Generation Automated creation of SDKs in multiple languages for developers. |
Mashery can auto-generate SDKs as part of developer enablement offerings. | |
|
Code Samples Includes quick-start code samples for faster developer onboarding. |
Quick-start code samples are present in documentation and developer onboarding materials. | |
|
Comprehensive Error Codes Clear and consistent error messages with codes and explanations. |
Mashery’s API error responses include detailed error codes per OpenAPI documentation. | |
|
Change Log Communication Automated notifications on API updates and version changes. |
Change logs and notifications appear in platform announcements and API versioning. | |
|
API Subscription Management Supports subscription plans for API access levels. |
API subscription plan support is listed in monetization/plan management features. | |
|
End-to-End Testing Tools Supports thorough testing across API endpoints. |
No information available | |
|
API Usage Analytics for Developers Provides developers with real-time metrics for their API usage. |
API analytics for developers are a key part of Mashery's developer experience portal. | |
|
Support Ticketing Integration Integrated support system for technical queries and issues. |
Support ticketing is included/linked in developer and admin portal flows. |
Monitoring and Analytics
(8 Yes /8 Known /11 Possible features)
|
Real-Time Traffic Monitoring Provides live data on API usage metrics and performance. |
Real-time API monitoring and analytics dashboards are core advertised capabilities. | |
|
Request Latency Tracking Measures and reports time taken to process API requests. |
No information available | |
|
Error Rate Monitoring Tracks percentage of API requests resulting in errors. |
No information available | |
|
Health Checks Automated and on-demand status checks for API endpoints. |
Health checks on APIs and endpoints are part of the monitoring suite. | |
|
Custom Dashboards User-configurable dashboards for monitoring APIs. |
Mashery offers customizable dashboards for API and usage analytics. | |
|
Historical Data Retention Duration for retaining historical API usage and performance data. |
No information available | |
|
Integration with External Monitoring Tools Supports integration with platforms like Splunk, Grafana, Datadog. |
External analytics tool integration is documented for Mashery (e.g., Datadog, Splunk, New Relic). | |
|
Alert Notification System Sends alerts for threshold breaches and downtime. |
Mashery sends alerts for outages, rate limit breaches, and operational events. | |
|
Log Export and Archival Export logs for long-term storage and regulatory compliance. |
Log export is supported for compliance and regulatory needs. | |
|
Anomaly Detection Automatic detection of unusual API behavior. |
Anomaly detection is referenced in advanced analytics and compliance documentation. | |
|
SLAs and Uptime Reporting Service Level Agreement and uptime tracking for each API. |
Mashery provides SLA guarantees and uptime reporting for enterprise customers. |
Integration and Interoperability
(6 Yes /6 Known /11 Possible features)
|
Support for Multiple API Protocols REST, SOAP, WebSockets, gRPC compatibility. |
Mashery supports REST, SOAP, WebSockets, and other protocols, as outlined in specifications. | |
|
Enterprise Service Bus Integration Compatible with ESB solutions for orchestration and mediation. |
No information available | |
|
Legacy System Connectors Connects easily with mainframes and legacy banking systems. |
No information available | |
|
Third-party Integration Marketplace Pre-built integrations with common fintech and regtech services. |
Mashery offers prebuilt connectors/integrations to major fintech partners in its marketplace. | |
|
Event Streaming Support Supports event-driven architectures (e.g., Kafka, MQ). |
No information available | |
|
API Orchestration Capability Orchestrates multiple APIs and business processes. |
Mashery provides API orchestration and workflow features. | |
|
Standard Data Format Support Understands and processes JSON, XML, CSV, and more. |
Full support for JSON, XML, and other common data formats. | |
|
Multi-Cloud Support Deployable on different cloud platforms and hybrid architectures. |
Mashery is deployable on AWS, Azure, and private cloud; multi-cloud support is detailed on the product site. | |
|
Service Discovery Integration Integrates with service registries (e.g., Consul). |
No information available | |
|
API Versioning Manages and routes multiple versions of APIs seamlessly. |
API versioning management is a prominent advertised feature. | |
|
BPM/Workflow Engine Integration Interoperates with business process management tools. |
No information available |
Scalability and Performance
(6 Yes /6 Known /10 Possible features)
|
Horizontal Scalability Ability to add nodes and balance load automatically. |
Horizontal scalability is detailed as part of Mashery’s hosted and SaaS offerings. | |
|
High Availability Architecture Redundant components and failover to maximize uptime. |
Mashery offers high-availability deployments and instant failover. | |
|
Throughput Capacity Total number of API requests handled per second. |
No information available | |
|
Load Testing Tools Includes tools for stress and performance testing APIs. |
Load testing and traffic simulation tools are part of onboarding and performance tuning guidance. | |
|
Auto-Scaling Policies Automatic scaling based on real-time demand. |
Documentation mentions auto-scaling for cloud deployments. | |
|
Geo-Distributed Deployments Supports deployments across multiple geographic locations. |
Mashery offers geo-distributed deployment options across multiple regions. | |
|
Low Latency Processing Optimized to minimize request/response latency. |
Low-latency architecture and global endpoints supported per performance documentation. | |
|
Concurrent Connection Limits Maximum number of simultaneous client connections supported. |
No information available | |
|
Session Persistence Ability to maintain session/state across distributed systems. |
No information available | |
|
Fast Failover and Recovery Quickly re-routes traffic on failure for uninterrupted service. |
No information available |
API Lifecycle Management
(8 Yes /8 Known /9 Possible features)
|
API Design Tools User-friendly tools for designing APIs (specifications, linting, etc). |
API design tools (OpenAPI spec, codegen) are integrated in the developer portal. | |
|
Automated Deployment Pipelines CI/CD pipelines for consistent API release processes. |
Guided API deployment and CI/CD integration are available via TIBCO cloud pipelines. | |
|
Version Control Tracks changes and rollbacks for API definitions and implementations. |
Version control for APIs is supported as part of the management lifecycle. | |
|
Lifecycle Stages Tracking Defines and manages API states: development, testing, production, deprecated. |
Mashery manages API lifecycle states (dev, test, prod, deprecation) per documentation. | |
|
Deprecation and Sunset Policy Enforcement Controlled migration paths and communication for deprecated APIs. |
API deprecation and sunset policy communication/management are available. | |
|
Change Management Logging Monitors changes and notifies stakeholders. |
Change management is supported via logs and notifications to stakeholders. | |
|
Automated Testing Integration Integrates with automated test frameworks. |
Mashery integrates with test suites and supports automated API testing. | |
|
Approval Workflows Multi-step approval for API publishing or promotion. |
No information available | |
|
Rollback Mechanism Quickly revert to previous stable versions. |
Mashery supports rollback to prior versions/configurations for APIs. |
Regulatory and Compliance
(9 Yes /9 Known /9 Possible features)
|
Audit Logging Comprehensive, immutable records of every API activity. |
Mashery offers audit logging for compliance and operational tracking. | |
|
Privacy Controls Strict controls for personal and sensitive data processing. |
Privacy controls and data handling rules are provided for regulated industries. | |
|
GDPR Compliance Supports mechanisms for data rights and protection under GDPR. |
Mashery has GDPR-ready status and guides for data rights enforcement. | |
|
PCI DSS Support Meets requirements for processing and storing payment card data. |
Mashery holds PCI DSS certifications for card data and secure processing. | |
|
PSD2/Open Banking Readiness Supports open banking standards and frameworks. |
PSD2/Open Banking support detailed for both Europe and other regions. | |
|
Consent Management Tracks and enforces customer consent for data sharing. |
Consent management and customer permission tracking is a published feature for FIs. | |
|
Data Residency Controls Enforces policies on where data can be physically stored. |
Data residency rules are configurable for regulatory compliance. | |
|
Retention & Deletion Policies Automates retention and deletion per regulatory timelines. |
Mashery can automate retention and deletion schedules for regulatory requirements. | |
|
Automated Compliance Reporting Generates reports to demonstrate compliance. |
Automated compliance reporting tools for management and regulatory needs. |
User and Access Management
(5 Yes /5 Known /9 Possible features)
|
Role-Based Access Control (RBAC) Granular user permissions based on assigned roles. |
RBAC is a standard part of Mashery's user and access management suite. | |
|
Single Sign-On (SSO) Integration with enterprise authentication solutions. |
Mashery supports SSO integration with enterprise providers (OAuth, SAML). | |
|
Multi-Factor Authentication (MFA) Enforces strong two-factor user verification. |
Mashery supports forced/enabled MFA for admin and partner users. | |
|
User Provisioning Automation Automated creation, update, and deactivation of user accounts. |
No information available | |
|
Delegated Administration Allows specific user groups to manage access. |
No information available | |
|
Session Management Controls and monitors user session durations and activity. |
User session management (timeout, monitoring, revocation) is well documented. | |
|
Access Review and Recertification Periodic verification of user access rights. |
No information available | |
|
External User Federation Allows federated login for third-party or partner users. |
Mashery supports federated identity for partners/third parties. | |
|
Entitlement Management Assign and manage granular entitlements to users. |
No information available |
Operational and Maintenance Features
(7 Yes /7 Known /8 Possible features)
|
Zero-Downtime Upgrades Ability to patch or upgrade system components without impacting users. |
Mashery deployment and upgrade guide details zero-downtime upgrades. | |
|
Automated Backups Schedules and manages regular backups. |
Backups are scheduled/configured in platform ops documentation. | |
|
Disaster Recovery Support Failover and restore processes for high system resilience. |
Mashery has disaster recovery and failover documented for regulated deployment. | |
|
Rollback Capabilities Quick reversion to previous system states after failed changes. |
Rollback to previous configuration/states is supported for ops management. | |
|
Remote Management API API for managing infrastructure remotely. |
Remote API/CLI management interface is available for platform operations. | |
|
Automated Configuration Management Tools for managing configuration drifts and automating changes. |
Configuration management tools/scripts are provided in TIBCO platform utilities. | |
|
Self-Healing Mechanisms Automated corrective actions for detected failures. |
No information available | |
|
Maintenance Window Scheduling Automated notifications and controls for system maintenance. |
Mashery supports scheduled/planned maintenance notifications. |
Cost Management and Optimization
(6 Yes /6 Known /8 Possible features)
|
Usage-Based Billing Support Cost tracking for internal/external API use, supporting chargebacks. |
Mashery provides monetization, quota, and chargeback models for usage-based billing. | |
|
Quota Management Enables the enforcement of usage quotas for users/applications. |
Quota management is provided for traffic, accounts, and endpoints. | |
|
Cost Analytics and Forecasting Provides insights and trends in API-related expenses. |
Mashery analytics suite provides cost insights and forecasting. | |
|
Budget Alerting Sends notifications if API usage approaches or exceeds budget. |
No information available | |
|
Resource Optimization Recommendations Suggests ways to optimize API and infrastructure usage. |
Mashery recommends ongoing optimization based on usage analytics and machine learning. | |
|
Granular Cost Allocation Assigns costs to departments, projects, or teams. |
Cost allocation at department/project/team levels is possible via advanced reporting. | |
|
License Management Tracks feature/component licensing and compliance with agreements. |
No information available | |
|
Pay-as-you-go Support Ability to implement flexible pricing models based on real usage. |
Mashery’s pay-as-you-go billing model is part of its API monetization and platform options. |
API Management Platforms for IT and Infrastructure
Software for creating, publishing, maintaining, and monitoring APIs that connect different systems within the brokerage and with external partners and clients.
More API Management Platforms
More IT and Infrastructure ...
Sorry, no analysis is avaiable for API Management Platforms
This data was generated by an AI system. Please check
with the supplier. While you are talking to them, remind them that they need
to update their entry.