at Financial Technnology Year
Please contact them if you have any questions.
Amazon API Gateway from AWS (Amazon Web Services)
A fully managed service that makes it easy to create, publish, maintain, monitor, and secure APIs at any scale. Supports RESTful APIs and WebSocket APIs with features for throttling, monitoring, and authorization.
More about AWS (Amazon Web Services)
Product analysis by function
API Management Platforms for IT and Infrastructure
Software for creating, publishing, maintaining, and monitoring APIs that connect different systems within the brokerage and with external partners and clients.
More API Management Platforms
More IT and Infrastructure ...
API Design and Creation
(9 Yes /12 Known /12 Possible features)
|
Graphical API Designer Visual tools for designing APIs using drag-and-drop or similar graphical interfaces. |
Not as far as we are aware.* Amazon API Gateway provides an API designer, but it is primarily form-based, not a graphical drag-and-drop tool. | |
|
OpenAPI/Swagger Support Ability to design and import/export API specifications using OpenAPI (Swagger) standards. |
Amazon API Gateway supports OpenAPI/Swagger import and export; this is well documented. | |
|
Version Control for APIs Management of multiple API versions with rollbacks and comparisons. |
Not as far as we are aware.* API Gateway does not provide native version control (like rollbacks and comparisons however it supports deploying multiple stages/versions). | |
|
Mock Server Generation Automatically generates mock endpoints for testing and development. |
It offers mock integrations/endpoints, enabling developers to create mock responses for testing. | |
|
Code Generation Automatically generates server and client code in various programming languages. |
API Gateway can automatically generate client SDKs in various languages. | |
|
API Modeling (Data Types, Schemas) Defines and manages reusable data models and schemas. |
It allows users to define models and validation, managing reusable schemas. | |
|
SDK Generation Provides software development kits (SDKs) for multiple languages based on the API definition. |
Amazon API Gateway generates SDKs (JavaScript, Java, etc.) for APIs. | |
|
Sample Data Injection Ability to inject sample data for demonstration and testing purposes. |
Sample data injection/mocks available through test and mock integrations. | |
|
Dynamic Documentation Generates interactive and up-to-date documentation from the API definition. |
It generates interactive docs using Swagger/OpenAPI (integrates with API Gateway console). | |
|
REST & SOAP Support Enables design and management of both RESTful and SOAP APIs for legacy integration. |
Supports RESTful as well as WebSocket APIs; SOAP supported via AWS Lambda integration. | |
|
GraphQL API Creation Provides tooling for designing and exposing GraphQL-based APIs. |
Not as far as we are aware.* No native tooling for GraphQL API creation. | |
|
Schema Validation Offers schema validation at design-time to prevent errors in API structures. |
Models and JSON schema validation supported for request & response. |
API Publishing and Deployment
(8 Yes /11 Known /11 Possible features)
|
One-Click Deployment Simple and fast deployment process for making APIs live. |
APIs can be deployed with a single action in the AWS Console or via CLI. | |
|
Multi-Environment Support Supports publishing APIs across multiple environments (Dev, Test, Prod). |
Multiple environments (stages) such as dev, test, and prod are natively supported. | |
|
Environment Isolation Ensures API deployments are isolated across environments. |
Stages/environments are fully isolated in API Gateway. | |
|
Zero-Downtime Deployment Enables publishing API updates with no service interruption. |
Not as far as we are aware.* Zero-downtime not natively guaranteed; deployment can briefly impact endpoints depending on configuration. | |
|
Canary Releases Supports incremental release strategies for APIs (e.g., canary testing). |
Not as far as we are aware.* No direct canary release functionality, though Lambda integrations can use traffic shifting. | |
|
Automated Rollback Automated rollback procedures in case of deployment failures. |
Not as far as we are aware.* No explicit automated rollback capability in core platform. | |
|
API Gateway Integration Seamless integration with industry-standard API gateways (e.g., Apigee, Kong). |
Integrates with AWS API Gateway, which is a standard API gateway. | |
|
Cloud and On-Premise Deployment Supports both cloud-native and on-premise API deployment options. |
Supports cloud deployment natively; on-premise possible via AWS Outposts but not core. | |
|
Custom Domain Support Allows publishing APIs on custom domains with SSL. |
Supports custom domains and SSL for APIs. | |
|
Multi-Region Support Ability to publish APIs across multiple geographic regions for latency optimization. |
Multi-region deployment available via AWS regional endpoints. | |
|
Auto-Scaling Automatic scaling of API instances based on demand. |
Auto-scaling handled natively as a managed AWS service. |
API Security and Authentication
(12 Yes /12 Known /12 Possible features)
|
OAuth 2.0 Support Implements OAuth 2.0 protocol for secure delegated access. |
OAuth 2.0 is supported via AWS Cognito and custom authorizers. | |
|
API Key Management Control generation, rotation, and lifecycle of API keys. |
API key management is built in for API Gateway. | |
|
Mutual TLS (mTLS) Enforces two-way SSL/TLS authentication between client and server. |
Mutual TLS (mTLS) supported in API Gateway. | |
|
IP Whitelisting/Blacklisting Restricts API access based on source IP address. |
IP whitelisting/blacklisting supported via resource policy. | |
|
Rate Limiting Prevents API abuse through rate limiting and throttling. |
Rate limiting and throttling configurable for each API/key. | |
|
Quota Management Sets call quotas per client or partner for fair usage. |
Quota management is available per API key/client. | |
|
Single Sign-On (SSO) Supports integration with corporate SSO for authentication. |
Supports SSO via Cognito and integration with IdPs. | |
|
JWT (JSON Web Token) Support Supports authentication with JSON Web Tokens. |
Custom authorizers support JWT; Amazon Cognito works for JWT as well. | |
|
Encryption of Data in Transit Ensures all data sent via API is encrypted in transit. |
Data in transit is encrypted via HTTPS (TLS). | |
|
RBAC (Role-Based Access Control) Enforces granular access controls based on user/role. |
Supports IAM, Cognito, and Lambda authorizers for RBAC. | |
|
Audit Logging Records security-relevant API access and changes for audits. |
CloudWatch provides audit logging for AWS API Gateway. | |
|
Integration with Security Appliances Connects API traffic with firewalls, SIEM, and DLP solutions. |
API Gateway integrates with AWS WAF, and can log traffic to SIEM tools via CloudWatch. |
Monitoring and Analytics
(8 Yes /10 Known /12 Possible features)
|
Real-Time Monitoring Live tracking of API usage, latency, and errors. |
Real-time metrics/monitoring through AWS CloudWatch. | |
|
Alerting and Notifications Automated alerts for outages, anomalies, or limit breaches. |
CloudWatch alarms can send notifications for outages, anomalies, etc. | |
|
Detailed Logging Comprehensive logs for every API call, event, and error. |
Detailed logging is available via AWS CloudWatch Logs. | |
|
Performance Dashboards Dashboards with key metrics and trends (latency, throughput, error rate). |
Performance dashboards can be set up with CloudWatch metrics. | |
|
Custom Metrics Ability to define and track custom business or technical metrics. |
Custom metrics can be defined and tracked using CloudWatch. | |
|
Integration with Monitoring Tools Compatibility with Prometheus, Datadog, New Relic, etc. |
CloudWatch integrates with external monitoring tools, e.g., Datadog, New Relic. | |
|
End-to-End Tracing Distributed tracing of API calls across microservices. |
End-to-end tracing supported via AWS X-Ray integration. | |
|
User and Partner Analytics Insights into which clients and partners are using which APIs and how. |
Not as far as we are aware.* User/partner analytics not built into API Gateway natively. | |
|
Geo-Analytics Breakdown of API usage by geographic region. |
Not as far as we are aware.* Geo-analytics not natively provided (possible via custom logs/CloudWatch analysis). | |
|
Error Analytics Breakdown and root cause analysis of API errors and failures. |
Error analytics available via CloudWatch logs and metrics. | |
|
API Call Latency Measures the average time taken per API call. |
No information available | |
|
Uptime SLA Measurement Calculates actual API uptime to ensure SLAs are met. |
No information available |
Developer Portal and Experience
(5 Yes /5 Known /10 Possible features)
|
Self-Service API Registration Developers can sign up and request access to APIs without manual onboarding. |
No information available | |
|
Interactive API Explorer Allows users to test API endpoints with live requests directly in the web portal. |
No information available | |
|
Auto-Generated Documentation Always up-to-date API docs generated from the source specification. |
Auto-generated documentation (OpenAPI) is available through API Gateway console. | |
|
Code Snippets and Examples Ready-to-use sample code in multiple languages. |
API Gateway provides code snippets/sample SDKs for integration. | |
|
API Onboarding Workflows Guides developers or partners through API setup and provisioning. |
No information available | |
|
API Status Pages Communicates live status and known issues for APIs. |
API status can be monitored through AWS Console and health dashboards. | |
|
Support Integration (Chat, Tickets) Easy access to developer support and ticketing from the portal. |
No information available | |
|
Rate Limit and Quota Visibility Clear display of current usage, limits, and quota resets. |
Rate limit and quota visibility is provided in AWS Console per API key. | |
|
API Key Management by Developers Developers can create and manage their own API keys. |
Developers can create and manage API keys via AWS Portal/API. | |
|
Community Forums/FAQs Facilitates collaboration via forums or Q&A for developers. |
No information available |
Integration and Connectivity
(5 Yes /5 Known /10 Possible features)
|
Connector Marketplace Library of pre-built connectors/integrations to common brokerage platforms. |
No information available | |
|
Webhooks Support Supports real-time outbound notifications to third-party services. |
Webhooks can be created via HTTP integrations. | |
|
Event-Driven Architecture Support for asynchronous, event-based workflows (e.g., message queues). |
No information available | |
|
Custom Plugin/Extension Framework Enables custom extensions and hooks for bespoke integration needs. |
No information available | |
|
Data Mapping and Transformation On-the-fly mapping and transformation between data formats (JSON, XML, FIX, CSV, etc.). |
Mapping templates and data transformation features supported. | |
|
Batch Processing Support API platform supports high-volume batch file processing. |
API Gateway supports batch request processing and binary data. | |
|
Synchronous and Asynchronous Messaging Supports both real-time and batch/messaging integrations. |
Supports both synchronous REST APIs and asynchronous WebSocket APIs. | |
|
Legacy System Integration Support for mainframes or legacy middleware (e.g., MQ, FTP). |
Legacy system integration possible via Lambda/pass-through/proxy integration. | |
|
GraphQL/FIX/Protobuf Adapter Support Adapters for financial industry protocols and formats. |
No information available | |
|
API Chaining/Orchestration Capability to coordinate multiple API calls as part of a workflow. |
No information available |
Scalability and Performance
(7 Yes /7 Known /10 Possible features)
|
Horizontal Scaling Ability to add more nodes to handle increased API loads. |
Managed service scales horizontally with workload. | |
|
Vertical Scaling Directly increases resources (CPU, RAM) per node for greater throughput. |
AWS increases per-node resources as needed; vertical scaling is abstracted. | |
|
Concurrent Connection Support Maximum number of simultaneous connections supported. |
No information available | |
|
API Throughput Maximum number of API calls handled per second. |
No information available | |
|
Low Latency HTTP Routing Optimized networking for fast API responses. |
Fast HTTP routing with AWS infrastructure. | |
|
Caching Layer Support Integrated support for in-memory or distributed caching. |
Caching available through API Gateway with configurable cache sizes. | |
|
Rate Throttling Capabilities Dynamic control over API call rates to prevent overload. |
Dynamic throttling via console/API or usage plans is supported. | |
|
Load Balancer Integration Native integration with software/hardware load balancers. |
Integrated with Elastic Load Balancers via AWS infrastructure. | |
|
Streaming API Support Support for high-frequency data over persistent connections (e.g., WebSockets, SSE). |
WebSocket API support provides streaming/persistent connection APIs. | |
|
API Response Time Guarantee Guaranteed maximum latency for API requests. |
No information available |
Compliance and Governance
(4 Yes /4 Known /10 Possible features)
|
Regulatory Compliance Templates Built-in templates for major financial regulations (MiFID II, SEC, GDPR, etc.). |
No information available | |
|
Data Retention Policies Configurable data storage and deletion schedules. |
Lifecycle and retention policies can be configured via AWS services. | |
|
Audit Trail Immutable, searchable logs of all API changes and access. |
Audit trail/logging available via CloudWatch and AWS CloudTrail. | |
|
Policy Enforcement Engine Automated enforcement of business and IT policies. |
No information available | |
|
Consent Management Captures and manages client data consent as per regulations. |
No information available | |
|
PII Data Masking On-the-fly obfuscation of personally identifiable information in API responses. |
No information available | |
|
Vulnerability Scanning Automated security scans for the API surface. |
Vulnerability scanning for APIs can be integrated (e.g. AWS Inspector, 3rd party). | |
|
Change Approval Workflows Enforced approval flow for significant API config changes. |
No information available | |
|
Exportable Compliance Reports Auto-generated compliance reports for internal/external audits. |
Compliance and export reports can be generated via CloudTrail AWS Config. | |
|
Contract and SLA Management Track and manage legal obligations and performance guarantees. |
No information available |
Maintenance and Lifecycle Management
(9 Yes /9 Known /10 Possible features)
|
API Deprecation Workflow Automates notifying users and retiring outdated APIs. |
APIs can be deprecated and retired with notifications to subscribers. | |
|
Backward Compatibility Checks Checks API changes for breaking compatibility. |
Changes are validated for backward compatibility using OpenAPI syntax and test deployments. | |
|
Automated API Testing Built-in test suites for continuous integration and delivery. |
Integration with third-party and custom test suites is possible and AWS has test tools for integration. | |
|
Sandbox Environment Isolated environment for safe API experimentation. |
Supports creation and use of sandbox/test stages for APIs. | |
|
Release Management Coordinates and documents API version rollouts. |
AWS Console and CLI support versioning and staged rollout. | |
|
Incident Management Integration Links with incident response tools for outage resolution. |
Incident alerts and integration possible via AWS CloudWatch and third-party tools. | |
|
Change Notification System Automated or manual notifications for API updates to users. |
Change notifications can be sent via SNS, email, or manual notifications. | |
|
Rollback Support Easily revert to previous API versions. |
Rollback can be achieved by redeploying previous stage versions. | |
|
Automated Health Checks Continuous monitoring and health status reporting for APIs. |
Continuous health checks and monitoring via AWS Console. | |
|
Custom Lifecycle Stages Define bespoke API lifecycle stages to suit organization needs. |
No information available |
Extensibility and Customization
(0 Yes /0 Known /10 Possible features)
|
Plugin Architecture Ability to add third-party or custom-developed plugins. |
No information available | |
|
Custom Scripting Support Allows scripting or business logic within API flows (e.g., JavaScript, Python). |
No information available | |
|
UI Theme Customization Ability to change developer portal look and feel. |
No information available | |
|
Branding Options Custom logos, colors, and company info in developer portals. |
No information available | |
|
API Workflow Designer Built-in drag-and-drop for API workflows and transformations. |
No information available | |
|
Custom Policy Definition Define bespoke security and access policies. |
No information available | |
|
Configurable Messaging Templates Edit email and notification templates sent from the platform. |
No information available | |
|
Extensible Data Model Customize data model for additional business attributes. |
No information available | |
|
Custom Auth Provider Integration Plug in identity providers not natively supported. |
No information available | |
|
White-Labeling Support Deploy platform as an OEM/private-label solution. |
No information available |
Support, Documentation, and Training
(9 Yes /9 Known /10 Possible features)
|
24x7 Support Availability Round-the-clock technical support coverage. |
AWS provides 24x7 support for enterprise support plans for API Gateway. | |
|
Knowledge Base & FAQs Comprehensive, searchable help and how-to articles. |
Extensive knowledge base and documentation available online. | |
|
Video Tutorials Official video walkthroughs of common integration tasks. |
AWS provides video tutorials and webinars on API Gateway. | |
|
API Usage Best Practices Documentation Guidelines and recommendations for efficient, secure API usage. |
AWS documentation provides best practices for API Gateway implementation. | |
|
Code Example Libraries Curated code samples for various use cases and languages. |
Code examples and libraries are available via AWS docs and GitHub. | |
|
Multi-Language Support Documentation and support available in multiple languages. |
AWS documentation supports multiple languages through localizations. | |
|
Onboarding Workshops Instructor-led or virtual onboarding sessions for developers. |
AWS offers onboarding workshops and training for API Gateway. | |
|
Dedicated Customer Success Manager Assigned contact to help with setup, scaling, and troubleshooting. |
Dedicated AWS TAM/customer success manager is available for enterprise customers. | |
|
Community Channel Access (Slack, Discord, etc.) Official real-time forums for peer and expert support. |
AWS hosts real-time community slack channels and developer forums. | |
|
SLA on Support Response Guaranteed response within a defined time window. |
No information available |
This data was generated by an AI system. Please check
with the supplier. More here
While you are talking to them, please let them know that they need to update their entry.