at Financial Technnology Year
Please contact them if you have any questions.
Oracle API Management from Oracle Financial Services
API design, implementation, security, governance, and analysis capabilities. Includes financial services-specific features like strong authentication protocols, detailed audit logging, PCI-DSS compliance features, and integration with Oracle's financial service applications.
More about Oracle Financial Services
Product analysis by function
API Management Platforms for IT and Infrastructure
Software for creating, publishing, maintaining, and monitoring APIs that connect different systems within the brokerage and with external partners and clients.
More API Management Platforms
More IT and Infrastructure ...
API Design and Creation
(12 Yes /12 Known /12 Possible features)
|
Graphical API Designer Visual tools for designing APIs using drag-and-drop or similar graphical interfaces. |
Oracle API Management provides a graphical API designer via its web UI (API Designer), supporting drag-and-drop interfaces. | |
|
OpenAPI/Swagger Support Ability to design and import/export API specifications using OpenAPI (Swagger) standards. |
Oracle API Platform supports OpenAPI/Swagger import/export according to documentation. | |
|
Version Control for APIs Management of multiple API versions with rollbacks and comparisons. |
Platform includes API version management, rollbacks and comparisons as part of governance. | |
|
Mock Server Generation Automatically generates mock endpoints for testing and development. |
Oracle provides mock endpoints for testing purposes as part of the development workflow. | |
|
Code Generation Automatically generates server and client code in various programming languages. |
Automatic server/client code generation from API definition is supported. | |
|
API Modeling (Data Types, Schemas) Defines and manages reusable data models and schemas. |
API modeling with reusable schemas and data types is available in the API Designer. | |
|
SDK Generation Provides software development kits (SDKs) for multiple languages based on the API definition. |
SDK generation is supported for multiple programming languages via developer portal. | |
|
Sample Data Injection Ability to inject sample data for demonstration and testing purposes. |
Sample data injection for testing and demonstration is included in Oracle API design workflow. | |
|
Dynamic Documentation Generates interactive and up-to-date documentation from the API definition. |
Dynamic, interactive documentation generated for APIs using the OpenAPI spec. | |
|
REST & SOAP Support Enables design and management of both RESTful and SOAP APIs for legacy integration. |
Supports both REST and SOAP for legacy integration use cases. | |
|
GraphQL API Creation Provides tooling for designing and exposing GraphQL-based APIs. |
GraphQL API support is available via adapters and additional tooling. | |
|
Schema Validation Offers schema validation at design-time to prevent errors in API structures. |
Schema validation at design-time is supported through the developer console. |
API Publishing and Deployment
(11 Yes /11 Known /11 Possible features)
|
One-Click Deployment Simple and fast deployment process for making APIs live. |
Supports one-click deployment to Oracle Cloud or hybrid environments. | |
|
Multi-Environment Support Supports publishing APIs across multiple environments (Dev, Test, Prod). |
Multiple environments such as Dev, Test, and Prod are supported. | |
|
Environment Isolation Ensures API deployments are isolated across environments. |
Environment isolation is a standard practice in Oracle's deployment architecture. | |
|
Zero-Downtime Deployment Enables publishing API updates with no service interruption. |
Zero-downtime deployment capabilities are supported using blue/green deployment mechanisms in Oracle Cloud. | |
|
Canary Releases Supports incremental release strategies for APIs (e.g., canary testing). |
Canary releases are enabled via native Oracle Cloud DevOps and API management integrations. | |
|
Automated Rollback Automated rollback procedures in case of deployment failures. |
Automated rollback procedures are supported for deployment failures. | |
|
API Gateway Integration Seamless integration with industry-standard API gateways (e.g., Apigee, Kong). |
Integrates with Oracle API Gateway and supports industry-standard gateways like Apigee and Kong. | |
|
Cloud and On-Premise Deployment Supports both cloud-native and on-premise API deployment options. |
Supports cloud-native as well as on-premise deployment. | |
|
Custom Domain Support Allows publishing APIs on custom domains with SSL. |
API custom domains and managed certificates (SSL) are supported. | |
|
Multi-Region Support Ability to publish APIs across multiple geographic regions for latency optimization. |
APIs can be deployed in multi-region Oracle Cloud infrastructure for latency optimization. | |
|
Auto-Scaling Automatic scaling of API instances based on demand. |
Supports auto-scaling using Oracle Cloud's elasticity features. |
API Security and Authentication
(12 Yes /12 Known /12 Possible features)
|
OAuth 2.0 Support Implements OAuth 2.0 protocol for secure delegated access. |
OAuth 2.0 is natively supported for secure access delegation. | |
|
API Key Management Control generation, rotation, and lifecycle of API keys. |
API key management is available within the platform and exposed to developers. | |
|
Mutual TLS (mTLS) Enforces two-way SSL/TLS authentication between client and server. |
Mutual TLS supported for two-way authentication, a standard in regulated industries. | |
|
IP Whitelisting/Blacklisting Restricts API access based on source IP address. |
IP whitelisting and blacklisting are standard security features. | |
|
Rate Limiting Prevents API abuse through rate limiting and throttling. |
Sophisticated rate limiting and anti-abuse mechanisms are included. | |
|
Quota Management Sets call quotas per client or partner for fair usage. |
Quota management for API usage is available. | |
|
Single Sign-On (SSO) Supports integration with corporate SSO for authentication. |
SSO integration via SAML, OpenID Connect is supported for enterprise use. | |
|
JWT (JSON Web Token) Support Supports authentication with JSON Web Tokens. |
JWT authentication is offered. | |
|
Encryption of Data in Transit Ensures all data sent via API is encrypted in transit. |
All API data is encrypted in transit with TLS/SSL; platform is regularly audited for PCI-DSS compliance. | |
|
RBAC (Role-Based Access Control) Enforces granular access controls based on user/role. |
Role-Based Access Control is available for granular access configuration. | |
|
Audit Logging Records security-relevant API access and changes for audits. |
Detailed, security-relevant audit logs provided and are suitable for compliance/audit requirements. | |
|
Integration with Security Appliances Connects API traffic with firewalls, SIEM, and DLP solutions. |
Can integrate with security appliances for advanced security operations. |
Monitoring and Analytics
(10 Yes /10 Known /12 Possible features)
|
Real-Time Monitoring Live tracking of API usage, latency, and errors. |
Real-time monitoring of API usage, latency, and errors is native via Oracle's analytics tools. | |
|
Alerting and Notifications Automated alerts for outages, anomalies, or limit breaches. |
Alerting/notifications for outages and anomalies is built in. | |
|
Detailed Logging Comprehensive logs for every API call, event, and error. |
Comprehensive logging for all API traffic is a standard feature. | |
|
Performance Dashboards Dashboards with key metrics and trends (latency, throughput, error rate). |
Performance dashboards are available within the Oracle API Management dashboard. | |
|
Custom Metrics Ability to define and track custom business or technical metrics. |
Custom business and technical metrics can be tracked via integrated analytics. | |
|
Integration with Monitoring Tools Compatibility with Prometheus, Datadog, New Relic, etc. |
Compatible with observability and monitoring solutions (Prometheus, Datadog, etc.). | |
|
End-to-End Tracing Distributed tracing of API calls across microservices. |
End-to-end and distributed tracing are supported. | |
|
User and Partner Analytics Insights into which clients and partners are using which APIs and how. |
Provides analytics by user and partner for all API activity. | |
|
Geo-Analytics Breakdown of API usage by geographic region. |
Geo-analytics and regional breakdowns available within analytics console. | |
|
Error Analytics Breakdown and root cause analysis of API errors and failures. |
Error analytics including breakdown and root cause are included. | |
|
API Call Latency Measures the average time taken per API call. |
No information available | |
|
Uptime SLA Measurement Calculates actual API uptime to ensure SLAs are met. |
No information available |
Developer Portal and Experience
(9 Yes /9 Known /10 Possible features)
|
Self-Service API Registration Developers can sign up and request access to APIs without manual onboarding. |
Self-service API registration is available in the developer portal. | |
|
Interactive API Explorer Allows users to test API endpoints with live requests directly in the web portal. |
Interactive API explorer allows live testing of endpoints. | |
|
Auto-Generated Documentation Always up-to-date API docs generated from the source specification. |
All documentation is auto-generated and synced with API definitions. | |
|
Code Snippets and Examples Ready-to-use sample code in multiple languages. |
Sample code snippets are available in multiple languages. | |
|
API Onboarding Workflows Guides developers or partners through API setup and provisioning. |
Onboarding workflows included for APIs in the developer portal. | |
|
API Status Pages Communicates live status and known issues for APIs. |
API status pages communicate live issues and status. | |
|
Support Integration (Chat, Tickets) Easy access to developer support and ticketing from the portal. |
No information available | |
|
Rate Limit and Quota Visibility Clear display of current usage, limits, and quota resets. |
Developers can see current usage, limits, and quotas. | |
|
API Key Management by Developers Developers can create and manage their own API keys. |
Developers permitted to create and manage their own API keys. | |
|
Community Forums/FAQs Facilitates collaboration via forums or Q&A for developers. |
Community forums and FAQs are integrated in the developer portal. |
Integration and Connectivity
(9 Yes /9 Known /10 Possible features)
|
Connector Marketplace Library of pre-built connectors/integrations to common brokerage platforms. |
No information available | |
|
Webhooks Support Supports real-time outbound notifications to third-party services. |
Webhooks for outbound notifications/events are supported. | |
|
Event-Driven Architecture Support for asynchronous, event-based workflows (e.g., message queues). |
Event-driven workflows supported (Oracle Event Hub, message queues, etc.). | |
|
Custom Plugin/Extension Framework Enables custom extensions and hooks for bespoke integration needs. |
Custom plugin/extension hooks available. | |
|
Data Mapping and Transformation On-the-fly mapping and transformation between data formats (JSON, XML, FIX, CSV, etc.). |
Supports data mapping/transformation between multiple formats (JSON, XML, FIX) natively. | |
|
Batch Processing Support API platform supports high-volume batch file processing. |
Batch processing supported for large-scale import/export APIs. | |
|
Synchronous and Asynchronous Messaging Supports both real-time and batch/messaging integrations. |
Both synchronous and asynchronous (messaging) integrations are supported. | |
|
Legacy System Integration Support for mainframes or legacy middleware (e.g., MQ, FTP). |
Integration with legacy systems (FTP, MQ, mainframe) is supported, especially for financial use cases. | |
|
GraphQL/FIX/Protobuf Adapter Support Adapters for financial industry protocols and formats. |
FIX, Protobuf, and GraphQL adapters are available or supported via plugins. | |
|
API Chaining/Orchestration Capability to coordinate multiple API calls as part of a workflow. |
API chaining/orchestration is available to coordinate workflows. |
Scalability and Performance
(7 Yes /7 Known /10 Possible features)
|
Horizontal Scaling Ability to add more nodes to handle increased API loads. |
Horizontal scaling via Oracle Cloud's scalable compute infrastructure. | |
|
Vertical Scaling Directly increases resources (CPU, RAM) per node for greater throughput. |
Vertical scaling by increasing resources for compute nodes is supported. | |
|
Concurrent Connection Support Maximum number of simultaneous connections supported. |
No information available | |
|
API Throughput Maximum number of API calls handled per second. |
No information available | |
|
Low Latency HTTP Routing Optimized networking for fast API responses. |
Low-latency optimized HTTP routing through Oracle's cloud network. | |
|
Caching Layer Support Integrated support for in-memory or distributed caching. |
Supports in-memory and distributed caching using Oracle technologies. | |
|
Rate Throttling Capabilities Dynamic control over API call rates to prevent overload. |
Dynamic rate throttling available as part of gateway and API management policies. | |
|
Load Balancer Integration Native integration with software/hardware load balancers. |
Native integration with industry load balancers and Oracle's own load balancing services. | |
|
Streaming API Support Support for high-frequency data over persistent connections (e.g., WebSockets, SSE). |
Streaming API (WebSockets, SSE, etc.) is supported for high-throughput scenarios. | |
|
API Response Time Guarantee Guaranteed maximum latency for API requests. |
No information available |
Compliance and Governance
(10 Yes /10 Known /10 Possible features)
|
Regulatory Compliance Templates Built-in templates for major financial regulations (MiFID II, SEC, GDPR, etc.). |
Includes templates for financial compliance: PCI-DSS, MiFID, GDPR, and SEC. Cited in product collateral and Oracle financial documentation. | |
|
Data Retention Policies Configurable data storage and deletion schedules. |
Data retention policies are configurable at the API/data store level. | |
|
Audit Trail Immutable, searchable logs of all API changes and access. |
Full, immutable audit trail is maintained to support regulatory compliance. | |
|
Policy Enforcement Engine Automated enforcement of business and IT policies. |
Policy enforcement engine is built-in for governance. | |
|
Consent Management Captures and manages client data consent as per regulations. |
Consent management included for compliance with GDPR and similar regulations. | |
|
PII Data Masking On-the-fly obfuscation of personally identifiable information in API responses. |
PII data masking and sensitive data redaction available in API gateway policy configuration. | |
|
Vulnerability Scanning Automated security scans for the API surface. |
Automated vulnerability scanning is integrated for API security validation. | |
|
Change Approval Workflows Enforced approval flow for significant API config changes. |
Change approval workflows enforced for critical configuration changes. | |
|
Exportable Compliance Reports Auto-generated compliance reports for internal/external audits. |
Exportable compliance and audit reports are available. | |
|
Contract and SLA Management Track and manage legal obligations and performance guarantees. |
SLA and contract management module for tracking legal and regulatory obligations. |
Maintenance and Lifecycle Management
(10 Yes /10 Known /10 Possible features)
|
API Deprecation Workflow Automates notifying users and retiring outdated APIs. |
Automated API deprecation notifications are available via the developer portal. | |
|
Backward Compatibility Checks Checks API changes for breaking compatibility. |
Backward compatibility checks are part of the deployment pipeline. | |
|
Automated API Testing Built-in test suites for continuous integration and delivery. |
Automated API testing and CI/CD integration is standard. | |
|
Sandbox Environment Isolated environment for safe API experimentation. |
API sandbox environments provided for safe testing and experimentation. | |
|
Release Management Coordinates and documents API version rollouts. |
Release management tools provided for coordinated deployment/versioning. | |
|
Incident Management Integration Links with incident response tools for outage resolution. |
Integration with Oracle's incident management is available for wider outage/incident resolution. | |
|
Change Notification System Automated or manual notifications for API updates to users. |
Change notification system sends automatic and manual push notifications for API updates. | |
|
Rollback Support Easily revert to previous API versions. |
Rollback support for APIs to revert to previous versions. | |
|
Automated Health Checks Continuous monitoring and health status reporting for APIs. |
Automated health checks/monitoring for all managed APIs. | |
|
Custom Lifecycle Stages Define bespoke API lifecycle stages to suit organization needs. |
API lifecycle stages configurable to match enterprise workflow. |
Extensibility and Customization
(7 Yes /7 Known /10 Possible features)
|
Plugin Architecture Ability to add third-party or custom-developed plugins. |
Plugin architecture for custom and third-party extensions. | |
|
Custom Scripting Support Allows scripting or business logic within API flows (e.g., JavaScript, Python). |
Supports custom scripts (JavaScript, Python) in API flows. | |
|
UI Theme Customization Ability to change developer portal look and feel. |
UI/portal theming is customizable for branding. | |
|
Branding Options Custom logos, colors, and company info in developer portals. |
Branding options for developer portals are configurable. | |
|
API Workflow Designer Built-in drag-and-drop for API workflows and transformations. |
No information available | |
|
Custom Policy Definition Define bespoke security and access policies. |
Custom policy definitions (security, access) are supported at the platform level. | |
|
Configurable Messaging Templates Edit email and notification templates sent from the platform. |
No information available | |
|
Extensible Data Model Customize data model for additional business attributes. |
No information available | |
|
Custom Auth Provider Integration Plug in identity providers not natively supported. |
Custom authentication provider integration for enterprise SSO/IDP. | |
|
White-Labeling Support Deploy platform as an OEM/private-label solution. |
White-label/OEM support is available to deploy under third-party branding. |
Support, Documentation, and Training
(8 Yes /8 Known /10 Possible features)
|
24x7 Support Availability Round-the-clock technical support coverage. |
24x7 support offered for all Oracle Cloud or enterprise contracts. | |
|
Knowledge Base & FAQs Comprehensive, searchable help and how-to articles. |
Extensive knowledge base and searchable FAQ for Oracle API Management. | |
|
Video Tutorials Official video walkthroughs of common integration tasks. |
Official video tutorials provided for onboarding and integration. | |
|
API Usage Best Practices Documentation Guidelines and recommendations for efficient, secure API usage. |
Documentation contains best practices for APIs—available through official guides. | |
|
Code Example Libraries Curated code samples for various use cases and languages. |
Code example libraries available for developers in multiple languages. | |
|
Multi-Language Support Documentation and support available in multiple languages. |
No information available | |
|
Onboarding Workshops Instructor-led or virtual onboarding sessions for developers. |
Oracle offers onboarding workshops (virtual, live) for customers. | |
|
Dedicated Customer Success Manager Assigned contact to help with setup, scaling, and troubleshooting. |
Dedicated customer success managers available at enterprise subscription levels. | |
|
Community Channel Access (Slack, Discord, etc.) Official real-time forums for peer and expert support. |
Official support channels include Slack, forums, and other real-time collaboration. | |
|
SLA on Support Response Guaranteed response within a defined time window. |
No information available |
This data was generated by an AI system. Please check
with the supplier. More here
While you are talking to them, please let them know that they need to update their entry.