China Mobile
Paraview enhanced the overall security of API interfaces for China Mobile, addressing security threats in the containerized environment and ensuring the secure system operation.
Overview
Industry
Telecommunication
Business Nature
Telecommunication
Company Size
No. 62 on the Fortune Global 500(2023)
Services Required
API
The Problem
- Insufficient API Security Capabilities: The platform lacks robust mechanisms for attack detection, prevention, trusted access control, sensitive information identification, and security auditing, leaving API interfaces vulnerable to security threats.
- Security Threats in the Containerized Environment: As business systems migrate to the containerized cloud environment, the risk of security vulnerabilities increases, and the current security measures are insufficient to protect the platform.
- Inadequate Configuration Auditing for the Operating Environment: The existing security configuration checks for the operating environment are not comprehensive, failing to meet national and industry standards for platform security.
Our Solution
Building an API Security Gateway:
- Paraview implemented enhanced security capabilities, including attack detection, prevention, trusted access control, sensitive information identification, and security auditing, to significantly improve the API security of the client's PaaS platform.
- By strengthening the API gateway within the cluster, Paraview ensured the secure operation of business systems in the containerized environment, effectively addressing container-related security threats.
Integrated Security Protection Architecture:
- Paraview created an automated solution for API security monitoring, protection, and analysis. This solution detects and analyzes traffic risks in real time, generating security policies that are delivered to the API security gateway for prompt threat interception.
- Risk data is uploaded to the SIEM platform in real-time, establishing a closed-loop monitoring system that ensures comprehensive API interface protection.
Bypass Traffic Monitoring and High-Availability Deployment:
- By implementing bypass traffic monitoring, real-time log analysis and security alerts for API traffic are achieved without disrupting normal business operations.
- The security gateways are deployed in a highly available architecture within the Kubernetes container environment, ensuring efficient security monitoring, load balancing, and business continuity.
Achievements
- Global Asset Visibility: Comprehensive inventory of API asset information provides essential foundational conditions for more refined security efforts in the future; unified operation of subsystems under centralized management and consistent policy orchestration.
- Elimination of High-Risk Threats: Timely response to identified high-risk threats, enabling collaboration with business departments to address high-risk issues swiftly, supported by a low false positive rate. This forms a closed loop in the business security lifecycle, including comprehensive remediation of plaintext passwords, weak passwords, and unauthenticated interfaces.
- Monitoring Sensitive Data Leakage Risks: Implemented data classification to identify and prioritize sensitive data interfaces, issuing alerts for incidents involving exposed sensitive data and monitoring unauthorized access or insecure transmission methods.
- API Log Auditing: Conducting post-event analysis and incident tracking of logs, enabling statistical analysis of log usage and identification of abnormal call behaviors.
- API Security Protection: Leveraged gateway security features to minimize data transmission risks and prevent sensitive data leakage.
More Case Studies
Ready to Embrace a Safe and Efficient Digital World?
Contact us and Let’s discuss how Paraview can secure your identity and API assets.