What is the Gartner Hype Cycle after all?

The Gartner Hype Cycle is a graphical representation used by Gartner, a leading research and advisory company, to illustrate the maturity, adoption, and social application of specific technologies over time. In this case - APIs and application security individually. It has 5 phases -

• Innovation Trigger

• Peak of Inflated Expectations

• Trough of Disillusionment

• Slope of Enlightenment

• Plateau of Productivity

According to Gartner, API Security Testing, of which Akto is a representative vendor, is currently in the ‘Trough of Disillusionment’ phase.

Trough of Disillusionment: Interest wanes as experiments and implementations fail to deliver. Producers of the technology shake out or fail. Investments continue only if the surviving providers improve their products to the satisfaction of early adopters. - Gartner

You can learn more about the different phases of the Gartner Hype Cycle here.

Akto is featured in two Gartner Hype Cycles:

1. Gartner Hype Cycle for APIs

2. Gartner Hype Cycle for Application Security

Let’s learn the significance of each.

Akto in Gartner Hype Cycle for APIs

This Hype Cycle highlights the most important API trends.

in this context, for API security Testing, this means that while the technology has shown promise, organizations have likely encountered significant obstacles in adoption. These could include difficulties in implementing robust security measures, challenges in keeping up with evolving threats, or the realization that existing solutions may not be as effective as initially hoped. For example -

Testing tools may not support all API protocols. SOAP remains in widespread use, although it is being supplanted by REST APIs. GraphQL-based and gRPC-based APIs are increasingly common, so additional support is required from tool vendors for effective testing. - Gartner

Akto solves this challenge.

Akto supports all APIs

Akto supports a wide range of API protocols, including SOAP, REST, GraphQL, and gRPC. We are the only API Security platform with built-in gRPC support for API Discovery and testing.

This comprehensive coverage ensures that you can effectively test and secure your entire API ecosystem, regardless of the protocols.

Akto in Gartner Hype Cycle for Application Security

This Hype Cycle tracks the maturity and adoption of processes and technologies that can help organizations advance their application security program.

Traditional AST tools — static application security testing (SAST), dynamic application security testing (DAST) and interactive AST (IAST) — were not originally designed to test for some of the unique types of vulnerabilities associated with typical attacks against APIs. Nor were they aimed at newer types of APIs (such as GraphQL or gRPC). API-specific vulnerabilities and modern API formats prompt security and development teams to implement specialized API security tools focused on testing, discovery of shadow APIs and protection from threats (or a combination of the three) - Gartner

Akto is built for the modern application security team. In this context, we ensure complete DevSecOps pipeline coverage so enterprise teams have a specialized API security testing platform that evolves with them.

Final Thoughts

Akto's inclusion in two Gartner Hype Cycle Reports highlights the significance of API security testing in the application security landscape.

As the landscape of API security continues to evolve, Akto’s platform is the long-term partner to modern application and product security teams, offering a differentiated API Security solution.

We cannot be more excited about the future, as Akto’s roadmap for next year is nothing short of magic. We don’t believe in anything less than magic.

We are a team revolutionizing the API Security space and partnering actively with Modern Appsec teams who think alike.

Ready to build your enterprise-grade API Security program? Let’s schedule a demo.