AI and API: How to Leverage AI Tools for API Security
November 08, 2023

Dotan Nahum
Check Point Software Technologies

The marriage between AI and API security seems like an odd pairing at first. Dubbed a threat to API security, generative AI applications can be easily customized to create and run multiple scenarios to expose weaknesses in APIs. Moreover, given the right datasets, hackers can train AI to plan and execute attacks that evade traditional API security solutions. However, those qualities make artificial intelligence and machine learning the technology that may be missing in your API security stack.

Before we discuss how you can harness AI to secure your APIs, let's talk about why API security is now considered a C-level cybersecurity concern.

Why API Security is the New AppSec

API communications today make up over 80%(link is external) of all traffic on the internet, and the average enterprise uses over 15,000 APIs. The same report found that 41% of organizations surveyed experienced an API security incident last year, and other reports(link is external) claim the number is much higher — up to 76% in some cases. In monetary terms, the average annual cost associated with API-related cyber loss is around $12 to 23 billion(link is external) in the US alone — hefty, to say the least.

But what is it that makes APIs so attractive to malefactors?

A combination of two factors: the sheer volume of API traffic (which is expected to grow twice as fast as HTML traffic) and the ease with which bad actors can bypass traditional API security solutions like WAF, log analysis, and API gateways.

An emerging threat should require advanced protection, yet this isn't necessarily the reality. 77%(link is external) of businesses admit that their existing tools aren't very effective in preventing API attacks(link is external). The same survey revealed that 31% of businesses surveyed had experienced a sensitive data exposure or privacy incident, and 17% were the victims of a security breach resulting from an API attack.

How Can AI/ML Tools Help?

Can the answer to API security challenges be AI? Many answer with an optimistic yes, but only a few envision where AI fits their API security strategies — and how. So, what can AI do for API security?

Secure API Development

The use of AI/ML tools in software development is nothing new, and API developers avidly adopt AI in various aspects of their workflows. 60% of API developers already use AI tools in their work, though only 18% said they use AI to flag potential vulnerabilities in API code.

While not directly related to coding, another way AI/ML tools help secure APIs from the core is by producing and updating the documentation for the many APIs businesses employ.

API Discovery

It takes about forty hours to discover, document, migrate, refactor, and remediate security issues for each API. Considering the API sprawl plaguing enterprises, lack of visibility into the APIs employed is one of the main challenges in API security. Often, organizations focus on high-risk APIs while turning a blind eye to shadow APIs and zombie APIs that may leak sensitive information.

AI-enhanced API management tools can help discover and document the different exit points and provide infosec teams with contextual intelligence on managing and protecting the APIs (or eliminating them if they are no longer used).

API Testing

The most apparent use for AI/ML tools in API security is in testing and validating APIs. Compared to humans, AI tools can write thousands of tests and scenarios to run against your API, and they don't require as much time and resources to achieve broad coverage. So, it's no wonder numerous API management and security products have added AI features to their testing tools.

Behavior Analysis

Another advantage AI has over humans is its ability to instantly spot anomalies in behavior across masses of API calls to uncover potential malefactor activity in their search for exploitable application logic flaws. The tools traditionally used to protect APIs lack the context to detect such supposedly unrelated malefactor actions over time. They also don't protect against API abuse and attacks over authenticated APIs, which count for up to 80%(link is external) of all API attacks.

Prioritization and Contextualization of Alerts

One of the challenges with cybersecurity overall and API threats is the volume of logs and alerts produced. While AI can never fully replace human analysis, it can provide IT, infosec, and DevOps teams with more actionable and contextualized information, as well as prioritize the severity of incidents or vulnerabilities to help resolve the most critical ones in a timely manner.

The Future of API Security With AI/ML Tooling

APIs are vital in modern applications, but traditional API security tools and policy-based mechanisms are no longer enough. As bad actors explore the capabilities of AI, so do API security vendors.

To be effective and accurate, AI must be trained on masses of historical API traffic logs and best practices for threat detection and validation. But, once trained, AI tools can monitor and analyze all API traffic to detect increasingly sophisticated attacks and arm security professionals with the information they need when they need it to stop attacks from becoming breaches.

Dotan Nahum is Head of Developer-First Security at Check Point Software Technologies
Share this

Industry News

May 21, 2025

Red Hat announced jointly-engineered, integrated and supported images for Red Hat Enterprise Linux across Amazon Web Services (AWS), Google Cloud and Microsoft Azure.

May 21, 2025

Komodor announced the integration of the Komodor platform with Internal Developer Portals (IDPs), starting with built-in support for Backstage and Port.

May 21, 2025

Operant AI announced Woodpecker, an open-source, automated red teaming engine, that will make advanced security testing accessible to organizations of all sizes.

May 21, 2025

As part of Summer '25 Edition, Shopify is rolling out new tools and features designed specifically for developers.

May 21, 2025

Lenses.io announced the release of a suite of AI agents that can radically improve developer productivity.

May 20, 2025

Google unveiled a significant wave of advancements designed to supercharge how developers build and scale AI applications – from early-stage experimentation right through to large-scale deployment.

May 20, 2025

Red Hat announced Red Hat Advanced Developer Suite, a new addition to Red Hat OpenShift, the hybrid cloud application platform powered by Kubernetes, designed to improve developer productivity and application security with enhancements to speed the adoption of Red Hat AI technologies.

May 20, 2025

Perforce Software announced Perforce Intelligence, a blueprint to embed AI across its product lines and connect its AI with platforms and tools across the DevOps lifecycle.

May 20, 2025

CloudBees announced CloudBees Unify, a strategic leap forward in how enterprises manage software delivery at scale, shifting from offering standalone DevOps tools to delivering a comprehensive, modular solution for today’s most complex, hybrid software environments.

May 20, 2025

Azul and JetBrains announced a strategic technical collaboration to enhance the runtime performance and scalability of web and server-side Kotlin applications.

May 19, 2025

Docker, Inc.® announced Docker Hardened Images (DHI), a curated catalog of security-hardened, enterprise-grade container images designed to meet today’s toughest software supply chain challenges.

May 19, 2025

GitHub announced that GitHub Copilot now includes an asynchronous coding agent, embedded directly in GitHub and accessible from VS Code—creating a powerful Agentic DevOps loop across coding environments.

May 19, 2025

Red Hat announced its integration with the newly announced NVIDIA Enterprise AI Factory validated design, helping to power a new wave of agentic AI innovation.

May 19, 2025

JFrog announced the integration of its foundational DevSecOps tools with the NVIDIA Enterprise AI Factory validated design.

May 15, 2025

GitLab announced the launch of GitLab 18, including AI capabilities natively integrated into the platform and major new innovations across core DevOps, and security and compliance workflows that are available now, with further enhancements planned throughout the year.