Governance spans multiple dimensions of our API operations, but few areas get people thinking and talking about API governance than talking about the security of your APIs. I am working with customers to think through the details of the OWASP Top 10 API Security Risks, and up at the top of the list is broken authentication, which forgetting to actually configure and enforce API authentication across APIs being a pretty common slice of this API security. API security and API governance overlap...
