Aiculus is the new breed of API security

Organisations who refuse to compromise on security come to us to enhance their API defence-in-depth strategy, and unlock the full potential of APIs.
Aiculus uses Artificial Intelligence (AI) to predict anomalous behaviour, and detect and respond to API security threats across all your API traffic in real time. Our insights into the latest API-related threats strengthen your organisation’s defence in depth strategy even further.
So when you partner with us, you’re not just securing your APIs, your customer data, and your reputation: you also gain the confidence to expand and innovate with APIs.
Our partners

By 2021, 90% of web-enabled applications will have more attack surface area in exposed APIs rather than in the user interface (UI)*
Aiculus is a peerless API security solution deployed on-premise or in the cloud


Monitor and detect threats across all API traffic
The Aiculus API Protector monitors all your API traffic: between the client and server (North-South traffic), and between API endpoints (East-West traffic).
It screens each call to determine anomalous patterns and threat indicators, and detect API credential theft, compromised accounts and authentication bypass attacks.

Get a clear view of threats in your customised dashboard
Your Aiculus dashboard shows calls, threats and risk analyses across all your APIs. Investigate attempted API frauds, generate usage trends, and use the data to inform strategic decisions. Technical and executive reporting takes just moments.

Strategise with API insights and intelligence
Grow your business through an improved security posture based on our expertise and trusted advice. The actionable insights we gain by analysing your API traffic help you improve infrastructure planning and better manage API security risks.

Stop risky requests in real time
API Protector inspects every API call for misuse. It uses AI techniques such as machine learning and deep learning to perform behavioural analytics, and provide adaptive risk assessments in real time. If the risk is too high, the request is denied — and your systems stay secure.

Receive instant
live-threat updates with threat sharing
As we learn new API security patterns, we share those insights with you through our threat-intelligence service. Join the Aiculus client community to keep your organisation ahead of the curve.
Prioritise privacy
Aiculus provides bespoke solutions to suit your organisation’s unique privacy profile and compliance obligations. Every implementation is private by design.
See Aiculus in action
How can Aiculus help you?

How it works
Aiculus can sit inline or in a sideband deployment to screen streams of both North-South and East-West API traffic.
-
API Protector intercepts authenticated API traffic after the API Gateway.
-
It inspects each call, analysing it for threats and anomalous behaviour using our AI engine.
-
It gives each call a risk index and analysis.
-
The risk index is fed to the service-response logic, which determines whether to allow the request, re-authenticate the request or block the request altogether.
-
The end user receives a response based on whether their request is allowed or not: either they get the service they’ve requested, they’re asked to reauthorise, or their request is blocked.

As API Protector analyses the millions of API calls your customers make, it learns and adapts its assessments in real time, to address new threats as they evolve. Each call and its analysis are stored for presentation in the Aiculus Dashboard, so you can drill deep into the data for analysis and remediation, and generate aggregated reports for API infrastructure planning and strategy-setting.
All this is supported by our threat-sharing service, which ensures your Aiculus implementation — and your business and customers — are protected from threats you haven’t even encountered yet.
Get in touch
Contact us to arrange your free trial of Aiculus.
Our team
Aiculus is an innovative team of problem solvers with proven technical research and development expertise. Our experience across security platforms, coupled with our personal and cultural values, see us prioritise genuine client value above all else.
