Analyze Sensitive Data exposure

As part of API Discovery, the PII Detector and Anonymizer continuously discover PII (Personal Identifiable Information) and other sensitive data, including the tokens and passwords used in the APIs.  

API parameters are cataloged with the details of their parent API, the PII type found in the parameter, and the location of the sensitive data. 

See Parameter catalogue for more details.

Insights about sensitive parameters are available in the Visibility Report. See Reports for more details.

Objectives

Some of the key objectives of analyzing sensitive data parameters are:

• Identify the important and risk-posing unauthenticated APIs and flag them for fixes.
• Classify parameters not flagged as sensitive into the apt PII types if required and reclassify parameters to custom Sensitive Data types.