WaveMaker enhances enterprise Rapid Application Development with app security

WaveMaker announced two major enhancements to its enterprise-class Rapid Application Development platform expanded security functionality that lets developers focus on developing applications, with assurance of protection against network breaches.

Built on a foundation in application security, the WaveMaker platform now supports Single Sign-on for WaveMaker-built and deployed applications using Central Authentication Server (CAS), which permits users to access multiple applications by providing credentials such as UserID and password only once. WaveMaker also announced that it meets the standards addressing the top ten list of web application vulnerabilities published by the Open Web Application Security Project (OWASP).

Enterprises are increasingly challenged by the need to deliver new web applications rapidly while ensuring compliance with enterprise IT security teams. In response, WaveMaker built application security natively into the initial release of its RAD platform, and subsequently strengthened its security with enterprise-class, RAD-based application security.

WaveMaker makes use of the RAD model to provide a Rapid Application Development platform to create web and mobile applications. It includes the WaveMaker RAD platform architecture, based on the MVC (Model-View-Controller) pattern. Open standards, easy customization and rapid prototyping are central to the platform. The benefits of WaveMaker Rapid Application Development Model have a direct bearing on the cost and schedule of enterprise application delivery.

WaveMaker’s announcement of CAS-based Single Sign-on furthers the company’s commitment to provide the highest level of application security while simplifying application access for users.

Unlike other vendors of RAD platforms, WaveMaker’s focus on security extends beyond the application and to the APIs (Application Programming Interfaces) that allow multiple applications to link and interoperate. WaveMaker is a RAD platform that allows developers to build native microservices-based applications, and today’s release introduces token-based authentication for APIs, allowing API keys to be generated rapidly for consumption by other applications.

“Security was once an afterthought in application design, but those days are long past,” said Vijay Pullur, CEO of WaveMaker. “Still, vestiges of those days remain, as the primary objective of application design, in the eyes of most developers, is to ensure that the application performs continuously and under heavy demand. But security cannot be exempted from that objective. That’s why WaveMaker believes that security must be a cornerstone of good application design, and a major component in ensuring software quality before an app goes live.”

Last December, WaveMaker announced the availability of hybrid mobile app development as part of its open standards-based Rapid App Development (RAD) platform. With the consumerization of IT, organizations of all sizes now have an acute and growing need to modernize and mobilize their application interfaces.

By bringing RAD to hybrid mobile app development, WaveMaker enables companies to create mobile user interfaces for their existing apps more efficiently, saving time and money by speeding development, leveraging current staff without requiring coding skills, and reusing database schema or data structures.

Users increasingly demand mobile access to apps, and modernizing the front-ends of existing apps to add mobile capabilities using web technologies is more efficient than investing time and money in building native apps for each of the mobile platforms such as Android, IOS, and Windows.

Those platforms and devices change rapidly, requiring constant updating of native apps, which is a maintenance headache. Plus, building new front-end apps is easier than modifying existing web apps because mobile apps have newer interaction paradigms, including different navigation controls, multiple screen resolutions, and platform-specific usability guidelines. Most mobile app building requires complex API development to access enterprises’ backend systems and server-side databases.

These hybrid mobile apps can leverage device capabilities such as camera, geolocation, network and local file storage. As a result, organizations are able to make changes at the speed of business: zero-code hybrid mobile app development eases both development and maintenance of apps for smartphones. IT can develop once and support multiple platforms and devices simply by switching themes, rather than rebuilding the app for each platform or device; empower functional teams with limited front-end development skills to build modern UI for mobile devices; and simplify packaging such apps in-house using the integrated cross-platform installer builder (based on Apache Cordova), instead of sending apps to a remote site mainly for packaging.


Leave a Reply

WWPI – Covering the best in IT since 1980