Source Data for the Focus Area Maturity Model for API Management

by   Max Mathijssen, et al.

We define API Management as an activity that enables organizations to design, publish and deploy their APIs for (external) developers to consume. API Management capabilities such as controlling API lifecycles, access and authentication to APIs, monitoring, throttling and analyzing API usage, as well as providing security and documentation. These capabilities are often implemented through an integrated platform. This data set describes the API Management Focus Area Maturity Model (API-m-FAMM). In a structured manner, this model aims to support organizations that expose their API(s) to third-party developers in their API management activities. Through a thorough Systematic Literature Review (SLR), 114 practices and 39 capabilities were collected. Subsequently, these practices and capabilities were categorized into 6 focus areas. Next, the practices and capabilities were analyzed and verified through inter-rater agreement and four validation sessions with all involved researchers. Then, the collection of practices and capabilities was verified by using information gathered from supplemental literature, online blog posts, websites, commercial API management platform documentation and third-party tooling. As a result, the initial body of practices and capabilities was narrowed down to 87 practices and 23 capabilities. These practices are described by a practice code, name, description, conditions for implementation, the role responsible for the practice, and the associated literature in which the practice was originally identified. Capabilities and focus areas are described by a code, description and, optionally, the associated literature in which it was originally identified. Using the API-m-FAMM, organizations may evaluate, improve upon and assess the degree of maturity their business processes regarding the topic of API management have.


page 1

page 2

page 3

page 4


Identification of Practices and Capabilities in API Management: A Systematic Literature Review

Traditional organizations are increasingly becoming software producing o...

Leading DevOps Practice and Principle Adoption

This research, undertaken in highly structured software-intensive organi...

What are the Practices for Secret Management in Software Artifacts?

Throughout 2021, GitGuardian's monitoring of public GitHub repositories ...

Enterprise API Transformation: Driving towards API Economy

API proliferation is expected to grow in the coming years. This growth i...

Enhancing Strategic Information Security Management in Organizations through Information Warfare Practices

In this short paper we argue that to combat APTs, organizations need a s...

Strategic API Analysis and Planning: APIS Technical Report

Traditionally, software APIs (application programming interfaces) have b...

ArCode: A Tool for Supporting Comprehension andImplementation of Architectural Concerns

Integrated development environments (IDE) play an important role in supp...

Please sign up or login with your details

Forgot password? Click here to reset