Several layers of security are usually imposed between API consumers and providers to fully protect organizations from outside threats and attacks. The first security layer, or perimeter security, is referred to as the demilitarized zone or more simply as the DMZ. The second security layer, or green zone, is located behind the inner firewall of the DMZ. In some cases, the green zone may include several security sub-layers designed to further filter access to internal components and/or services. Finally, agents may be co-located within the core application logic to provide protection at the application layer. This is the last security layer, or last-mile security.

OAG is commonly deployed in the DMZ form as an organization's ...