Shield Proxy

Add a trust gate before sensitive mobile APIs.

Shield Proxy creates an attestation-informed route between protected mobile apps and backend services. It helps teams reduce API scraping, replay, bot traffic, and direct calls from untrusted clients by checking app and device trust signals before requests continue.

Talk to us Read API protection guide

App trustDevice trustPolicy-checked routeAPI protection

Shield Proxy demoEvaluate trust signals before sensitive backend requests continue.

Shield Proxy policy-checked traffic flow

How it works

Add a trust gate in front of APIs mobile attackers target.

Mobile APIs are often called by scripts, replay tools, modified apps, and traffic captured from emulators. Shield Proxy pairs protected app signals with server-side policy so traffic can be evaluated before it reaches the API surface.

Evaluate protected app identity and integrity signals.
Check device trust using attestation and runtime context.
Forward requests that meet tenant policy to customer-owned backend APIs.
Centralise enforcement without rebuilding every backend service.

Where Shield Proxy fits

Use it when mobile API abuse would cause fraud, content leakage, account takeover, data scraping, or unauthorised automation.

Banking and wallets

Reduce direct transaction API calls from modified apps, emulators, and replay tooling.

Retail and loyalty

Protect account, checkout, coupon, and reward endpoints from automated abuse.

Streaming and media

Keep entitlement, playback, and download APIs closer to higher-trust app sessions.