Contact Us

What Makes a Good API?

By The Boost Team on Jan 13, 2023
8 min read
Learn how APIs work, and the attributes of a high-quality API

APIs have become ubiquitous in modern technology - and in modern tech marketing. If you’ve ever looked into buying a software service or platform in the last ten years, the odds are that a good API was listed as one of the selling points. But what exactly makes an API “good?”

Before we dive into that question, let’s take a minute to recap what APIs are, and why they’ve become so central to business and technology.

API 101: What is an API?

Application Programming Interfaces (APIs) are the mechanisms that allow computer software to communicate with each other. APIs ensure that when one software system makes a request, another system can understand the request and respond correctly. When discussing the relationship between two software systems, the application sending the request for action is called the client, and the application sending the response is called the server

For example, your bank’s software system houses all of your banking data–that software system is the server. The banking app on your phone is the client. When you initiate actions in your banking app, like making transactions, checking your account balance, or even chatting with a representative, the app communicates with the bank’s software via its API and tells it which action to perform. The server provides an API for the client to use to perform actions.

How does an API work?

Let’s say that you want to make a transfer of funds from your checking account to your savings account. You open your banking app and navigate to the transfer tab where you are asked which account you are transferring from, which account you are transferring to, the amount you want to transfer, and any additional notes before you can submit the request. Within seconds of submitting your request, the number on your checking account decreases and the number on your savings account increases, and the physical amount of money you can withdraw from the bank for both accounts has changed. 

For this to happen and money to actually be moved, the app needs a way to tell the bank’s system what to do. That is where the API comes in. The APIs are the rules and protocols that are coded into both systems as a set of predetermined requests and responses. 

When you enter how much money you want to move and where you want to move it to, the client communicates with the API on the server. When the server receives that request, it reads the information and executes a predetermined set of actions to move exactly the amount of money that you requested into the correct account.  

From a technical standpoint, APIs consist of two main components: an address and a body. The address, also known as an endpoint, tells the data where it's supposed to go (in our example, the bank’s system). The body is the data that will be delivered to that address. 

Why are APIs important?

APIs allow developers to automate functions and create a very clear, easy-to-understand relationship between what the user needs to do and what the computer systems will do in response to their requests. 

Without APIs, the modern conveniences of apps, digital transactions, and the like couldn't exist. Everything would require human, manual interference. Instead of quickly logging into an app on your phone to make a transfer of funds, you would have to physically go into your bank or talk to a teller over the phone, and your request would take much longer to process. 

But because of the code and predetermined actions built into digital systems through APIs, users can interact with services much faster. You can transfer your money in seconds, and the bank can gather your information, automate manual processes, and make their work more efficient.

What Makes a Good API?

Now that we’ve established what an API is and why they are important, let’s talk about what makes a good API. While all APIs follow the same principle of allowing systems to communicate, not all APIs function equally well. The quality at which an API is developed impacts how effective any system will be at actually doing what the user is asking for.  

So what makes a good, well-constructed API? Here are 5 aspects of a good API.

1. Simplicity

First and foremost, APIs should be simple. This means having clear addresses, endpoints, and easy-to-understand request body structures. In our banking example, the bank’s software and the app’s software are presumably owned and operated by the same company–the bank. Oftentimes, however, the client and the server belong to different companies. Developers at both companies will need to build their systems to be able to understand the API and react accordingly. A simple, straightforward API structure makes it easier to correctly implement.  

Let's take a look at an insurance API example. Say that you own a pet store and you have partnered with an insurance carrier to offer embedded pet insurance to your customers. In order for your customers to purchase insurance from you, they have to enter their information in a form on your website. Then the insurance company receives that information, makes an underwriting decision, and issues the policy. 

In order for the insurance company to receive your customers’ information and take action on it, your front-end systems need to communicate with your insurance partner’s system. The set of requests and responses between these separate systems should be simple and clear. The simpler the API, the faster and more seamless the integration between these two systems will be, and the fewer opportunities for mistakes. 

2. Complete, inclusive functionality

A good API should be able to execute all (or at least most) of the functions a user would need. Going back to our bank example, an app that allowed the user to check their balance but not to transfer funds wouldn’t be very useful to the customer. To be effective, the bank’s API needs to be able to handle most of the things a customer might want to use their bank app for. 

For more complex functions, it’s important that an API be able to collect and process all of the information needed to return a response. For our pet insurance example, let’s say that in order to decide to issue a policy, the insurance company needs ten pieces of information from the customer. 

If the API could only handle five of those pieces of information, the rest would need to be submitted separately (likely over email or a phone call with an insurance agent). It would be an inconvenient experience for both the customer and the insurance company, and increase the likelihood of manual errors. A good insurance API would be able to collect and process all information needed to issue a policy, right from the app or website.

3. Useful error handling

Errors are inevitable with any piece of software. What sets a good API apart from a bad one is how it handles errors when they arise. Good error handling can make the difference between getting back on track quickly, or getting bogged down in bug reports.

Broadly speaking, there are two kinds of software errors: 400 errors and 500 errors. The difference between the two is how much information they can give about what’s gone wrong.

400-type errors are specific errors with an identified problem. One of the most familiar is a “404 not found” error, which occurs on the web when a user tries to navigate to a web page that doesn’t exist. If you’ve ever mistyped a URL or clicked on an old link to an inactive page, you’ve seen a 404 error. Because 400-type errors give a specific reason for why the request failed, they also give direction on how to go about fixing the problem.

500-type errors, on the other hand, are much less clear. 500 errors indicate general server failures, crashes, or bugs. These tend to be more frustrating for users and developers alike, since they don’t contain much to go on for how to fix it.

A good API should be able to produce mostly 400-type errors that identify the problem so that it can be easily tracked and fixed. When an API produces a lot of unidentifiable 500 errors, it indicates a poor-quality API.

4. Thorough documentation

While not technically part of the API itself, good documentation is essential to a successful API. As developers integrate systems or build the API rules into an app, documentation has a direct impact on how quickly they can work, and how well they can avoid errors.  Good documentation should specifically describe each of the endpoints, what the requests should contain, and what the responses will contain.

In many applications, an API will touch various parts of an overall system. This is especially true for more complex operations like our pet insurance example. On the user’s side, applying for insurance might seem like a straightforward software operation - they fill out the form, and the software sends it. On the insurance company’s side, however, it’s much more complex. 

When the user submits their application, numerous parts of the insurance company’s system will be involved with the process. One part of the system will document the personal information they provided in the application. Another part will use that information to make calculations around premium costs, and still another part will generate the policy itself. In order to make sure this all happens seamlessly, developers need access to comprehensive, up-to-date documentation for how all these components interact and are executed via the API. 

5. Fast performance

Finally, a key benefit of APIs in general is speed. Rather than trudging through manual processes, APIs are meant to automate functions that would take much longer if human interactions were required. A good API should allow information to be passed between servers quickly and efficiently.

Going back to our earlier examples, no one wants to sit and wait to see if their bank transfer request or their insurance application was successfully received. For the best user experience, APIs should process requests in less than a second. If an API is slow to respond, it may indicate inefficient architecture, or that the servers are housed on insufficiently powerful hardware.

Get to know the Boost API for insurance

APIs allow businesses to function in a modern, technologically savvy way. By continuously improving the communication between client and server systems, consumers have access to a wider variety of digital transactions and services than ever before.

If you want to learn more about Boost’s API and how we can help your business stand out through insurance-as-a-service, contact us, or dive into building your insurance program with Boost Launchpad.

Previous articles
A businessman types on a calculator while holding a pen. His desk is covered in financial charts.
Build, Buy, or Boost: A Cost Breakdown for Insurance Infrastructure
Feb 28, 2024
A big reason that businesses choose Boost is that we can help them launch scalable, profitable insurance programs much more quickly and cost-effectively than the alternatives. In this blog, we’ll explore the time and cost requirements for using Boost to develop a new program vs traditional build or buy, and how Boost is able to offer a better option. We’ll break it down by the three main components you need for a new program: the MGA infrastructure to support it, the new product itself, and the distribution technology to sell it online. The first step to developing a new insurance program? Being legally permitted to do so. And if you want to create your own product versus just selling someone else’s, your company needs to be an MGA. In this section, we’ll look at the cost and requirements for building a new MGA. There are two big requirements for building your own MGA: hiring the right people, and securing the right partnerships. On the hiring side, you’ll need to build an organization to run a full-stack insurance business. This includes everyone from underwriters to claims administrators to compliance managers to regulatory experts. As you might imagine, this is a significant, ongoing resource commitment, particularly for positions requiring experienced senior employees. On the partnership side, you’ll need to build relationships with reinsurers and other risk capital providers, and with fronting carriers who will allow you to write on their paper. This can be difficult, especially without existing connections. Total estimated cost: $5 million Total estimated time: 2 years When creating an MGA, there’s actually not much difference between building and buying.  You can contract with qualified professionals instead of hiring directly (like using a licensed third-party agency for handling claims instead of building an internal claims team), and work with consultants that specialize in other MGA requirements, but you’ll still need to do a lot of the same things that we saw in the build section. The most important and challenging pieces, like the reinsurance and fronting carrier partnerships, can’t be bought. Total estimated cost: $5 million Total estimated time: 2 years Boost has already invested the time and money in building a robust MGA infrastructure to support our customers’ insurance programs, including:  When you work with us, you can leverage our already-existing infrastructure to get what you need to support your insurance programs right away, for an annual platform fee.  Total estimated cost: $150,000 annually Total estimated time: Immediately available The core of a new insurance program is the product itself: the coverages you’re going to offer, the risk capital to back them up, and the administration to support its operations. In this section, we’ll look at what it takes to create a brand new insurance product from scratch. If you choose to build your product from scratch in-house, you’ll need to hire experienced people to do everything mentioned above, including: Additionally, you’ll need to secure capacity for your product. This is often harder than it sounds, especially if you don’t already have relationships in place with risk capital providers. Particularly in the current economic environment, convincing reinsurers to commit financial resources to insuring a new, unproven risk can be a long, difficult journey.  Total estimated cost: $8 million to set up, with $2 million annually to maintain Total estimated time: 5-6 years If you go the “buy” route for developing your new product, you’ll need to contract out to a number of partners to get what you need, including: Each partner will deliver their piece of the puzzle, but it will be up to you to assemble the pieces and ensure everything happens as it’s supposed to. You’ll need to invest resources in project-managing a complex multi-year, multi-partner project. Additionally, some partners’ contracts may include ongoing fees, or a certain percentage of the product’s GWP. Total estimated cost: $5.8 million + 1% of GWP Total estimated time: 3-4 years If you choose to partner with Boost to create your product, you’ve already streamlined the process considerably. Boost can provide everything you need to build and launch your new insurance program under one roof (in fact, we’re currently the only partner that can).  Boost’s in-house team of insurance experts will work with you on market research and scoping for your opportunity, then develop a product sketch for how to address it. Once you and Boost have agreed on what the new product should look like, our team will get to work developing the forms, guidelines, and other program documentation. They’ll also help you design the program’s operations and claims workflows. When the product is ready, Boost will submit it to our panel of reinsurance and fronting carrier partners. Once we’ve secured paper and capacity for your product, our compliance specialists will start the filing process with the states that you intend to sell in. Total estimated cost: $400K Total estimated time: 4-7 months Modern buyers expect convenient, all-digital purchase experiences, and delivering those experiences requires a policy administration system (PAS) with the right capabilities. In this section, we’ll look at options for acquiring a PAS that can support end-to-end digital workflows. A PAS is a very complex piece of software, in no small part because of varying insurance regulations between each state. To function smoothly, your PAS will need to automatically identify and follow all applicable laws for the state a policy is sold in. This includes areas such as:  The time and difficulty of building a PAS also increases with each additional insurance line that it must support. If you build in-house, you’ll also need to plan for regular updates and maintenance to the software, and ensure your organization has the necessary resourcing in place. Total estimated cost: $2 million annually Total estimated time: 1-2 years If you opt to buy the technology you need, the cost will vary by PAS vendor pricing, and also by the amount of development work necessary to customize an off-the-shelf PAS to support your product and workflow needs. Traditional vendors often charge per-year service costs for your PAS buildout and subsequent maintenance. Newer vendors tend to forgo the large fixed annual rates, and instead collect a relatively low baseline platform fee along with a percentage of your gross written premium. In many cases, however, you’ll also need to separately arrange and pay for the custom dev work to configure your PAS for your products. Total estimated cost: $250k + 1% of GWP Total estimated time: 6 months to customize/implement Boost’s state-of-the-art PAS is at the heart of our platform, and is pre-configured to support all Boost products. The annual $150,000 Boost platform fee includes access to the PAS - just integrate with your front-end via API, and you’re ready to get started selling your Boost-powered insurance product.  The Boost API was built from the ground up to be easy for developers to build to and implement, reducing deployment times vs. complex legacy software. This includes a design that leverages RESTful patterns, comprehensive API documentation, and permanent access to a dedicated testing environment, at no additional fee. Total estimated cost: Included in the platform fee Total estimated time: 4 weeks deployment Considering if a new insurance program is the right move for your business? Learn everything you need to know with our free ebook How To Succeed with a New Insurance Program. And if you’re ready to get started with Boost, get in touch today.
Continue Reading
A stylized concept image  that shows a person working on a laptop, with various security and internet iconography superimposed over it.
3 Reasons Cybersecurity Firms Should Offer Cyber Insurance
May 19, 2023
Cyber threats are on the rise, and businesses of all sizes and industries are at risk of significant financial losses and reputational damage in the event of a cyber attack. While SMBs are regularly targeted by cyber criminals, however, it can be difficult for them to secure cyber insurance coverage that meets their needs.  For cybersecurity firms that serve SMBs, this is a great opportunity to expand your business by offering cyber insurance. In this blog post, we break down 3 compelling reasons why cybersecurity firms should offer cyber insurance to their clients. Cybercrime is rising across the board. In 2021 the FBI's Internet Crime Complaint Center received 845,000+ complaints, with total losses that exceeded $6.9 billion. 2022 had the second-highest number of data compromises in the U.S. in a single year, and the total cost of cybercrime is predicted to hit $8 trillion by the end of 2023 (then grow to $10.5 trillion by 2025) As frequency has grown, so has the cost to individual businesses. The average cost of a data breach for businesses in the United States reached a staggering $9.44 million in 2022. These kinds of unexpected costs would be taxing for even a large, highly profitable enterprise, but they can be devastating for small to medium businesses. Some never recover.  Your customers need a way to safeguard their operations from the harmful consequences of a cyber incident, and cyber insurance can help.   Cyber insurance protects individuals and businesses from digital risks such as data breaches,  phishing attacks, and other types of cybercrime. It usually provides financial coverage for expenses related to recovering from a cyber attack, such as legal fees, data recovery, customer notifications, and reputation management. It offers a safety net that allows your customers to mitigate the financial burden and operational disruptions caused by cyber incidents and provide some relief while they recover and rebuild.  With the increasing frequency and complexity of cyber threats, cyber insurance has become an essential component of any comprehensive risk management strategy for all businesses. This creates an opportunity for you to offer your customers a solution.  With approximately 33 million SMBs in the United States alone, this segment represents a significant portion of the business landscape. The insurance industry as a whole is also quite substantial, with P&C premiums totaling over $710 billion in 2021. Providing comprehensive cyber insurance lets you tap into this market, and creates the opportunity to generate significant revenue streams while filling a critical gap and meeting SMBs’ legitimate needs for cyber insurance protection.  Cybersecurity firms are already at an advantage in the market. Because cyber insurance is so aligned with your core business, you’ll be selling to your existing customers. Younger buyers in particular have reported that they prefer to buy financial products like insurance from brands they already know and trust, rather than a traditional provider. Since you already have a relationship with your customers around protecting them from cyber threats, buying their cyber insurance from you is a natural choice.  Expanding your business and adding new products can be a significant (and expensive) undertaking. But an important aspect to remember with cyber insurance is that you won’t be marketing to new customers. Instead, you would be selling to the same audience with whom you’ve already invested time, effort, and money. Not only does this streamline your sales and marketing processes, but it also allows you to generate additional revenue without incurring new customer acquisition costs. By weaving cyber insurance into your current marketing efforts, you can seamlessly expand your service offerings and build additional revenue per client.  Providing insurance to your existing clients can also help boost your customer retention. Insurance is a very “sticky” product with an average 84% customer retention rate. The additional touchpoints can help keep your brand top of mind, and the valuable protection your customers buy from you is another differentiation point against the competition.   By strategically integrating insurance into your product lineup, you can boost your revenue, strengthen customer loyalty, and further position yourself as a trusted partner for all their cybersecurity needs.  If you offer cybersecurity services to small to medium businesses and want to learn more about how you can grow your revenue by offering cyber insurance, learn more in our free ebook
Continue Reading
Conceptual image with a graphic of a barchart rising up from the surface of a tablet. The tablet is held by a man in the background.
Boost in Q1 2024: $130M in New Capacity with 12+ Reinsurance Partners
Feb 8, 2024
Risk capital is one of the most critical components of an insurance program: a program can’t operate without sufficient capital to respond to its policyholders’ potential losses, and it can’t grow unless its capacity does too.  At the same time, risk capital is also frequently one of the most difficult components to obtain, especially for products aimed at new or emerging risks. Insurance and reinsurance providers can be understandably hesitant to commit their resources to unproven programs, or to expand in areas they feel are high-risk. In the current macroeconomic environment, with investors increasingly prioritizing profits over growth, the already-difficult risk capital market has grown even tighter. That’s why we’re excited to share an important milestone here at Boost: at a time when the risk capital market as a whole is contracting or staying stagnant, we’ve just added over $130M in new reinsurance capacity, and expanded our reinsurance panel to over a dozen partners. This is great news not just for Boost, but for all of the insurtechs, MGAs, brokers, and embedded insurance platforms that work with us. We’ll be able to expand the capacity behind all of the programs we support, including SMB commercial cyber, startup management liability, parental leave, pet health insurance, and more. This in turns means our partners can scale even further with the programs they white-label from Boost. It’s not just our current programs that can grow. One of our specialties here at Boost is developing innovative new programs to address emerging market risks, which requires new risk capital. Some of our additional capacity is earmarked for new program launches throughout 2024. While we can’t talk about our plans yet, we’re very excited for what’s coming down the pipeline later this year. This expansion is also a big vote of confidence in Boost by our reinsurer partners. If you read our press release, you know that one of our partners said that they expanded their relationship with us because of our consistent track record of program profitability, with a data-driven and technology-enabled approach to risk management. We’ve worked hard to deliver great results for our capital partners, our customers, and their customers, the policyholders. We look forward to doing even more in the year to come. If you’re looking to expand your insurance offerings, or develop an innovative insurance program for emerging risks, Boost can help you get started today.
Continue Reading