# Protect your HTTP APIs in API Gateway
<a name="http-api-protect"></a>

API Gateway provides a number of ways to protect your API from certain threats, like malicious users or spikes in traffic. You can protect your API using strategies like setting throttling targets, and enabling mutual TLS. In this section you can learn how to enable these capabilities using API Gateway.

**Topics**
+ [Throttle requests to your HTTP APIs for better throughput in API Gateway](http-api-throttling.md)
+ [How to turn on mutual TLS authentication for your HTTP APIs in API Gateway](http-api-mutual-tls.md)