API Documentation


The MetaCert Security API makes it very easy for you to add a lightweight, but very powerful layer of security to your app. Since the API is based on REST principles, it’s easy to write and test applications.

The Security API allows you to lookup and check the classification or reputation of URLs and IP addresses, to see if they have been labeled as ‘malware & phishing or pornography.

MetaCert’s classification platform is unique to every other platform. Paul Walsh, CEO of MetaCert, was responsible for co-instigating the creation of the W3C POWDER Recommendation that formally replaced PICS in 2009. MetaCert’s classification methodology is based on the same principals that POWDER was based on.

MetaCert is the first company in the world to classify domains, sub-domains, folders and URLs. It’s our unique ability to classify folders that really sets us apart. For example, when we classify a folder like igmur.com/adult/porn it means that any URL that’s located in this specific folder will return a value of pornography. No other platform will return this value without labeling the entire domain, or having the ability to classify URLs the second they hit the web.

So when you check the classification of a URL on a site like igmur.com, no other company

It has the ability to classify domains, sub-domains, folders and URLs. The API response will tell you if a particular URL was specifically labeled, or if the domain or folder associated with the URL was labeled.

We have data for 35 additional categories but this won’t be made available until late 2015.

Use cases

The Security API helps you to protect your end-users from malicious attacks, or block webpages based on its content type.

As a side note, MetaCert Founder Paul Walsh, co-instigated the creation of the W3C Recommendation for content labeling called POWDER, which formally replaced PICS in December 2009. It is this foundation of work that forms the basis of MetaCert’s classification methodology and data structure.

Malware & Phishing

Even when using legitimate apps, consumers are exposed to potential attacks from known phishing websites. This leads to loss of personal and corporate data as well as mobile devices being infected with malware and adware.

Most developers hide the page URL when displaying web content inside a WebView. This provides consumers with more real estate. Sometimes it’s done to provide the developer with more advertising space. Hiding the URL however, makes it impossible to know if the page is legitimate or if it’s a spoofed page waiting to steal your personal and corporate data – or worse, waiting to infect your device by installing malware or adware in the background.

This is a real problem that’s only going to get worse. A Google search for “secure webview” brings up stories about security flaws in WebView and questions from developers on stackoverflow.

The MetaCert API provides protection with a patent-pending service that checks the reputation of URLs before web content is permitted to load inside the app (‘WebView’). By warning consumers of potential phishing threats before the page has loaded, we protect their personal and corporate data and stop their mobile device from being infected with malware or adware.

Pornography Filter

The MetaCert API is used to ensure that pornography is never displayed in your app by any website that you link to, or secondary pages that they link to. The API will also block pornography that users share between each other inside the app. This service is particularly useful for educational and religious-based apps, or games with user generated content aimed at a younger audience.


Whether you’re building a social networking app for your own company, or an enterprise app for a client, you can use the MetaCert API to protect consumers from malicious attacks and content that they deem inappropriate for their end-users or customers.

By promoting your app as “Protected by MetaCert” you’re likely to encourage more people to download your app, as it will be perceived as more secure than apps that offer no protection. By promoting yourself as a ‘MetaCert Partner’ to clients, you are more likely to increase their trust in your brand, as they will see how you care for the safety and wellbeing of their end-users.

Family Safety Apps

MetaCert has classified over 10 billion URLs, making it the world’s biggest database of pornography. We also have the lowest error rate of false positives in the industry. To put the numbers into perspective, OpenDNS has indexed 1.9 million unique domains across 59 categories, while MetaCert has indexed over 7 million unique domains for pornography alone.

We spent years classifying content so you don’t have to. By integrating the MetaCert API you can focus on building your product and business while we help you with the heavy lifting in the background. You can either promote your app as “Powered by MetaCert” or let us work discretely in the background.

App & API Platforms

App and API platforms that offer developers the MetaCert’s API as an integrated service, can promote their platform as more security-aware. It will also open up a brand new stream of monthly recurring revenue.

Integration is quick and easy – with no disruption to your own checkout process. As Jay Sharpio, Founder of AppMakr said, “Writing the press release took longer than integrating the MetaCert API and we started to generate new revenue from the service within 24 hours”.