Rate Limiting Before “APIs” Had a Name: How 1995–1998 Shaped Web API Business and Security
In the mid-to-late 1990s, “web APIs” often looked like CGI scripts and HTML form endpoints—yet operators still needed quotas and throttles. This chapter examines how rate limiting quietly became a business and security tool as browsers gained scripting and HTTP traffic scaled.