Network = Darknet

Darknet is not a separate network. The correct hierarchy is this: Hidden web < dark web < internet ("white") Hidden web contains e.g. all protected VPN within the web, all password (or otherwise) protected areas. This might be a solution you could use, depending on the consumer of your service. Dark web is not hidden, it's just not "searchable" on the common ways (by search engines). Simply done by setting the appropriate meta data. Bit more advanced if you additionally hide the files better. Internet: "googleable". But if you have a real API, then there are normally completely different approaches to "hide" it. I think you either want to allow only specific clients (e.g. an app) or you want to allow specific sites (customers, who are allowed to consume). First thing would be done with an internal identification of the clients (like a password protection). This is, what normally is hacked sooner or later, if you're service is of interest, so you'll always have to update it from time to time...