Source: devops.com
What Runtime Application Self-Protection (RASP) Doesn’t SolveCategory: Business, Database, Security, shell, artificial-intelligence
RASP, or Runtime Application Self-Protection, is a modern security technology that protects web applications from attacks during runtime. The technology is an important complement to defense systems that focus on the perimeter, but RASPs also have weaknesses that can introduce their own vulnerabilities.
Gartner defines RASP as “a security technology that is built or linked into an application or application runtime environment and is capable of controlling application execution and detecting and preventing real-time attacks.”
RASP provides visibility into how an application is being attacked, providing better intel and alerting security personnel and developers to the exact vulnerable code.
When the application’s behavior changes, it’s no problem for RASP to adapt because the security is based on the application and not on a set of predefined rules and educated guesses.
Gartner defines RASP as “a security technology that is built or linked into an application or application runtime environment and is capable of controlling application execution and detecting and preventing real-time attacks.”
RASP provides visibility into how an application is being attacked, providing better intel and alerting security personnel and developers to the exact vulnerable code.
When the application’s behavior changes, it’s no problem for RASP to adapt because the security is based on the application and not on a set of predefined rules and educated guesses.
Related Articles
Community Partners
DevOps Careers