Gartner Research

Hype Cycle for Application Security, 2016

Published: 13 July 2016

ID: G00289756

Analyst(s): Ayal Tirosh


Applications, not the infrastructure, represent the main attack vector for data exfiltration. As organizations lose more control over their infrastructure with trends like mobility and cloud, applications become one of the last control points for imposing the organization's security policy.

Table Of Contents


  • What You Need to Know
  • The Hype Cycle
  • The Priority Matrix
  • Off the Hype Cycle
  • On the Rise
    • Application Vulnerability Correlation
    • User and Entity Behavior Analytics
    • Crowdsourced Security Testing Platforms
    • Mediated APIs
  • At the Peak
    • Format Preserving Encryption
    • Mobile Threat Defense
    • Runtime Application Self-Protection
    • Mobile Application Hardening
  • Sliding Into the Trough
    • Protected Mobile Browsers
    • Enterprise Mobile App Stores
    • DevSecOps
    • Application Shielding
    • Dynamic Data Masking
    • Cloud Access Security Brokers
    • Interactive Application Security Testing
    • Mobile Application Security Testing
  • Climbing the Slope
    • SOA Testing
    • Software Composition Analysis
    • Application Security Professional Services
    • Database Audit and Protection
    • Tokenization
    • Application Security as a Service
    • Web Application Firewalls
    • Application Control
    • Application Obfuscation
    • Static Data Masking
  • Entering the Plateau
    • Static Application Security Testing
    • Fraud Detection
    • SIEM
    • Dynamic Application Security Testing
    • Mobile Data Protection for Workstations
  • Appendixes
    • Hype Cycle Phases, Benefit Ratings and Maturity Levels

Gartner Recommended Reading

©2021 Gartner, Inc. and/or its affiliates. All rights reserved. Gartner is a registered trademark of Gartner, Inc. and its affiliates. This publication may not be reproduced or distributed in any form without Gartner’s prior written permission. It consists of the opinions of Gartner’s research organization, which should not be construed as statements of fact. While the information contained in this publication has been obtained from sources believed to be reliable, Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartner research may address legal and financial issues, Gartner does not provide legal or investment advice and its research should not be construed or used as such. Your access and use of this publication are governed by Gartner’s Usage Policy. Gartner prides itself on its reputation for independence and objectivity. Its research is produced independently by its research organization without input or influence from any third party. For further information, see Guiding Principles on Independence and Objectivity.

Already have a Gartner Account?

Purchase this Document

To purchase this document, you will need to register or sign in above

Become a client

Learn how to access this content as a Gartner client.