When talking about app security, the use of RAST tool, substitute any other security control, is a valuable add-on, or it is not valuable at all?

164 views23 Upvotes4 Comments

Sort by:

IT Governance Consultant in Government2 years ago

To clarify, it seems you are referring to RASP (Runtime Application Self-Protection) tools. RASP tools should be viewed as complementary to other security controls rather than replacements. Typically, they are integrated into the application during the development or deployment phases. The decision to use a RASP tool should be based on a thorough assessment of the application's specific requirements and risk profile.

1 1 Reply

no title2 years ago

thanks for the answer.

Enterprise Security & Risk Management Architect in Insurance (except health)2 years ago

By RAST are you referring to Regression or Risk? There are a couple of RASTs in this space.

1 1 Reply

no title2 years ago

I was referring to RASP.

Content you might like

Which pitfalls—model bias, false positives/negatives, data quality, regulatory constraints—often impede AI-based security tools, and how can they be mitigated in a financial-services context?

I'm trying to understand what experiences others have had with Dionach. How thorough are their annual testing practices and outcomes, ideally relative to other players in the marketplace? To what extent are they likely to find all the risks and vulnerabilities in that testing?

Which GenAI use cases provide you with the most value in Cybersecurity Operations?

What password security measures do you currently follow?

I use a different complex password for each account and change them regularly23%

I use a complex password for all my accounts and change them regularly46%

I use a simple password for all my accounts but change them regularly19%

I use the same password for all my accounts but change them regularly8%

I use a simple password for all my accounts and rarely change them1%

View Results

Which vendor risk management solution do you consider as the leading option for your business to conduct security assessments of your vendors?

RSA Archer13%

MetricStream31%

OneTrust36%

BitSight14%

Prevalent1%

VISO Trust1%

Others (comment)1%

View Results

When talking about app security, the use of RAST tool, substitute any other security control, is a valuable add-on, or it is not valuable at all?

Sort by:

Content you might like

Which pitfalls—model bias, false positives/negatives, data quality, regulatory constraints—often impede AI-based security tools, and how can they be mitigated in a financial-services context?

I'm trying to understand what experiences others have had with Dionach. How thorough are their annual testing practices and outcomes, ideally relative to other players in the marketplace? To what extent are they likely to find all the risks and vulnerabilities in that testing?

Which GenAI use cases provide you with the most value in Cybersecurity Operations?

What password security measures do you currently follow?

Which vendor risk management solution do you consider as the leading option for your business to conduct security assessments of your vendors?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

CrowdStrike Outage: Impact And Recovery

IT and Infosec Collaboration on Vulnerability Patching

Hybrid Infrastructure

Generative AI for Supply Chain: Usage, Expectations & Roadblocks

Managing Burnout During a Supply Chain Crisis

Take Your Insights On-the-Go