RASP Adoption: A View From The Trenches

Presented by

Goran Begic, VP of Product at IMMUNIO

About this talk

Runtime Application Self-Protection (RASP) is one of the newest technologies coined by Gartner and it is in early stages of adoption in the industry. It promises dynamic defense and automatic mitigation of vulnerabilities in web applications. This webinar will provide an overview of buying criteria and evaluation requirements across different industries and some typical pitfalls that can slow down adoption. After the introduction and a brief overview on the technology the audience will be invited to participate in discussion about organizational requirements for adoption and operationalization of RASP. Questions for discussion: • My application is under attack. What actions should I take? Who owns the response? • Which attacks should I respond to and which ones can I ignore? • How to get started with mitigation provided by technology? • Does RASP fit with DevOps? • Does RASP help with remediation? This is an objective discussion about RASP. Evaluation criteria, comparison of RASP with IAST and other security technologies, personal experiences and examples discussed in this talk are generally applicable to all RASP solutions. Key takeaways: At the end of the presentation you will: • Get a better understanding of requirements for evaluation of RASP and its use cases, • If you can pull a successful evaluation alone, or if you will need participation of other groups / teams • Learn about critical criteria for success of RASP in production • How this criteria different relative to appsec testing tools.

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (9)
Subscribers (1217)
IMMUNIO provides automatic detection and protection against application security vulnerabilities through real-time application self-protection (RASP). IMMUNIO augments applications with the necessary protection services and hardens applications against common attacks targeting typical security weaknesses. This channel highlights a transformative approach to make truly effective real-time web protection technology easily available and widely deployed, and by doing so, stop the biggest source of breached data records.