Under the hood with Static Analysis – What is actually happening

Presented by

ERIK COSTLOW, Principal Product Evangelist, Contrast Security

About this talk

Do you use static analysis and want a better understanding of how it works? This technical webinar will walk through the basics that support the static analysis field, such as semantic analysis and how dataflow works between source and sink. We will walk through the model structure that is built, how it is queried, and how it is impacted by different development techniques. At the end of this webinar, attendees will be able to better understand what factors in to the quality of results. Questions this webinar will answer: What is the impact of microservices on analysis quality? As analysis traces data from source to sink, what exactly does it watch? How are frameworks and different architectures scoped and analyzed? What are techniques like inversion of control, dependency injection, and static/dynamic typing, and what impact do they have on code analysis?

Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (22)
Subscribers (4756)
Contrast Security is the leader in next-generation application security, embedding code vulnerability analysis and attack prevention directly into software through instrumentation. Contrast’s patented deep security instrumentation completely disrupts traditional application security approaches with integrated, comprehensive security observability that delivers highly accurate assessment and continuous protection of an entire application portfolio. This eliminates the need for disruptive scanning, expensive infrastructure workloads, and specialized security experts. The Contrast Application Security Platform accelerates development cycles, improving efficiencies and cost, and enabling rapid scale while protecting applications from known and unknown threats.