all InfoSec news
Comparing Effectiveness and Efficiency of Interactive Application Security Testing (IAST) and Runtime Application Self-Protection (RASP) Tools in a Large Java-based System. (arXiv:2312.17726v1 [cs.CR])
cs.CR updates on arXiv.org arxiv.org
Security resources are scarce, and practitioners need guidance in the
effective and efficient usage of techniques and tools available in the
cybersecurity industry. Two emerging tool types, Interactive Application
Security Testing (IAST) and Runtime Application Self-Protection (RASP), have
not been thoroughly evaluated against well-established counterparts such as
Dynamic Application Security Testing (DAST) and Static Application Security
Testing (SAST). The goal of this research is to aid practitioners in making
informed choices about the use of Interactive Application Security Testing
(IAST) …
application application security application security testing cybersecurity cybersecurity industry efficiency emerging guidance iast industry interactive application security testing java large protection rasp resources runtime runtime application self-protection security security testing system techniques testing tool tools types