From CISO Marketplace — the hub for security professionals Visit

RASP

Data Protection

Definition

Security technology that's embedded into an application to detect and block attacks in real-time.

Technical Details

Runtime Application Self-Protection (RASP) is a security solution that is integrated directly into an application environment. Unlike traditional security measures that operate outside of the application, RASP provides protection from within by monitoring application behavior and analyzing the context of requests. It uses instrumentation to understand the application's logic, enabling it to detect anomalies, block potentially malicious activity, and even provide insights for remediation. RASP is capable of identifying attacks such as SQL injection, cross-site scripting (XSS), and other application-layer threats in real-time, allowing for immediate defensive actions.

Practical Usage

RASP is commonly used in enterprise environments where applications require enhanced security measures, particularly those that handle sensitive data or are exposed to the internet. It can be implemented in various software development life cycle stages, from development to production, allowing for continuous monitoring and protection. Organizations often deploy RASP solutions alongside other security measures like Web Application Firewalls (WAFs) and traditional security testing tools to create a layered security approach. RASP can also assist in compliance with regulations such as GDPR or PCI-DSS by ensuring that applications are protected against known vulnerabilities.

Examples

Related Terms

Web Application Firewall (WAF) Static Application Security Testing (SAST) Dynamic Application Security Testing (DAST) Intrusion Detection System (IDS) Vulnerability Management
← Back to Glossary