Neil MacDonald

A member of the Gartner Blog Network

Entries Categorized as 'Applications'


The Market for Dynamic Application Security Testing is Anything but Static

by Neil MacDonald  |  January 4, 2012  |  1 Comment

We’ve just published a new Magic Quadrant for Dynamic Application Security Testing (DAST) for Gartner clients. In Gartner research, we use the term DAST to refer to testing solutions and techniques that are designed to test an application from the “outside in” to detect conditions indicative of a security vulnerability in an application in its […]

1 Comment »

Category: Application Security Applications Cloud Cloud Security     Tags: , ,

Protecting Intellectual Property in Source Code Requires a Two Prong Strategy

by Neil MacDonald  |  August 5, 2011  |  1 Comment

I had a discussion with a client today looking to protect sensitive intellectual property in their source code. I discussed two primary areas of risk: 1) that the developers (some of which were offshored) might take the code and 2) once the code was distributed to customers, it might be reverse engineered or copied Addressing […]

1 Comment »

Category: Application Security Applications Information Security     Tags: , , ,

Static or Dynamic Application Security Testing? Both!

by Neil MacDonald  |  January 19, 2011  |  6 Comments

Static application security testing (SAST) can be thought of as testing the application from the inside out – by examining its source code, byte code or application binaries for conditions indicative of a security vulnerability. Dynamic application security testing (DAST) can be thought of as testing the application from the outside in – by examining […]

6 Comments »

Category: Application Security Applications     Tags: , , ,