by Neil MacDonald | January 4, 2012 | 1 Comment
We’ve just published a new Magic Quadrant for Dynamic Application Security Testing (DAST) for Gartner clients. In Gartner research, we use the term DAST to refer to testing solutions and techniques that are designed to test an application from the “outside in” to detect conditions indicative of a security vulnerability in an application in its [...]
Category: Application Security Applications Cloud Cloud Security Tags: Application Security, application security testing tools, Cloud Security
by Neil MacDonald | August 5, 2011 | 1 Comment
I had a discussion with a client today looking to protect sensitive intellectual property in their source code. I discussed two primary areas of risk: 1) that the developers (some of which were offshored) might take the code and 2) once the code was distributed to customers, it might be reverse engineered or copied Addressing [...]
Category: Application Security Applications Information Security Tags: Application Security, Best Practices, Defense-in-Depth, Information Security
by Neil MacDonald | January 19, 2011 | 6 Comments
Static application security testing (SAST) can be thought of as testing the application from the inside out – by examining its source code, byte code or application binaries for conditions indicative of a security vulnerability. Dynamic application security testing (DAST) can be thought of as testing the application from the outside in – by examining [...]
Category: Application Security Applications Tags: Application Security, application security testing tools, Best Practices, Defense-in-Depth
