- Listen to our monthly AppSec Stats Flash podcast
- LEARN MORE
Runtime Application Self Protection (RASP) is a security technology designed to control an application’s execution detecting and preventing attacks as they occur. The technology is built into a web application’s runtime environment, rather than monitoring from outside of the application. When a threat, fault, or other prescribed condition is identified, the RASP system will reconfigure the application, repairing vulnerabilities. RASP analyzes the application for its behavior and the context of that behavior, enabling immediate responses. And, unlike a firewall, RASP can see traffic processing inside an application.
Runtime Application Self Protection works on web and non-web applications without impacting the design. Because RASP is built into the application, each application must be separately protected. Although the increase in security may be worth it, some applications may experience a degree of performance degradation using RASP.
RASP is important as it isdesigned to detect attacks on an application in real time. When an application begins to run, RASP can protect it from malicious input or behaviour by analyzing both the app's behaviour and the context of that behaviour. By using the app to continuously monitor its own behaviour, attacks can be identified and mitigated immediately without human intervention.
RASP can both detect and block attacks on applications in real time.Because RASP instruments in the application at runtime, it has visibility into the application’s actual behavior. Instead of analyzing present signatures or known patterns based on commonly known attacks, as a web application firewall (WAF), RASP can look for suspicious actions within the application, this can cut down false positives.