Application Security Terminology

Glossary

Runtime Application Self Protection (RASP)

Runtime Application Self Protection (RASP) is a security technology designed to control an application’s execution detecting and preventing attacks as they occur. The technology is built into a web application’s runtime environment, rather than monitoring from outside of the application. When a threat, fault, or other prescribed condition is identified, the RASP system will reconfigure the application, repairing vulnerabilities. RASP analyzes the application for its behavior and the context of that behavior, enabling immediate responses. And, unlike a firewall, RASP can see traffic processing inside an application.

Runtime Application Self Protection works on web and non-web applications without impacting the design. Because RASP is built into the application, each application must be separately protected. Although the increase in security may be worth it, some applications may experience a degree of performance degradation using RASP.