Runtime Application Self-Protection (RASP)

Simple Definition for Beginners:

Runtime Application Self-Protection (RASP) is a security technology that automatically detects and blocks cyber threats while an application is running.

Common Use Example:

A RASP tool installed in an e-commerce website helps detect and block attacks in real-time, such as SQL injections or cross-site scripting, ensuring customer data remains safe.

Technical Definition for Professionals:

Runtime Application Self-Protection (RASP) is an advanced security measure integrated into an application that continuously monitors its behavior and context in real time. Unlike traditional security measures, RASP operates from within the application, providing protection by detecting and mitigating threats as they occur. It uses various techniques, such as:

• Contextual Analysis: Understanding the application’s runtime environment to distinguish between legitimate and malicious actions.
• Behavioral Monitoring: Observing the application’s behavior to identify anomalies and potential attacks.
• Code Instrumentation: Embedding security controls directly into the application code to provide real-time threat detection and response.
• Threat Mitigation: Automatically blocking or neutralizing threats without human intervention.