Interactive Vulnerability Analysis Enhancement Results

Abstract

Interactive Application Security Testing (IAST) is an innovative new approach to application security vulnerability detection. This investigation focused on making performance improvements to this technology to allow deployments of the technology in production systems, to enable automatic generation of protection rules for the vulnerabilities discovered, and expanding the range of applications supported from JavaEE web based applications to other non-web based Java programs. Technology developed in this effort should be generally applicable to other IAST tools.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Dec 01, 2012
Accession Number
ADA568544

Entities

People

  • Arshan Dabirsiaghi
  • Jeff Williams

Tags

Communities of Interest

  • Cyber
  • Energy and Power Technologies
  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Air Force
  • Air Force Research Laboratories
  • Application Software
  • Central Processing Units
  • Commerce
  • Computer Program Documentation
  • Computer Programming
  • Computers
  • Detection
  • Detectors
  • Intrusion Detection Systems
  • Intrusion Detectors
  • Robotics
  • Security
  • Web Applications
  • Web Service
  • Word Processors

Fields of Study

  • Computer science

Readers

  • Critical Infrastructure Protection in CBRN and WMD Threats.
  • Database Systems and Applications
  • Systems Analysis and Design