Application Security Testing (AST) 2020 and beyond

Application Security Testing (AST) 2020 and beyond is always a good topic for address new users and sharing for what is going on for existing user. For those who follow the Gartner application security testing (AST) report will noted for 2018,2019 focus on DevSecOps, and lot of single point solution vendor is all delist from the report coverage.

We also saw the IBM Application Security portfolio had change hand, follow HP sold off enterprise software business (include Fortify portfolio).

For the dynamic applications security testing (DAST) pure play vendor, delist due to no match the DevSecOps trends where enterprise customer look for faster turnaround time for the application to the market cycle time.

Mobile application security testing (Mobile AST) weight is reduce, and no more in as the key focus. For those who in the process for founding the right match for the own need, make notice for the change in the market landscape and be noted for what is coming for the offering.

Please do not forgot the bigger trend endpoint protection platform (EPP) is underway consolidate AST technology into the single unified offering. So the market vendor is in the attempt to conversion customer into their enterprise grade unified product portfolio to slowdown the impact for that.

You will not surprise to saw the vendor in traditional host or IP based vulnerability scanner entry into web application scanner; for the same, vendor in application scanner attempt to entry into host or IP based vulnerability scanner or bundled in their open source into their backend engine to make it more appeal for those who look for complete coverage of vulnerability.

We also saw the merging of DAST, SAST, IAST and Mobile AST offering provide by platform vendor, offering all the technology as option, all under single platform.

Sometime, point solution is the viable choice if you know what you want to achieve, instead of buying bundled of technology that you nice to have, but never utilized them at all.

Feel free to contact E-SPIN for your operation or project need, E-SPIN will able to provide solution that viable for your situation to fulfill your cost/budget requirement.