RASP

Definition

Runtime Application Self-Protection (RASP) is a security technology that is integrated into an application to provide real-time protection against threats. It operates by monitoring the application’s behavior and context during execution, allowing it to detect and block attacks such as SQL injection, cross-site scripting (XSS), and other vulnerabilities. RASP works from within the application, providing a more granular level of security by understanding the application’s logic and data flow.

Secure Settings Example

{
  "rasp": {
    "enabled": true,
    "protection_modes": {
      "sql_injection": "block",
      "xss": "block",
      "command_injection": "block"
    },
    "logging": {
      "level": "info",
      "destination": "/var/log/rasp.log"
    }
  }
}

Insecure Settings Example

{
  "rasp": {
    "enabled": false,
    "protection_modes": {
      "sql_injection": "log",
      "xss": "log",
      "command_injection": "log"
    },
    "logging": {
      "level": "debug",
      "destination": "/var/log/rasp.log"
    }
  }
}