Security DNA is all things in your code that impact the security of the code.
This includes what the code does (its execution space), flow and treatment of data, dependencies used, and vulnerabilities. ShiftLeft maps how all sensitive data is flowing in-transit from applications to data sinks, and whether it is being securely handled, down to the line of code. Rather than leveraging a known vulnerability list such as CVE, ShiftLeft identifies vulnerabilities using modern code analysis techniques.
The ShiftLeft Microagent does not run as its own process, and instead executes along with your app in it’s execution environment. So, when you containerize your application, the microagent is embedded in the container.
ShiftLeft creates a scale out code property graph from analyzing your code. The graph is similar to a social network. But, instead of humans connected to humans and exchanging information, the ShiftLeft graph consists of functions in the source code that are connected to each other and exchanging information about data and flow semantics. This graph is an internal construct (not exposed to the user) and is stored in a very secure tenant for the organization, with encryption at rest. Code property graph evolves with code. Security DNA is derived from this graph every time a new version of application is created. Informed by the Security DNA, runtime instrumentation is built in a bespoke manner for each version of your application. The ShiftLeft Microagent uses this configuration to monitor runtime behavior and detect when it deviates from the norm.
|Categories||Security > Security Management and Analytics|
Use of the SDxCentral service directory is governed by our Terms of Service, including without limitation those sections under the headings "CONTENT", "LICENSING AND OTHER TERMS APPLYING TO CONTENT POSTED ON THE SDXCENTRAL SITES", "INDEMNITY; DISCLAIMER; LIMITATION OF LIABILITY" AND "COPYRIGHTS". Under no circumstances will SDxCentral be liable in any way for any Content, including, but not limited to, liability for any errors or omissions in any Content or for any loss or damage of any kind incurred as a result of the use of any Content posted, emailed or otherwise transmitted via the Sites.