WhiteHat Security unveiled that new, artificial intelligence (AI) software is being added to WhiteHat Sentinel Dynamic, its dynamic application security testing (DAST) solution, which draws from a data lake of 95 million identified vulnerabilities.
The enhancements will enable WhiteHat to deliver the accuracy which can be achieved through automated testing with additional human verification.
Human verification is always available to WhiteHat clients, the company will now offer AI-enabled verification, taking just seconds. This will empower developers to create secure web applications at the fast pace demanded by modern businesses.
AppSec teams are constantly caught between the need to keep pace with security testing and the ability to allow developer teams to operate in the DevOps environment.
AI software will decrease threat vector identification times and improve the efficiency of false positive identification.
As a result, enterprises will increase the speed at which developers are made aware of potential application security vulnerabilities and deliver real-time security risk assessments.
“Our new AI-based digital security technology directly addresses the biggest current challenge for DevSecOps— getting new applications to market at the pace demanded by business while thoroughly assessing potential security risks,” said WhiteHat Security CEO Craig Hinkley.
“This is important given the growing pressure to get applications into production in real time. When time is of the essence, it’s easy for developers to skip key security risk assessment procedures, but due to the speed and accuracy delivered by our AI-based offering, they can hit their tight production deadlines and still carry out comprehensive application security vulnerability checks.”
The new AI capabilities complement WhiteHat Sentinel Dynamic’s risk assessment and enhance its ability to scan for vulnerabilities and potential code changes.
Sentinel Dynamic customers will continue to have access to WhiteHat’s Threat Research Center (TRC) security experts.
“451’s recent study, Voice of the Enterprise AI & Machine Learning: Adoption, Drivers and Stakeholders, 1H 2018, reveals that security is the second most important reason for applying machine learning in enterprises, and enterprises see it as a key use case for the next 2-3 years,” said Daniel Kennedy, research director, Voice of the Enterprise: Information Security with 451 Research.
“By applying programmatic techniques to the application vulnerability verification process, WhiteHat has leveraged its years of experience in application vulnerability management to augment human verification, saving staff time, which is in extremely short supply in the security space.”