Updated on 2024-09-25 GMT+08:00

Application Protection Overview

To protect your applications with RASP, you simply need to add probes to them, without having to modify application files.

Technical Principles

Probes (monitoring and protection code) are added to the checkpoints (key functions) of applications through dynamic code injection. The probes identify attacks based on predefined rules, data passing through the checkpoints, and contexts (application logic, configurations, data, and event flows).

Constraints and Limitations

  • To use application protection for a server, enable the HSS premium, web tamper protection, or container edition.
  • Application protection is only applicable to Java applications on based on JDK 8 Linux servers.

Process of Using Application Protection

Figure 1 Usage process
Table 1 Usage Procedure

Operation

Description

Enabling Application Protection

Enable application protection for a server to assess application security in real time.

Viewing Application Protection Events

Analyze triggered events, harden application protection measures, and improve application security.