Send message to

Do you want to send the message without a subject?
Please note that your message can be maximum 1000 characters long
Special characters '<', '>' are not allowed in subject and message
reCaptcha is invalid.
reCaptcha failed because of a problem with the server.

Your message has been sent

You can find the message in your personal profile at "My messages".

An error occured

Please try again.

Make an appointment with

So that you can make an appointment, the calendar will open in a new tab on the personal profile of your contact person.

Create an onsite appointment with

So that you can make an onsite appointment, the appointment request will open in a new tab.

Make onsite appointment
itsa 365: Two persons in front of a flip chart, name of the white paper
  • Whitepaper
  • Network and Application Security

Read the technical contribution

Automated security testing within the DevOps processes has to be supplemented with tests in the production environment in order to fully assess the app's performance.

Coming Soon
Coming Soon
Function NürnbergMesse GmbH

close

This content or feature is available to the it-sa 365 community. 
Please register or log in with your login data.

Logo Rapid7
sponsored by Rapid7
An essential element of the DevOps approach is the integration of security tests in an early phase of the software development lifecycle (SDLC). The aim is to identify weak points in new applications at an early stage and to eliminate them cost-effectively before deployment. However, agility and speed are often more important than security in real development teams. In addition, web applications in particular are usually subject to frequent changes and are also attacked through increasingly sophisticated methods.

It is therefore necessary to test extensively after the deployment in order to get feedback about the behavior of the application in the real world, especially in regards to functionality, performance, error tolerance and user experience. Based on the traditional approach, in which special security teams test applications before deployment, the white paper describes the testing concepts of Shift Left (early in the SDLC) and Shift Right (in the production environment) and explains how these have a positive effect on application security, defining a new, iterative software development lifecycle.

 

A document on this subject is available in German. Would you like to read it? Switch to the German view.

You might also be interested in

Robot arms above empty assembly line
12/14/2022
ICS: Prepared against hazards for industrial plants

Vulnerabilities in automated industrial controllers: Networked industrial controllers and industr...
achelos - company-wide public key infrastructure
9/19/2022
Setting up a company-wide public key infrastructure (PKI) for Phoenix Contact

Phoenix Contact aims to provide standardised cybersecurity in products and industrial solutions t...
it-sa Expo - Zero Trust Technology | BSI, Bitkom, BSKI
9/12/2022
Are recent technologies like zero trust or micro-segmentation appropriate to win the battle against hackers?

Successful attacks are on the rise. Which technologies could become a standard weapon in the corp...
Abstrakter Hintergrund und Cybercecurity
5/7/2021
Cybersecurity - The line of defense against Internet threats

Cyber attacks are no longer science fiction scenarios. Cybersecurity protects governments, organi...
A yellow warning symbol (triangle with exclamation mark) and the words
4/8/2021
The office computer as a weak point

On the PC, the race between attackers and defenders is at its fiercest. Manufacturers of endpoint...
close

This content or feature is available to the it-sa 365 community. 
Please register or log in with your login data.