New Relic Announces General Availability of IAST with Industry’s First Proof-of-...

Thursday, 14 March 2024 13:29

New Relic Announces General Availability of IAST with Industry’s First Proof-of-Exploit Reporting for Application Security

By New Relic

Security and engineering teams can now save time by focusing on real application security problems with zero false positives, as validated by the OWASP benchmark result of 100+% accuracy.

New Relic, the all-in-one observability platform for every engineer, launched new capabilities for New Relic IAST (Interactive Application Security Testing), including proof-of-exploit reporting for application security testing. New Relic customers can now identify exploitable vulnerabilities with a unique-in-the-industry ability to reproduce the problem and remediate the specific threat vector before shipping new code. This enables security and engineering teams to focus on real application security problems with zero false positives, as validated by the OWASP benchmark result of 100% accuracy.

Developers often face a flood of security alerts from legacy code scanners and are then forced to manually investigate them. Engineers can spend up to 60% of their development time triaging vulnerabilities that pose little risk to the business while exploitable vulnerabilities are not fixed. This builds frustration and friction, hampering their ability to focus on writing and shipping quality applications. Proof-of-exploit reporting categorises applications as safe, exploitable, or untested, helping engineers quickly identify vulnerabilities and make informed decisions on which app to deploy to production or retest. With instant feedback on security issues during the development cycle, security and engineering teams can come together to securely and quickly ship code.

“Security must be ingrained in the development culture, not just added on. New Relic IAST offers engineering and IT teams the ability to identify real application security risks with the same platform they use to monitor application performance,” said New Relic Chief Product Officer Manav Khurana. “It strengthens DevSecOps by bringing developers and security teams together to write secure code that defends against the threats of tomorrow and promotes a proactive stance on security. For well over a decade, the New Relic full-stack observability platform has bridged organisational silos by providing a single, trusted source of truth and unified user workflows – and now New Relic IAST furthers this mission.”

New updates include:

Proof-of-exploit reporting: Find, fix, and verify exploitable vulnerabilities with dynamic assessment capabilities that pinpoint the API calls, method calls, and traces with vulnerabilities by simulating real-world attacks.

Secure by design: The new risk exposure and assessment feature provides visibility into every code change showing potential vs. detected exposures so developers can quickly replicate, remediate, and validate fixes.

Instant ROI: New Relic IAST is the only application security solution available out of the box in a full consumption model, so users no longer pay for security shelfware that can take months to deploy.

Instant Impact Analysis: Know the number of applications impacted by a vulnerability and the potential severity of the identified risk with APM telemetry integrated with vulnerability management.

IAST is native to the New Relic all-in-one observability platform, which eliminates the need for additional agents, and it is now generally available in a usage-based pricing model. Get started by contacting your New Relic account representative or sign up for a free account. Existing users can activate their preview by logging into their New Relic account today. Legacy and site license accounts must migrate to consumption billing for preview access.

For more information on New Relic IAST, please check out our:

Read 367 times

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here
BACK TO LATEST NEWS here

ELASTICON SYDNEY 2024 LATEST ADVANCEMENTS IN GENERATIVE AI

On 20 February, keynote addresses from NAB, Canva, AWS, and Google Cloud, among others, will feature at ElasticON Sydney 2024.

This event will explore the latest advancements in generative AI

The one-day conference, hosted by leading search analytics company Elastic, will include networking drinks, hands-on labs, technical sessions and a stellar line-up of keynote speakers from finance, technology, and government e=sectors.

ElasticON Sydney 2024 promises to be an enriching experience with a comprehensive exploration of the latest developments in security, observability, generative AI and their real world applications

Don't miss out on this opportunity to network and find answers for what's next from your industry peers and leaders

Register for ElasticON Sydney 2024

PROMOTE YOUR WEBINAR ON ITWIRE

It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://itwire.com/itwire-update.html and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV https://www.youtube.com/c/iTWireTV/videos which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.

MORE INFO HERE!