Checkmarx Unveils Hybrid SAST Engine to Bolster AppSec in AI-Driven Landscape
Checkmarx, a prominent player in the application security testing space, has revamped its core engines to better tackle the evolving threats in the artificial intelligence (AI) era.
The new hybrid scanning engine is designed to address the vulnerabilities that can arise from the integration of AI and machine learning (ML) technologies into software applications. As these components become increasingly embedded in modern apps, the risk of security breaches and data leaks grows.
Fusing Static and Dynamic Scanning
The hybrid approach combines the strengths of static application security testing (SAST) and dynamic application security testing (DAST). SAST analyzes the source code of an application to identify potential flaws, while DAST simulates user interactions to detect vulnerabilities in real-time.
Checkmarx’s re-engineered SAST engine uses AI and ML algorithms to improve the accuracy and speed of vulnerability detection. This new capability will allow developers to identify and address security issues earlier in the development process, reducing the risk of costly remediation later on.
Improved Accuracy and Reduced False Positives
By leveraging AI and ML, the hybrid engine aims to minimize false positives and improve the overall accuracy of vulnerability detection. This is a critical requirement in today’s development landscape, where developers are often faced with a multitude of security alerts and must prioritize their efforts accordingly.
What this means: As AI and ML become increasingly integral to software development, it’s essential for security testing tools to keep pace. Checkmarx’s revised SAST engine marks a significant step in this direction, enabling developers to build more secure applications in the AI era.
