Privacy policy

Our website uses cookies to give you the most optimal experience online by: measuring our audience, understanding how our webpages are viewed and improving consequently the way our website works, providing you with relevant and personalized marketing content.
You have full control over what you want to activate. You can accept the cookies by clicking on the “Accept all cookies” button or customize your choices by selecting the cookies you want to activate. You can also decline all non-necessary cookies by clicking on the “Decline all cookies” button. Please find more information on our use of cookies and how to withdraw at any time your consent on our privacy policy.

Managing your cookies

Our website uses cookies. You have full control over what you want to activate. You can accept the cookies by clicking on the “Accept all cookies” button or customize your choices by selecting the cookies you want to activate. You can also decline all non-necessary cookies by clicking on the “Decline all cookies” button.

Necessary cookies

These are essential for the user navigation and allow to give access to certain functionalities such as secured zones accesses. Without these cookies, it won’t be possible to provide the service.
Matomo on premise

Marketing cookies

These cookies are used to deliver advertisements more relevant for you, limit the number of times you see an advertisement; help measure the effectiveness of the advertising campaign; and understand people’s behavior after they view an advertisement.
Adobe Privacy policy | Marketo Privacy Policy | MRP Privacy Policy | AccountInsight Privacy Policy | Triblio Privacy Policy

Social media cookies

These cookies are used to measure the effectiveness of social media campaigns.
LinkedIn Policy

Our website uses cookies to give you the most optimal experience online by: measuring our audience, understanding how our webpages are viewed and improving consequently the way our website works, providing you with relevant and personalized marketing content. You can also decline all non-necessary cookies by clicking on the “Decline all cookies” button. Please find more information on our use of cookies and how to withdraw at any time your consent on our privacy policy.

Skip to main content

Application Security

Application security

What is application security?

  • Critical web applications have been subject for some time to an overall process of tracking, reporting and fixing security flaws at application level, inspired by initiatives like OWASP Top 10.
  • Application security is a very critical area to be incorporated in a complete cybersecurity strategy so that the vast amount of application errors are reported on time, thus reducing the software application attack surface.

Why it matters

  • Exploiting vulnerabilities in the application layer is a fertile ground for attackers. 90% of the security incidents is launched by exploiting the software design and/or the code of a software application.
Blue ball Green ball Yellow ball Red ball Purple ball Diagonal straight lines curves outlines X-labels-Years 0-2 years 2-5 years 5+ years Y-labels-Areas Application security

© Atos 2022 All rights reserved.

Maturity
0-2 years
2-5 years
5+ years
 

0-2 years

2-5 years

5+ years

The landscape

Real-time prevention

Support of mature technologies to the classic application security dimension of critical Internet exposed web portals, with

Static analysis: the source code analysis, performed to identify problems in the software. Dynamic analysis: the scanning process of an already packed application (i.e., an executable). Real-time protection: devoted to the scanning process in a real-time fashion, for instance via WAF.

Real-time prevention

The need to integrate application security into the entire application lifecycle

Evolutions in the application field require the various types of application security testing (Static, Dynamic, Interactive, Mobile, …) to be embedded into the Application Lifecycle Management tooling.

Heavy influencing of the most recent evolutions in application security on tooling to be used in the context of

• Integrated ALM with DevOps and DevSecOps
• Cloudification combined with containerisation and automation,
• Orientation toward API an microservices end goal of staying in front of the attackers for a change.

Key figures

37.5%

of those technologies are either already adopted by most organizations or will be in the next two years.

37.5%

of those technologies are expected to be adopted in the next 2 to 5 years cycle.

25%

of those technologies are transformational and wide spread adoption will take over 5 years.

Advanced Detection & Response

Cyber Incident Response

Identity & Access Management

Endpoint & Mobile Security

Network Security

Application Security

Cloud Security

Data Security