Low-Level RASP - Protecting Applications Implemented in High-Level Programming Languages

Explore a 34-minute conference talk from Black Hat that delves into the concept of low-level Runtime Application Self Protection (RASP) for safeguarding applications built with high-level programming languages. Learn why RASP outperforms Web Application Firewalls (WAF) and Host-based Intrusion Prevention Systems (HIPS) in defending against application-level 0day vulnerabilities during emergency response situations. Discover how RASP's ability to access internal application context, such as stack, method, and parameters, enhances its defensive capabilities. Examine the challenges faced by enterprises where different business teams utilize various high-level programming languages, and understand the limitations of traditional RASP in providing comprehensive protection across multiple language environments. Gain insights from speakers Zhuonan Li, Qi Li, and Zimin Lin as they present innovative approaches to address these security challenges in modern software development landscapes.