Supporting Programme 2019
YAGAAN - Leveraging artificial intelligence to identify source code vulnerabilities and potential data flows
Applying security and privacy by design principles to software application development is made possible from the very first line of code with using source code scanners. Based on static application security testing (SAST) technologies, they all face the same dilemna : finding the proper balance between reaching the highest true positive rate and lowering the false positive rate. Manual cumbersome work is often needed to qualify warnings and sort them out regarding their relevance.
YAGAAN developped a disruptive scanner to move that dilemna one step forward. Merging SAST with machine learning, the YAG-Suite enhances the efficiency of source code vulnerability detection.
The lecture will introduce to a couple of the benefits that AI-augmented SAST brings to application cyber risk assessment, among which : false positives reduction, private data exposure contextual detection, warnings prioritization, criticallity scoring…
--- Date: 08.10.2019 Time: 15:30 - 15:45 Location: Forum 10.1