ποΈ Feature Overview
ASPM is a brand-new application security posture management platform that helps applications capture and block malicious attack behaviors during runtime, including common security vulnerabilities such as SQL injection, deserialization, memory shells, etc. It provides real-time monitoring and protection for applications deployed on servers and Kubernetes. Based on the newly designed Agent architecture on top of performance monitoring, the system provides comprehensive data collection capabilities.
ποΈ Glossary
This document defines and explains key terms in the Application Security system to facilitate unified understanding and communication.
ποΈ Core Advantages
Under modern cloud-native and microservices architectures, traditional security protection methods can no longer meet the security requirements of runtime applications.
ποΈ Functional Architecture
- Agent: Application Agent, runs within user applications, responsible for code instrumentation and raw data collection.
ποΈ How ASPM Works
The Agent adopts a two-tier architecture, including the Agent component running on monitored applications and the Collector component running on independent servers. The Agent component is responsible for code instrumentation and raw data collection of applications. All collected information is transmitted directly to the Collector via local area network, where the Collector performs data statistics and correlation, and ultimately reports to the platform's data center.