Application Security: Why Prevention Beats Remediation

By : Hillel Solow | Monday, April 05 2021 - 18:15 IWST

Aplication Security
Aplication Security - Prevention of risk is top of mind for many in both our personal and professional lives. This holds true now more than ever with not only the COVID-19 pandemic but also the proliferation of attack vectors targeting our personal and business information.

The questions then becomes, how do we consider the “prevention is better than cure” approach when thinking about the security of our applications? In general, runtime security involves deploying applications that may or may not be at risk, while concurrently running complex and costly agents in an attempt to (possibly) mitigate the risks.

What if security and development teams shifted their mindsets to address the possibility of deploying applications built to minimise risks? What if we configured applications in a way that removed bad packets and the need for packet filtering?

These concepts have been around for years, but not all organisations have been quick to adopt them.

Here are four reasons why your organisation should adopt a security practice based on prevention rather than detection:

1. Lower your risk level

The traditional “detect & remediate” model is limiting because there is an inherent lag between deploying an application and remediating any detected vulnerabilities. While many security organisations are sophisticated enough to detect vulnerabilities or breaches, it takes an additional costly level of expertise to remediate them. With so many tools on the market, organisations often lack employees who proficient in a specific platform or tooling. Whether the remediation entails additional security vendors or attention from internal stakeholders with specific expertise, any lag will come at cost of hiring the right expert or finding the right tool.

2. Align all stakeholders towards timely deliveries

In prevention mode, an organisation cannot deploy an application without it being built with security in mind. Everyone’s priority becomes security-centric code. This is a total contrast with the “detect & remediate” approach where once an application has been deployed, it is the security organisation’s responsibility to gather the necessary stakeholders to plan and execute the remediation process. Prevention allows the engagement and alignment of all stakeholders (i.e. security, compliance, development) within an organisation before deployment.

3. Reduce costs

Imagine the disruption involved with fixing something that has already been deployed – the time and resources it takes to test, re-deploy, and communicate the fix with your customers. At the end of the day, remediation always involves disruption and that’s just not good for business.
By lowering the overall disruption imposed on organisations and customers, a prevention approach enables enterprises to optimise all of their resources. Too many security organisations have had to pick their battles in the current status quo, by configuring security thresholds in order to maintain production levels. It is faster and more cost effective to write code that is secure to begin with.
Rather than having a developer fix something post-deployment, it is much more efficient for the DevOps team to tweak code so the application passes security checks.

4. Lower false positives

When logic is applied to the application in staging, customers remain un-impacted. This is because overzealous blocking has ceased - reducing the number of false alerts, (better known in the industry as “false positives”) and its related costs.
Blocking too enthusiastically on a live application means that too many customers will be impacted with interruptions, until someone in security creates an exception to the rules.

With logic, Artificial Intelligence and Machine Learning are combined with customer exceptions to provide better outcomes and highlight the security and compliance alerts that matter.

It’s no secret that in a cloud environment more of your risk comes from configuration mistakes such as bad code or network configurations. Many vulnerabilities exist because of the lack of synergy, and subsequent misconfigurations, between DevOps and security.

It is important for these teams to Shift Left and develop tooling and templates that apply the security and compliance parameters needed early in development, have them scanned throughout the lifecycle, and remediate any gaps — automatically.

Detection after the fact is an important first step, but now is the time to figure out how much you can understand about the security of your code, and leverage tools, before you deploy and shift the code into your pipeline.

News Comment

Today's Industry

Minister of Tourism and Creative Economy Sandiaga Uno (19/04/2021).

Selasa, 20 April 2021 - 21:00 WIB

Vaccination Can Rebuild Creative Economy: Tourism Minister

Minister of Tourism and Creative Economy Sandiaga Uno has expressed optimism that vaccination program for creative economy actors will boost productivity and rebuild creative economy sector.

President Jokowi inspecting vaccination for artists and cultural practitioners accompanied,(Photo: Bureau of Press, Media, and Information of Presidential Secretariat/Lukas

Selasa, 20 April 2021 - 20:40 WIB

Health Minister: Stay Vigilant, Disciplined in Observing Health Protocols

Minister of Health Budi Gunadi Sadikin Monday (19/04) inspected vaccination for artists and cultural practitioners at the Indonesia National Gallery in Central Jakarta along with President Joko…

President Jokowi chairs a Limited Meeting on Handling of COVID-19 Pandemic ahead of Eid Al-Fitr 1442 Hijri, at the Merdeka Palace, Jakarta, Monday (19/4). (Photo by: PR of Cabinet Secretariat/Agung)

Selasa, 20 April 2021 - 20:05 WIB

Gov’t to Boost Community Economy through Religious Festivity Allowance, Social Protection

The Government has announced that it will continue to maintain the balance of COVID-19 handling and national economic recovery, including during the holy month of Ramadan and Eid Al-Fitr 1442…

Minister of Health Budi G. Sadikin (19/04/2021). (Photo by: PR of Cabinet Secretariat/Agung)

Selasa, 20 April 2021 - 19:55 WIB

Despite Vaccination, Stay Disciplined in Observing Health Protocols: Health Minister

Indonesia can learn from India on why the number of COVID-19 cases is rising despite successful vaccination there, according to Minister of Health Budi G. Sadikin.

Coordinating Minister for Economic Affairs Airlangga Hartarto, accompanied by Minister of Religious Affairs Yaqut Cholil Qoumas and Minister of Health Budi G. Sadikin

Selasa, 20 April 2021 - 19:15 WIB

Gov’t Extends Micro-Scale Restrictions to 3 May

The activity restrictions (PPKM) and micro-based activity restrictions (PPKM Mikro) policies that have been implemented since last January have been effective in controlling the spread of COVID-19,…