SAP SE revamps application security scanning using simulation and automation

The company recently launched a dynamic application security scanning system to detect vulnerabilities that could lead to data breaches, phishing and ransomware attacks, and insider threats. Called “FioriDAST,” the in-house project uses advanced automation to scan the company’s web-based applications while they are running and mimic the interactions of both end-users and attackers.

“With FioriDAST, we’re setting a new standard for application security with SAP,” says Vladislav Dexheimer, SAP Architect Expert. “We can now scan 600 web applications per day within the SAP S/4HANA Cloud and in other SAP product areas.” 

The limits of commercial application security scanning tools