[FREE REPORT] Take The Mystery Out Of AI For IT Operations (AIOps) Today! > Click Here

Static Application Security Testing (SAST)

Definition - What does Static Application Security Testing (SAST) mean?

Static application security testing (SAST) is a type of security testing that relies on inspecting the source code of an application. In general, SAST involves looking at the ways the code is designed to pinpoint possible security flaws.

[FREE REPORT] Take The Mystery Out Of AI For IT Operations (AIOps) Today! > Click Here

Techopedia explains Static Application Security Testing (SAST)

SAST is often contrasted with another term that is, in some ways, opposite to it: dynamic application security testing (DAST). The difference between these two is that, with SAST, testers read the source code. They look for logical flaws, such as a loophole in data control, something that a hacker could use to gain access to the system. In contrast, in DAST, testers do not look at the source code but perform behavioral testing instead — they run the application and look for flaws that way.

IT experts also differentiate between the two using the terms "white box testing" and "black box testing." SAST is white box testing because the source code for the application is available and transparent. That is what testers look at. In contrast, DAST is black box testing because the source code is not part of the equation. Instead, black box testers rely solely on the behavior of the application.

Tech moves fast! Stay ahead of the curve with Techopedia!

Join nearly 200,000 subscribers who receive actionable tech insights from Techopedia.

Related Articles

The Advantages of Virtualization in Software Development

Performance Testing: The First Line of Security Against Attacks

Why Do We Need User Acceptance Testing (UAT)?

Women in AI: Reinforcing Sexism and Stereotypes with Tech

The State of the Art and the Future of GDPR Compliance Software

National Aviation Day: Top 5 Ways AI and Aviation Can Reach New Heights

Featured Q&A

More of your questions answered by our Experts

Resources

Free Download: Machine Learning and Why It Matters

Free Download: Machine Learning and Why It Matters:

FREE DOWNLOAD: AI and ML in the Oil and Gas Industry

FREE DOWNLOAD: AI and ML in the Oil and Gas Industry:

AI in the Insurance Industry: 26 Real-World Use Cases

AI in the Insurance Industry: 26 Real-World Use Cases:

FREE WEBINAR | Managing Multiple Database Roles: How Many Hats Do You Wear?

FREE WEBINAR | Managing Multiple Database Roles: How Many Hats Do You Wear?:

[FREE REPORT] Take The Mystery Out Of AI For IT Operations (AIOps) Today!

[FREE REPORT] Take The Mystery Out Of AI For IT Operations (AIOps) Today!:

Survey: Tell Us How You Use AI and ML in Business (And be entered to win a $100 Amazon Gift Card!)

Survey: Tell Us How You Use AI and ML in Business (And be entered to win a $100 Amazon Gift Card!):

Techopedia Resources | Browse Industry Leading Software Used by Techopedia Staff and Users Daily.

Techopedia Resources | Browse Industry Leading Software Used by Techopedia Staff and Users Daily.:

Latest Articles

Women in AI: Reinforcing Sexism and Stereotypes with Tech

The State of the Art and the Future of GDPR Compliance Software

National Aviation Day: Top 5 Ways AI and Aviation Can Reach New Heights

5 SQL Backup Issues Database Admins Need to Be Aware Of

Conquering Algorithms: 4 Online Courses to Master the Heart of Computer Science