[Free Analyst Report] Closing the Cybersecurity Gap: 3 Keys to Analytics-Driven Security

Static Application Security Testing (SAST)

Definition - What does Static Application Security Testing (SAST) mean?

Static application security testing (SAST) is a type of security testing that relies on inspecting the source code of an application. In general, SAST involves looking at the ways the code is designed to pinpoint possible security flaws.

Download a complimentary copy of “AI and Machine Learning in Your Organization” to learn about the ways in which AI and machine learning are being applied today to bolster IT operations and security

Techopedia explains Static Application Security Testing (SAST)

SAST is often contrasted with another term that is, in some ways, opposite to it: dynamic application security testing (DAST). The difference between these two is that, with SAST, testers read the source code. They look for logical flaws, such as a loophole in data control, something that a hacker could use to gain access to the system. In contrast, in DAST, testers do not look at the source code but perform behavioral testing instead — they run the application and look for flaws that way.

IT experts also differentiate between the two using the terms "white box testing" and "black box testing." SAST is white box testing because the source code for the application is available and transparent. That is what testers look at. In contrast, DAST is black box testing because the source code is not part of the equation. Instead, black box testers rely solely on the behavior of the application.

Tech moves fast! Stay ahead of the curve with Techopedia!

Join nearly 200,000 subscribers who receive actionable tech insights from Techopedia.

Related Articles

The Advantages of Virtualization in Software Development

Performance Testing: The First Line of Security Against Attacks

Why Do We Need User Acceptance Testing (UAT)?

Adventures in AgroTech: 7 More Can't-Miss Developments

Web Accessibility: Why Digital Agencies Need to be ADA Compliant

Women in Tech Entrepreneurs: Resilient, Intuitive, and Paying it Forward

Featured Q&A

More of your questions answered by our Experts

Resources

The Ultimate Guide to Applying AI in Business

The Ultimate Guide to Applying AI in Business:

[Free Research Report] Data Center & Infrastructure Report: Outlook for 2020

[Free Research Report] Data Center & Infrastructure Report: Outlook for 2020:

[Free Report] Tableau vs. QlikView vs. Power BI

[Free Report] Tableau vs. QlikView vs. Power BI:

Excel 2019 For Dummies ($29.99 Value) FREE for a Limited Time

Excel 2019 For Dummies ($29.99 Value) FREE for a Limited Time:

Free Download: Machine Learning and Why It Matters

Free Download: Machine Learning and Why It Matters:

FREE DOWNLOAD: AI and ML in the Oil and Gas Industry

FREE DOWNLOAD: AI and ML in the Oil and Gas Industry:

AI in the Insurance Industry: 26 Real-World Use Cases

AI in the Insurance Industry: 26 Real-World Use Cases:

FREE WEBINAR | Managing Multiple Database Roles: How Many Hats Do You Wear?

FREE WEBINAR | Managing Multiple Database Roles: How Many Hats Do You Wear?:

Latest Articles

Adventures in AgroTech: 7 More Can't-Miss Developments

Web Accessibility: Why Digital Agencies Need to be ADA Compliant

Women in Tech Entrepreneurs: Resilient, Intuitive, and Paying it Forward

When Will AI Replace Writers?

Top 14 AI Use Cases: Artificial Intelligence in Smart Cities