| CPC H04L 63/20 (2013.01) [H04L 63/1433 (2013.01)] | 20 Claims |
|
1. A system for application security management, the system comprising:
one or more memories; and
one or more processors, communicatively coupled to the one or more memories, configured to:
receive information identifying an application,
the information identifying the application including information identifying a design of a set of elements of the application, and
each element, of the set of elements, being associated with a corresponding codebase;
parse, using at least one security engine of a plurality of security engines, a codebase of an element, of the set of elements, to identify whether the design of the application is associated with a security issue satisfying a threshold severity,
wherein the plurality of security engines include:
a design system engine associated with evaluating the element in connection with a design system specification for the application; and
a code engine associated with evaluating a potential vulnerability of one or more functions of the codebase of the element;
generate, based on identifying that the application is associated with the security issue satisfying the threshold severity, a security recommendation relating to the element; and
transmit an output including information identifying the security recommendation relating to the element.
|