Frost Radar：2025年雲端/應用程式執行階段安全

Frost Radar: Cloud/Application Runtime Security, 2025

出版日期: 2025年05月23日 | 出版商:

Frost & Sullivan | 英文 29 Pages | 商品交期: 最快1-2個工作天內

價格

簡介目錄

基準化分析系統激勵主要企業－創新推動新的交易流程和成長管道

雲端原生應用的多層架構（包括容器、微服務和底層基礎設施）使威脅偵測和事件回應變得複雜。攻擊可以跨越這些層級，利用應用層級的API 或未知漏洞，並橫向穿過容器層進入雲端基礎架構。 SecOps 團隊需要關聯這些層級之間的事件，才能全面了解事件，這需要進階關聯功能以及來自不同來源的安全資料的統一視圖。

儘管許多組織在雲端和應用安全技術方面投入了大量資金，但這些靜態掃描解決方案（包括雲端安全態勢管理、雲端原生應用程式保護平台（CNAPP）、傳統應用程式安全測試和其他程式碼掃描）不足以幫助 SecOps 團隊應對雲端環境中的威脅，導致他們束手無策。雖然 CNAPP 和 AppSec 工具能夠透過靜態掃描有效識別漏洞和錯誤配置，但它們對 SecOps 團隊的價值有限，因為它們誤報率過高，缺乏即時威脅檢測，並且無法提供運行時可見性或適當的情境化。此外，傳統的執行時間工具存在基於靜態規則的偵測、可見度碎片化和營運效率低下的問題，導致 SecOps 團隊難以應對動態雲端環境中的高階多層威脅。

雲端/應用程式執行階段安全解決方案主要包括雲端偵測和回應、應用程式偵測和回應，透過雲端威脅偵測和回應功能補充左移和右移，以提供即時洞察和主動防禦。

Frost & Sullivan 會分析同一產業內大量的公司。它將根據領導力或其他卓越表現篩選出需要進一步分析的公司，並根據 10 項成長和創新標準對其進行基準測試，以揭示其在 Frost Radar™ 上的排名。它將在 Frost Radar™ 上呈現每家公司的競爭概況，探討每家公司的優勢以及最契合這些優勢的商業機會。

The multilayered architecture of cloud-native applications, involving containers, microservices, and underlying infrastructure, complicates threat detection and incident response. Attacks can move across these layers, starting at the application level, exploiting API or unknown vulnerabilities, and moving laterally through the container layer to the cloud infrastructure. SecOps teams need to correlate events across these layers to understand the full scope of an incident, which demands advanced correlation capabilities and a unified view of security data from various sources.

Many organizations have invested heavily in cloud and application security technologies, but these static scanning solutions, such as cloud security posture management, cloud-native application protection platforms (CNAPP), and traditional application security testing and other code scanning, are insufficient for SecOps teams to handle threats in the cloud environment, leaving the teams in limbo. CNAPPs and AppSec tools, while effective at identifying vulnerabilities and misconfigurations through static scans, bring limited value to SecOps teams with excessive false positives, lack real-time threat detection, and fail to provide runtime visibility or adequate contextualization. Traditional runtime tools also suffer from static rule-based detection, fragmented visibility, and operational inefficiencies, leaving SecOps teams struggling to address sophisticated, multilayered threats in dynamic cloud environments.

Organizations are converging development and operations security practices, aiming for end-to-end protection and threat management from code to cloud and to the security operations center. cloud/application runtime security solutions, primarily cloud detection and response and application detection and response, complement shift-left with the shift-right through detection and response capabilities to cloud threats, providing real-time insights and active defense.

Frost & Sullivan analyzes numerous companies in an industry. Those selected for further analysis based on their leadership or other distinctions are benchmarked across 10 Growth and Innovation criteria to reveal their position on the Frost Radar™. The publication presents competitive profiles of each company on the Frost Radar™ considering their strengths and the opportunities that best fit those strengths.

Analyst: Anh Tien Vu