.svg)
.svg)
Will there come a day where there are 0 vulnerabilities to find?
There's a growing potential for AI to remove many sources of vulnerabilities, but does that mean we're going to see a day where code is being written without any vulnerabilities being introduced into systems?
There's an interesting potential for AI to remove a lot of the traditional sources for vulnerabilities. Building really mature models of AI that are capable of generating code without human error presents great opportunity. However, the likelihood of us ever seeing a day where code is being written without any vulnerabilities being introduced into systems is slim.
Vulnerabilities are sometimes coupled with features, and you sometimes have to accept that risk in order to implement a feature and enable a system to do something. This is simply an unfortunate reality within cybersecurity.
It's a hard pill to swallow for security people. Penetration testers in particular like to think that every vulnerability they report is going to be triaged, treated and remediated, but that's not realistic. The reality of the tradeoff between security and usability in any product and in any situation is that vulnerabilities may remain in spite of detection.
Thus, even if AI is capable of writing impeccable code that prevents new vulnerabilities from getting in, the features we will continue to use and work with will inevitably invite vulnerabilities into the system.
.svg)
Get a Free Trial From Cytix
Haven’t tried Cytix yet? Try our free trial to see how it works.
Get a Free Trial
.svg)
.svg)
Start Detecting Vulnerabilities Others Miss Today
- Detect Vulnerabilities Faster
- Patch Vulnerabilities Faster
- Be more compliant
.
28 Apr
2024
How do you understand performance over time?
.svg)
In order to get to grips with the performance of your software or product over time, you really need to be taking incremental measurements of your cybersecurity.
.
21 Apr
2024
Will there come a day where there are 0 vulnerabilities to find?
There's a growing potential for AI to remove many sources of vulnerabilities, but does that mean we're going to see a day where code is being written without any vulnerabilities being introduced into systems?
.
21 Apr
2024
How do you work out MTTR (Mean Time to Response)?
MTTR is all about looking at where you're handing your information over to the people who are responsible for fixing the vulnerabilities. Once it's handed over, the process has begun. So, we know where the timer starts, but where does it end? When have we determined that the response period is finished?
