Question 10
Domain 3: Infrastructure, Network, and Workload SecurityA security team is implementing runtime application self-protection (RASP) for cloud applications. What is the PRIMARY function of RASP?
Correct answer: B
Explanation
RASP works from inside the application to watch behavior during execution and stop malicious activity as it happens. Its primary function is real-time protection: detecting and blocking attacks by monitoring application behavior from within.
Why each option is right or wrong
A. Monitoring application performance only
B. Detecting and blocking attacks in real-time by monitoring application behavior from within
RASP is an in-application control, so its core purpose is to observe execution context and intervene while the app is running, rather than relying only on perimeter defenses or post-event logging. In practice, it inspects application behavior at runtime and can terminate, block, or sanitize malicious requests as they occur, which is why the primary function is real-time detection and prevention from inside the application.
C. Replacing the need for application development
D. Storing application backups