Artificial Intelligence & Machine Learning , Events , Next-Generation Technologies & Secure Development

The Crossroads of AI and Application Security

Veracode's Chris Wysopal on Navigating AI's Risks and Rewards in App Security
Chris Wysopal, CTO and co-founder, Veracode

AI has been in cybersecurity for a long time now, but generative AI is the new thing that everyone is excited about, said Chris Wysopal, CTO and co-founder of Veracode. With its ability to analyze and generate code, generative AI presents both challenges and solutions - the yin and the yang - reshaping how developers and security professionals approach software development and maintenance.

See Also: Safeguarding Election Integrity in the Digital Age

"Using AI to automate the fixing problem just kills so many birds with one stone. You're fixing the old code that was written by developers years ago that you didn't get to, and it can fix the new code that the generative AI is creating," Wysopal said.

Underscoring the importance of high-quality, trusted datasets to train AI models, Wysopal said, "What we're doing at Veracode is: We've used the technique of having a great trusted data set of bad code and good code. And teaching the LLM how to tell the difference and how to make the bad code into good code."

In this video interview with Information Security Media Group at RSA Conference 2024, Wysopal also discussed:

  • Use of AI tools by adversaries in application security;
  • Veracode's strategies for integrating AI to enhance application security.
  • The latest advancements in AI within the cybersecurity landscape.

At Veracode, Wysopal oversees technology strategy and information security and is responsible for the company's software security analysis capabilities. In 2008, he was named one of InfoWorld's Top 25 CTOs and one of the 100 most influential people in IT by eWeek. Prior to co-founding Veracode in 2006, he was vice president of research and development at security consultancy @stake, which was acquired by Symantec.


About the Author

Tom Field

Tom Field

Senior Vice President, Editorial, ISMG

Field is responsible for all of ISMG's 28 global media properties and its team of journalists. He also helped to develop and lead ISMG's award-winning summit series that has brought together security practitioners and industry influencers from around the world, as well as ISMG's series of exclusive executive roundtables.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.