About this task
When you use the static analysis feature of
the Application Security on Cloud service, you can generate security analysis reports that make use of Intelligent Finding
Analytics (IFA). IFA is a powerful machine-learning technology that does much of the triage work for
you by, among other things, filtering out false positives and by grouping findings that can be
remedied by a fix in one code point. To learn more about IFA, see this article.
If you are using AppScan Source
Version 9.0 or higher and have an Application Security on Cloud subscription, you can benefit from this technology by uploading your AppScan Source
assessment to Application Security on Cloud. In return, you will receive a new assessment that has been automatically triaged by IFA. This
assessment can be in the form of an HTML report or an assessment that can be opened in your AppScan Source
product.
- If you have a paid Application Security on Cloud subscription, you can scan 10 additional AppScan Source
assessments. For example, if your subscription includes 20 Application Security on Cloud scans, you can scan another 10 AppScan Source
assessments - for a total of 30 scans. Concurrent scan limits, as outlined in your subscription,
include scans of AppScan Source
assessments. For example, if your subscription allows you 2 scans at the same time, scans of
AppScan Source assessments would be included.
- If you have a trial Application Security on Cloud subscription, scans of AppScan Source
assessments count toward your total number of allowed scans.
Note: If you are scanning an AppScan Source
assessment with a free trial of Application Security on Cloud, you can download a full HTML report, in addition to the AppScan Source
assessment file that has been triaged by IFA. For all other scan types, you can only download a
summary report when you have a free trial.