This talk will detail knowledge gained from years spent building runtime application self-protection technology. RASP sounds like a silver bullet—security pixie dust that protects vulnerable code. But does it solve real problems? Who integrates and operates it? Is it fast enough? Accurate enough? Reliable enough? Will answering these questions change your thinking on RASP?