jspωiki
Attack Surface
Your trail: 

Overview#

Attack Surface is the sum of the different attack vectors where an attacker could enter a thing or extract a thing

Attack Surface, of a an Application is the sum of the different attack vectors where an attacker could enter data or extract data

The total number of different possible attack points can easily add up into the thousands or more. To make this manageable, break the model into different types based on function, design and technology:

  • Login/authentication entry points
  • Admin interfaces
  • Inquiries and search functions
  • Data entry (CRUD) forms
  • Business workflows
  • Transactional interfaces/APIs
  • Operational command and monitoring interfaces/APIs
  • Interfaces with other applications/systems
  • ... your types
minimising these of course minimises the Attack Surface

More Information#

There might be more information for this subject on one of the following:

This page (revision-5) was last changed on 13-Oct-2018 18:33 by jim Top

Main page
About
Recent Changes
Tools Page

Lead Pages#

WikiEtiquette
Find pages
Unused pages
Undefined pages
Page Index
News


Site Maintained By -jim

Costs of Wiki

Donations#

If you like Ldapwiki, please consider a donation.

Donation for LDAPWiki


Active Sessions38
Uptime22d, 17h 57m 58s
Number of pages15313

JSPWiki v2.10.1
jspωiki
Please see our Copyright And Intellectual Property Page and Standard Disclaimer Pages!
JSPWiki v2.10.1