Security Concepts

Attack Surface

An organization's attack surface is the complete set of vulnerabilities, entry points, and exposure points through which a threat actor can attempt to gain unauthorized access to systems, data, or networks.

Types of Attack Surface

Digital Attack Surface

  • Internet-facing applications and APIs
  • Cloud infrastructure and SaaS platforms
  • Email systems and communication tools
  • Remote access endpoints (VPN, RDP)
  • DNS records and certificates

Human Attack Surface

  • Social engineering susceptibility
  • Phishing vulnerability
  • Insider threats
  • Credential reuse and weak passwords

Physical Attack Surface

  • Office buildings and facilities
  • Hardware devices (USB ports, IoT devices)
  • Printers and network equipment

Attack Surface Management (ASM)

ASM is the continuous process of discovering, inventorying, classifying, and monitoring an organization's external-facing assets to understand and reduce exposure.

Key ASM Activities

  1. Asset Discovery: Identifying all internet-facing assets, including shadow IT
  2. Risk Assessment: Evaluating the risk associated with each asset
  3. Monitoring: Continuously tracking changes to the attack surface
  4. Remediation: Reducing unnecessary exposure and hardening systems

Why It Matters

You can't protect what you don't know about. As organizations adopt cloud services, remote work, and third-party integrations, the attack surface expands rapidly — often beyond what security teams can manually track.

Related Terms

Related Reading