DevSecOps-MaturityModel icon indicating copy to clipboard operation
DevSecOps-MaturityModel copied to clipboard
verified publisher icon wurstbrot

Reduction of the attack surface: is that specific enough?

Open ioggstream opened this issue 3 years ago • 0 comments

I expect

  • "reduction of the attack surface" should be described and classified better
  • can be implemented via various techniques, such as software inventory and application and configuration hardening
  • is it PatchManagement ?

Note

Using d3fend classification, this is related to:

        # PlatformHardening
        - LocalFilePermissions
        - SystemConfigurationPermissions
        # ApplicationHardening 
        - DeadCodeElimination
        - ApplicationConfigurationHardening
        # AssetInventory
        - SoftwareInventory

ioggstream avatar Nov 03 '22 10:11 ioggstream