software attack surface
tarkvara ründepind
olemus
täielik kogum süsteemis käitatava tarkvara funktsioone,
mis on volitamata kasutajale kättesaadavad,
eriti ohustatav on veebirakendustes,
mis avaldavad koodi Internetis
=
the complete profile of all functions in any code running in a given system that are available to an unauthenticated user
ülevaateid
https://en.wikipedia.org/wiki/Attack_surface
https://blogs.perficient.com/2021/08/31/software-attack-surface-analysis/
https://codedx.com/blog/how-to-minimize-your-softwares-attack-surface/
https://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.377.5007&rep=rep1&type=pdf