From the course: Practical Secure by Design: Threat Modeling to Build Resilient Products
Join today to access over 24,900 courses taught by industry experts.
Minimize attack surface
From the course: Practical Secure by Design: Threat Modeling to Build Resilient Products
Minimize attack surface
- [Instructor] Now that we've talked about secure defaults, the next natural design principle that we want to keep in mind is minimizing the attack surface. Minimizing the attack surface talks about only exposing what is needed and nothing more. It's about actively reducing the number of potential entry points and vulnerabilities an attacker could exploit. Essentially, you want to get rid of anything that isn't absolutely needed for your system or application to run. Why is this so important? Fewer features, less code. Fewer open connections mean fewer vulnerabilities that can be exploited. It also becomes very easy to defend, monitor and audit if there are fewer attack surfaces that are exposed to the internet, and most importantly, it reduces our exposure and blocks attackers from even trying to exploit things because there is nothing that is exposed to the internet that is not supposed to be exposed. It also…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.