Přehled o publikaci
2025
Attack Surface Management: State of the Art and Operational Challenges
HUSÁK, Martin and Lukáš SADLEKBasic information
Original name
Attack Surface Management: State of the Art and Operational Challenges
Authors
HUSÁK, Martin and Lukáš SADLEK
Edition
New York, NY, 2025 IEEE 11th International Conference on Network Softwarization (NetSoft), p. 597-602, 6 pp. 2025
Publisher
IEEE
Other information
Language
English
Type of outcome
Proceedings paper
Country of publisher
United States of America
Confidentiality degree
is not subject to a state or trade secret
Publication form
electronic version available online
References:
Marked to be transferred to RIV
No
Organization
Ústav výpočetní techniky – Repository – Repository
ISBN
979-8-3315-4346-4
ISSN
Keywords in English
network security; attack surface; network scanning; network monitoring; orchestration
Links
101119681, interní kód Repo.
Changed: 21/3/2026 00:50, RNDr. Daniel Jakubík
Abstract
In the original language
In this paper, we approach the topic of ASM, place the task in the context of cybersecurity operations, review the current methods, and discuss their issues and challenges. We outline an ASM pipeline consisting of common tasks and review the usability of the existing tools. We pinpoint that there is a trade-off between scope and precision of the existing tools that should be taken into account, namely in medium to large networks. Finally, we formulate and discuss the issues and challenges for emerging network environments, including those involving IoT or OT, volatile environments, or extensive use of cloud computing. Each of these emerging technologies bring novel issues that needs to be approached by ASM, be it improved fingerprinting in IoT and OT, precisely timed scans in volatile environments, or coverage of external services in cloud.
