Browse Definitions :
Definition

physical attack surface

TechTarget Contributor
By

The physical attack surface is the totality of the security vulnerabilities in a given system that are available to an attacker in the same location as the target.

The physical attack surface is exploitable through inside threats such as rogue employees, social engineering ploys and intruders posing as service workers, especially in public companies. External threats include password retrieval from carelessly discarded hardware, passwords on sticky notes and physical break-ins.

Physical access is a very direct attack surface. Many experts consider a data breach inevitable, given enough time, if stored data is not physically secured. An intruder might steal or download the information from an entire drive and extract the target data at a later time, perhaps overcoming encryption with powerful CPUs or general purpose GPU (GPGPU) computing. If the goal is merely to block access or interrupt operations, an attacker may just physically damage equipment – a nearby fire ax would do the trick.

Best practices for reducing the physical attack surface include enforcing secure authentication, zeroing hard drives before throwing out old hardware and refraining from leaving exploitable information – such as sticky note password reminders -- in the physical environment.

Because many attack methods employ a combination of attack surfaces, efforts to protect a resource should analyze the vulnerabilities of all attack surfaces. Attack surface analysis is crucial to proper set up of breach detection systems (BDS), firewall, intrusion prevention systems, data policy and other security measures.

 See also: software attack surface, network attack surface, social engineering attack surface

This was last updated in January 2015

Continue Reading About physical attack surface

SearchCompliance
  • pure risk

    Pure risk refers to risks that are beyond human control and result in a loss or no loss with no possibility of financial gain.

  • risk reporting

    Risk reporting is a method of identifying risks tied to or potentially impacting an organization's business processes.

  • risk exposure

    Risk exposure is the quantified potential loss from business activities currently underway or planned.

SearchSecurity
  • script kiddie

    Script kiddie is a derogative term that computer hackers coined to refer to immature, but often just as dangerous, exploiters of ...

  • cipher

    In cryptography, a cipher is an algorithm for encrypting and decrypting data.

  • What is risk analysis?

    Risk analysis is the process of identifying and analyzing potential issues that could negatively impact key business initiatives ...

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • fault-tolerant

    Fault-tolerant technology is a capability of a computer system, electronic system or network to deliver uninterrupted service, ...

  • synchronous replication

    Synchronous replication is the process of copying data over a storage area network, local area network or wide area network so ...

SearchStorage
  • gigabyte (GB)

    A gigabyte (GB) -- pronounced with two hard Gs -- is a unit of data storage capacity that is roughly equivalent to 1 billion ...

  • MRAM (magnetoresistive random access memory)

    MRAM (magnetoresistive random access memory) is a method of storing data bits using magnetic states instead of the electrical ...

  • storage volume

    A storage volume is an identifiable unit of data storage. It can be a removable hard disk, but it does not have to be a unit that...

Close