中圖分類號：TP393文獻標志碼：ADOI:10.19358/j.issn.2097-1788.2026.03.003
中文引用格式：沈萍. 面向攻擊面收斂的網絡安全風險治理研究［J］.網絡安全與數據治理，2026，45（3）：17-23.
英文引用格式：Shen Ping. Research on network security risk governance oriented to attack surface convergence［J］.Cyber Security and Data Governance，2026，45（3）：17-23.

Research on network security risk governance oriented to attack surface convergence

Abstract： In view of the dynamic changes of the organization′s network attack surface and the fact that the defender′s perspective can′t effectively identify the hacker′s attack means, based on the multidimensional attacker′s perspective, an attack surface convergence management system with the process of "asset management, attack surface identification and risk value calculation, attack surface repair and closedloop verification, network traffic collection and realtime monitoring and analysis" is constructed to effectively realize the "safe left shift". The known assets and shadow assets are included in the scope of custody, and the risk quantification and classification and closedloop verification of security vulnerabilities are integrated. Continuous monitoring is enabled to detect asset changes in real time and take measures. The practice results show that after introducing the collaborative analysis of network traffic and threat intelligence, the number of security incidents hit by threat intelligence has gradually decreased; the non essential exposure surfaces of websites and ports have been effectively monitored and responded to, and the average exposure time has been significantly shortened from several days to less than one hour. The attack surface management technology effectively alleviates the asymmetry of attack and defense, and improves the overall visibility and risk control efficiency of the organization in the network attack surface.

Key words : attack surface convergence; asset management; calculation of risk value; closed-loop verification