This article discusses a practical mechanism to guard against cyber attacks by reducing the applica-tion's exposure to hostile intentions. The article provides the underlying assumptions and theory of attack surface reduction. It then relates practical steps that the user can take to that theory. The outcome of those steps will be a more robust and secure application environment that will increase the effectiveness of defensive measures
Daniel Shoemaker, University of Detroit Mercy.