网安新兴赛道厂商速查指南

1stEdition2023.3 本报告属于斯元商业咨询CyberSecurityBillboard系列报告之一。为助力企业安全负责人、渠道合作伙伴和安全从业者及时了解网安行业的新兴赛道及前沿产品，在项目产品选型时，高效检索细分赛道和代表性厂商，斯元商业咨询推出了「网安新兴赛道厂商速查指南·EmergingTechnologyVendorIndex」，并将持续更新发布。出品机构：斯元商业咨询斯元商业咨询，是国内首家专业聚焦网络安全商业市场研究分析和加速服务的机构。基于网安行业最新技术动态及长期行业调研数据，发布CyberSecurityBillboard系列洞察分析报告。斯元的服务内容包括业务战略咨询、行业调研与国内外竞品分析、商业加速服务等。此外，斯元还为安全企业的战略协同与并购、国内企业出海探索、投资机构投后管理与服务及其他安全行业生态拓展提供咨询与服务。n定位：网安新兴赛道及厂商速查n内容：4大场景，赛道中英文名称，国内、国际厂商索引，代表性厂商n受众：企业安全负责人、渠道合作伙伴、安全营销人群、投资机构、行业咨询分析机构，及其他网络安全行业从业者发布媒体：安全喵喵站安全喵喵站，是斯元商业咨询旗下专注于网络安全行业的媒体平台，服务于关注安全行业发展、国内外商业资讯与市场态势的人群，致力于提供全面的营销服务，为业务拓展、渠道建设、品牌触达添砖加瓦。 技术场景 目录· 技术场景赛道名称Segment Name/5G安全5G Network Security/AD安全Active Directory Security/API安全API Security/DNS安全DNS Security/IPV6安全IPV6 Security/IP情报IP Intelligence/IT供应商风险管理IT Vendor Risk Management/Kubernetes安全配置管理Kubernetes Security Posture Management/SaaS安全配置管理SaaS Security Posture Management/SDK安全Software Development Kit Security/Web应用和API保护Web Application and API ProtectionA安全办公空间Secure WorkspaceA安全编排自动化与响应Security Orchestration, Automation and ResponseA安全的即时通信Secure Instant CommunicationsA安全多方计算Secure Multi-Party ComputationA安全访问服务边缘Secure Access Service EdgeA安全服务边缘Security Service EdgeA安全开发生命周期Security Development LifecycleA安全开发与运维DevSecOpsA安全浏览器Secure BrowserA安全评级服务Security Rating ServiceA安全托管服务商Managed Security Service ProviderA安全网络网关Secure Web GatewayA安全信息和事件管理Security Information and Event ManagementA安全运营中心Security Operations Center 目录· 技术场景赛道名称Segment NameA安全众测平台Crowdsourced Software Security Testing PlatformsA暗网情报Dark Web IntelligenceB靶场/攻防实训Cyber RangeC侧信道分析Side-Channel AnalysisC差分隐私Differential PrivacyC持续威胁暴露面管理Continuous Threat Exposure ManagementD第三方风险管理Third-party Risk ManagementD动态数据脱敏Dynamic Data MaskingD动态应用安全测试/黑盒Dynamic Application Security TestingF防范技术窃密Technical Surveillance Counter MeasuresG高级持续性威胁防护Advanced Persistent Threat ProtectionG个人隐私防护Personal Privacy ProtectionG格式保留加密Format-Preserving EncryptionG攻击面评估Attack Surface AssessmentG固件安全Firmware SecurityH后量子密码学Post-Quantum CryptographyJ集成风险管理Integrated Risk ManagementJ机密计算Confidential ComputingJ机器身份管理Machine Identity ManagementJ基于风险的漏洞管理Risk-Based Vulnerability ManagementJ基于风险的身份验证Risk-Based AuthenticationJ基于身份的隔离/微隔离Identity-Based Segmentation/MicrosegmentationJ基于硬件的安全Hardware-Based SecurityJ加密流量分析Encrypted Traffic AnalysisJ交互式应用安全测试/灰盒Interactive Application Security Testing 目录· 技术场景赛道名称Segment NameJ静态数据脱敏Static Data MaskingJ静态应用安全测试/白盒Static Application Security TestingK客户身份和访问管理Customer Identity and Access ManagementK可信执行环境Trusted Execution EnvironmentK扩展检测与响应Extended Detection and ResponseL零信任Zero TrustL零信任网络访问Zero-Trust Network AccessL漏洞评估Vulnerability AssessmentL漏洞情报Vulnerability IntelligenceM蜜罐/欺骗诱捕Honeypot/DeceptionM密钥管理即服务Key Management as a ServiceM模糊测试Fuzz TestingN内部（人员）风险管理Insider Risk ManagementN内部（人员）威胁检测Insider Threat DetectionN内存安全Memory FirewallN内容拆解与重建Content Disarm and ReconstructionN逆向工程/反编译Reverse Engineering/DecompileQ企业密钥管理Enterprise Key ManagementQ区块链安全Blockchain SecurityR人工智能安全AI SecurityR人工智能信任、风险和安全管理AI Trust Risk and Security ManagementR容器安全Container SecurityR软件成分分析Software Composition AnalysisR软件定义边界Software Defined PerimeterR弱点/漏洞优先级技术Vulnerability Prioritization Technology 目录· 技术场景赛道名称Segment NameS沙箱SandboxS商用密码CryptographyS身份编排Identity OrchestrationS身份盗窃防护Identity Theft ProtectionS身份即服务Identity as a ServiceS身份目录即服务Directory as a ServiceS身份认证与确认Identity Proofing and AffirmationS身份威胁检测和响应Identity Threat Detection and ResponseS身份优先安全机制Identity-First SecurityS身份与访问管理Identity and Access ManagementS身份治理与管理Identity Governance and AdministrationS受管文件传输Managed File TransferS数据安全即服务Data Security as a ServiceS数据安全配置管理Data Security Posture ManagementS数据安全平台Data Security PlatformsS数据安全治理Data Security GovernanceS数据访问治理Data Access GovernanceS数据副本管理Copy Data ManagementS数据检测与响应Data Detection and ResponseS数据库审计与防护Database Audit and ProtectionS数据清理/净化Data SanitizationS数据脱敏Data MaskingS数据泄漏防护Data Loss PreventionS数据隐私Data PrivacyS数据运营安全DataSecOps 目录· 技术场景赛道名称Segment NameS数字版权管理Digital Right ManagementS数字风险防护Digital Risk ProtectionS数字取证Digital ForensicsS数字证书Certificate AuthorityT态势感知Situation AwarenessT特权访问管理Privileged Access ManagementT同态加密Homomorphic EncryptionT通讯风险与合规Communication Risk & ComplianceT统一终端安全Unified Endpoint SecurityT托管的威胁检测与响应服务Managed Detection and ResponseW外部攻击面管理External Attack Surface ManagementW网络安全策略管理Network Security Policy Management W网络安全测试与保障Cybersecurity Test & AssuranceW网络安全绩效管理Cybersecurity Performance ManagementW网络安全网格架构Cybersecurity Mesh ArchitectureW网络安全硬件平台WhitelabelHardware for Network SecurityW网络安全资产管理Cybersecurity Asset ManagementW网络风险量化Cyber-Risk QuantificationW网络检测与响应/网络流量分析Network Detection and Response/Network Traffic AnalysisW网络空间资产测绘Cyberspace Surveying and MappingW网络资产攻击面管理Cyber Asset Attack Surface ManagementW危机风险情报Crisis & Risk IntelligenceW威胁检测、调查和响应Threat Detection, Investigation and ResponseW威胁情报查询Threat Intelligence LookupW威胁情报明文Threat Intelligence Feed 目录· 技术场景赛道名称Segment NameW威胁情报平台Threat Intelli