๐”– Bobbio Scriptorium
โœฆ   LIBER   โœฆ

NETWORK SECURITY: VULNERABILITIES AND DISCLOSURE POLICY

โœ Scribed by JAY PIL CHOI; CHAIM FERSHTMAN; NEIL GANDAL

Book ID
110943246
Publisher
John Wiley and Sons
Year
2010
Tongue
English
Weight
290 KB
Volume
58
Category
Article
ISSN
0022-1821

No coin nor oath required. For personal study only.

โœฆ Synopsis

Software security is a major concern for vendors, consumers and regulators. When vulnerabilities are discovered after the software has been sold to consumers, the firms face a dilemma. A policy of disclosing vulnerabilities and issuing updates protects only consumers who install updates, while the disclosure itself facilitates reverse engineering of the vulnerability by hackers. The paper considers a firm that sells software which is subject to potential security breaches and derives the conditions under which a firm would disclose vulnerabilities. It examines the effect of a regulatory policy that requires mandatory disclosure of vulnerabilities and a โ€˜bug bountyโ€™ program.

๐Ÿ“œ SIMILAR VOLUMES

Managing cyber security vulnerabilities
Managing cyber security vulnerabilities in large networks
โœ Edward S. Chang; Aridaman K. Jain; David M. Slade; S. Lee Tsao ๐Ÿ“‚ Article ๐Ÿ“… 2002 ๐Ÿ› Institute of Electrical and Electronics Engineers ๐ŸŒ English โš– 431 KB