Can vulnerability disclosure be timely, detailed and coordinated?

被引:0
|
作者
Isbitski M. [1 ]
机构
[1] Sysdig, United States
来源
Network Security | 2023年 / 2023卷 / 12期
关键词
D O I
10.12968/S1353-4858(23)70062-7
中图分类号
学科分类号
摘要
Vulnerability disclosure is a tricky subject. Organisations need early and detailed information about vulnerabilities in order to fix them. At the same time, threat actors can use the same information to develop exploits that could devastate organisations that don't move fast enough to protect themselves. So how can we balance the need for disclosure against the threats posed? © 2024 MA Business Ltd.
引用
收藏
相关论文
共 50 条
  • [11] New hurdles for vulnerability disclosure
    McKinney, Dave
    IEEE SECURITY & PRIVACY, 2008, 6 (02) : 76 - 78
  • [12] Economics of software vulnerability disclosure
    Arora, A
    Telang, R
    IEEE SECURITY & PRIVACY, 2005, 3 (01) : 20 - 25
  • [13] Efficiency of vulnerability disclosure mechanisms to disseminate vulnerability knowledge
    Cavusoglu, Hasan
    Cavusoglu, Huseyin
    Raghunathan, Srinivasan
    IEEE TRANSACTIONS ON SOFTWARE ENGINEERING, 2007, 33 (03) : 171 - 185
  • [14] Detailed Risk Disclosure Statement requirements
    Klein, Friederike
    LARYNGO-RHINO-OTOLOGIE, 2014, 93 (10) : 652 - 652
  • [15] TOXICOLOGIC HAZARD VULNERABILITY ANALYSIS: A TIMELY TOOL
    Tomassoni, Anthony J.
    Bogdan, Greg
    Sinha, Vinnita
    Lee, Christopher
    CLINICAL TOXICOLOGY, 2011, 49 (06) : 600 - 601
  • [16] The timely disclosure of technical-scientific health information
    Goldbaum, Moises
    EPIDEMIOLOGIA E SERVICOS DE SAUDE, 2008, 17 (03): : 161 - 162
  • [17] Zombies, Sirens, and Lady Gaga - Oh My! Developing a Framework for Coordinated Vulnerability Disclosure for US Emergency Alert Systems
    Woszczynski, Amy
    Green, Andrew
    Dodson, Kelly
    Easton, Peter
    GOVERNMENT INFORMATION QUARTERLY, 2020, 37 (01)
  • [18] MORE DETAILED AND TIMELY DATA SOUGHT FROM HOSPITALS
    ROBINSON, ML
    HOSPITALS, 1987, 61 (16): : 28 - 28
  • [19] Determinants of Software Vulnerability Disclosure Timing
    Sen, Ravi
    Choobineh, Joobin
    Kumar, Subodha
    PRODUCTION AND OPERATIONS MANAGEMENT, 2020, 29 (11) : 2532 - 2552
  • [20] Optimal policy for software vulnerability disclosure
    Arora, Ashish
    Telang, Rahul
    Xu, Hao
    MANAGEMENT SCIENCE, 2008, 54 (04) : 642 - 656
12345