Title :
Vulnerability Trends: Measuring Progress
Author :
Kuhn, Rick ; Johnson, Chris
Abstract :
We analyzed data from the National Vulnerability Database (NVD). Designed and operated by the National Institute of Standards and Technology (NIST) with support from the Department of Homeland Security, the NVD provides fine-grained search capabilities of all publicly reported software vulnerabilities since 1997-a total of 41,810 vulnerabilities for more than 20,000 products. Frequently, a single vulnerability can affect a large number of products-for example, when the fault occurs in a library function.
Keywords :
computer network security; data analysis; information networks; Department of Homeland Security; National Institute of Standards and Technology; data analysis; fine-grained search capability; library function; national vulnerability database; software vulnerabilities; Arm; Availability; Data analysis; Data security; Dictionaries; Fires; Guidelines; Software libraries; Software measurement; Weapons; Information technology; privacy; security & software vulnerabilities;
Journal_Title :
IT Professional
DOI :
10.1109/MITP.2010.116
