An Analysis of Vulnerability Trends

Simple item page
dc.contributor.authorBrowne, Hilary K.en_US
dc.contributor.authorArbaugh, William A.
dc.contributor.authorMcHugh, John
dc.contributor.authorFithen, William
dc.date.accessioned2004-05-31T23:08:22Z
dc.date.available2004-05-31T23:08:22Z
dc.date.created2000-10en_US
dc.date.issued2000-11-13en_US
dc.description.abstractWe have conducted an empirical study of a number of computer security exploits and determined that the rates at which incidents involving the each exploit are reported to the CERT can be modeled using a common mathematical framework. Data associated with three significant exploits involving vulnerabilities in phf, imap, and bind can all be modeled using the formula C = I + S * sqrt(M) where C is the cumulative count of reported incidents, M is the time since the start of the exploit cycle, and I and S are the regression coefficients determined by analysis of the incident report data. Further analysis of two additional exploits involving vulnerabilities in mountd and statd confirm the model. We believe that the models will aid in predicting the severity of subsequent vulnerability exploitations, based on the rate of early incident reports. (Also cross-referenced as UMIACS-TR-2000-76)en_US
dc.format.extent1093018 bytes
dc.format.mimetypeapplication/postscript
dc.identifier.urihttp://hdl.handle.net/1903/1112
dc.language.isoen_US
dc.relation.isAvailableAtDigital Repository at the University of Marylanden_US
dc.relation.isAvailableAtUniversity of Maryland (College Park, Md.)en_US
dc.relation.isAvailableAtTech Reports in Computer Science and Engineeringen_US
dc.relation.isAvailableAtUMIACS Technical Reportsen_US
dc.relation.ispartofseriesUM Computer Science Department; CS-TR-4200en_US
dc.relation.ispartofseriesUMIACS; UMIACS-TR-2000-76en_US
dc.titleAn Analysis of Vulnerability Trendsen_US
dc.typeTechnical Reporten_US

Files

Original bundle

Now showing 1 - 2 of 2
No Thumbnail Available
Name:
CS-TR-4200.ps
Size:
1.04 MB
Format:
Postscript Files
Download
Thumbnail Image
Name:
CS-TR-4200.pdf
Size:
185.15 KB
Format:
Adobe Portable Document Format
Description:
Auto-generated copy of CS-TR-4200.ps
Download

Collections

Technical Reports from UMIACS
Technical Reports of the Computer Science Department