An Empirical Analysis of Software Vendors' Patch Release Behavior: Impact of Vulnerability Disclosure

  title={An Empirical Analysis of Software Vendors' Patch Release Behavior: Impact of Vulnerability Disclosure},
  author={Ashish Arora and Ramayya Krishnan and Rahul Telang and Yubao Yang},
  journal={Information Systems Research},
A aspect of better and more secure software is timely patch release by software vendors for the vulnerabilities in their products. Software vulnerability disclosure, which refers to the publication of vulnerability information, has generated intense debate. An important consideration in this debate is the behavior of software vendors. How quickly do vendors patch vulnerabilities and how does disclosure affect patch release time? This paper compiles a unique data set from the Computer Emergency… CONTINUE READING
Highly Cited
This paper has 50 citations. REVIEW CITATIONS
30 Citations
24 References
Similar Papers


Publications citing this paper.
Showing 1-10 of 30 extracted citations

51 Citations

Citations per Year
Semantic Scholar estimates that this publication has 51 citations based on the available data.

See our FAQ for additional information.


Publications referenced by this paper.
Showing 1-10 of 24 references

Partial likelihood

  • D. R. Cox
  • Biometrika 62(2, May/August) 269–276.
  • 1975
Highly Influential
3 Excerpts

Impact of vulnerability disclosure on market value of software vendors: An empirical analysis

  • R. Telang, S. Wattal.
  • IEEE Trans. Software Engrg. 33(8) 544–557.
  • 2007

Impact of patches and software vulnerability information on frequency of security attacks—An empirical analysis

  • A. Arora, A. Nandkumar, R. Telang.
  • Inform. Systems Frontier 8(5) 350–362.
  • 2006
3 Excerpts

Similar Papers

Loading similar papers…