Software Security Growth Modeling: Examining Vulnerabilities with Reliability Growth Models

@inproceedings{Ozment2006SoftwareSG,
  title={Software Security Growth Modeling: Examining Vulnerabilities with Reliability Growth Models},
  author={Andy Ozment},
  booktitle={Quality of Protection},
  year={2006}
}
The software engineering tools historically used to examine faults can also be used to examine vulnerabilities and the rate at which they are discovered. I discuss the challenges of the collection process and compare two sets of vulnerability characterization criteria. I collected fifty-four months of vulnerability data for OpenBSD 2.2 and applied seven reliability growth models to the two data sets. These models only passed applicability tests for the data set that omits dependent data points… CONTINUE READING
Highly Cited
This paper has 26 citations. REVIEW CITATIONS

Citations

Publications citing this paper.

References

Publications referenced by this paper.
Showing 1-10 of 13 references

SMERFS (Statistical Modeling and Estimation of Reliability Functions for Systems) (2003) http://www.slingcode.com/smerfs

  • W. Stoneburner
  • 2003
1 Excerpt

Quantitatively differentiating system security

  • S. Schechter
  • Workshop on Economics and Information Security.
  • 2002
1 Excerpt

Similar Papers

Loading similar papers…