Name
Abstract | ||
|---|---|---|
Security vulnerabilities continue to be an issue in the software field and new severe vulnerabilities are discovered in software products each month. This paper analyzes estimates from domain experts on the amount of effort required for a penetration tester to find a zero-day vulnerability in a software product. Estimates are developed using Cooke's classical method for 16 types of vulnerability discovery projects -- each corresponding to a configuration of four security measures. The estimates indicate that, regardless of project type, two weeks of testing are enough to discover a software vulnerability of high severity with fifty percent chance. In some project types an eight-to-five-week is enough to find a zero-day vulnerability with 95 percent probability. While all studied measures increase the effort required for the penetration tester none of them have a striking impact on the effort required to find a vulnerability. |
Year | DOI | Venue |
|---|---|---|
2012 | 10.1109/HICSS.2012.238 | HICSS |
Keywords | Field | DocType |
estimation theory,project management,software management,Cooke classical method,effort estimation,security measurement,security vulnerabilities,software field,software products,vulnerability discovery projects,Expert judgment,Security testing,Software vulnerability,Vulnerability discovery | Security testing,Authentication,Vulnerability (computing),Computer security,Computer science,Authorization,Software,Vulnerability discovery,Vulnerability,Project management | Conference |
Citations | PageRank | References |
3 | 0.40 | 13 |
Authors | ||
3 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Teodor Sommestad | 1 | 292 | 23.72 |
| Hannes Holm | 2 | 191 | 14.59 |
| Mathias Ekstedt | 3 | 634 | 49.70 |