Oulun yliopisto - Etusivulle University of Oulu in English

ee.oulu.fi

Electrical and Information Engineering

University of Oulu > Faculty of Technology > Electrical and Information Engineering


OUSPG

[This page is CSS2 enabled. Your browser might not fully support it]

The Vulnerability Process: a tiger team approach ...

$RCSfile: index.html,v $ $Revision: 1.3 $ $Date: 2000/08/09 19:17:51 $

ABSTRACT

Security vulnerabilities that affect widely deployed software emerge frequently. Addressing these maladies requires coordination and communication. The purpose of this work was to explore a systematic approach to reporting and resolving vulnerability cases, from a tiger team perspective. A life-cycle model with checkpoint-based metrics was developed, a case study was carried out and observations were gathered. The vulnerability process was found to be complicated but manageable. The role of the FIRST teams as coordinators is encouraged and a shift from undisciplined, reactive vulnerability work towards a professional, proactive approach is promoted.

Publication details and availability
Title: The Vulnerability Process: a tiger team approach to resolving vulnerability cases
Publication details: Laakso M., Takanen A., Röning J. "The Vulnerability Process: a tiger team approach to resolving vulnerability cases". In proceedings of the 11th FIRST Conference on Computer Security Incident Handling and Response. Brisbane. 13-18 June, 1999.
Availability: [HTML] Full paper (revised, do not use for reference purposes)
[PDF_] Full paper (original)
[PS__] Full paper (original)
[PDF_] Accompanying presentation (original)
[PS__] Accompanying presentation (original)

[This page is CSS2 enabled. Your browser might not fully support it]