Software Vulnerabilities: Open Source versus Proprietary Software Security
نویسندگان
چکیده
This study seeks to empirically investigate specific security characteristics of both open source software and proprietary software. Operating system software vulnerability data spanning several years are collected and analyzed to determine if significant differences exist in terms of inter-arrival times of published vulnerabilities and patch releases. Open source software is only marginally quicker in releasing patches for reported vulnerabilities. The arguments favoring the inherent security of open source software do not appear to hold up to scrutiny. These findings provide evidence to security managers to focus more on holistic software security management, irrespective of the proprietary-nature of the underlying software.
منابع مشابه
Vulnerabilities and Patches of Open Source Software: An Empirical Study
Software selection is an important consideration in managing the information security function. Open source software is touted by proponents as being robust to many of the security problems that seem to plague proprietary software. This study empirically investigates specific security characteristics of open source and proprietary operating system software. Software vulnerability data spanning ...
متن کاملVulnerabilities and Risk Management of Open Source Software: An Empirical Study
Software selection is an important consideration in risk management for information security. Additionally, the underlying robustness and security of a technology under consideration has become increasingly important in total cost of ownership and other calculations of business value. Open source software is often touted as being robust to many of the problems that seem to plague proprietary so...
متن کاملComparative Investigation of Vulnerabilities in Open Source and Proprietary Software: An Exploratory Study
The success of products like Apache and Linux has propelled increased awareness and adoption of open source software (OSS). Despite increased adoption of OSS products, questions about their security and reliability remain. Using four popular OSS and proprietary products as an initial sample, we examine the vulnerability patterns in OSS and proprietary products. Our analysis suggests that for bo...
متن کاملThe availability of source code in relation to timely response to security vulnerabilities
Once a vulnerability has been found in an application or service that runs on a computer connected to the Internet, fixing that exploit in a timely fashion is of the utmost importance. There are two parts to fixing vulnerability: a party acting on behalf of the application’s vendor gives instructions to fix it or makes a patch available that can be downloaded; then someone using that informatio...
متن کاملRole of Free and Open Source Software in Computer and Internet Security
There is no denying the fact that with the widespread usage of computers and the Internet in our daily lives, security of information and data has gained increased attention. Information stored in electronic form is more susceptible to being leaked to unauthorized individuals intentionally or without intent. One of the major reasons for this breach of security has been attributed to proprietary...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2005