Competition and patching of security vulnerabilities: An empirical analysis

Ashish Arora; Chris Forman; Anand Nandkumar; Rahul Telang

首页> 外文期刊>Information economics and policy >Competition and patching of security vulnerabilities: An empirical analysis

【24h】

Competition and patching of security vulnerabilities: An empirical analysis

机译：安全漏洞的竞争和修补：实证分析

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

We empirically estimate the effect of competition on vendor patching of software defects by exploiting variation in number of vendors that share a common flaw or common vulnerabilities. We distinguish between two effects: the direct competition effect when vendors in the same market share a vulnerability, and the indirect effect, which operates through non-rivals that operate in different markets but nonetheless share the same vulnerability. Using time to patch as our measure of quality, we find empirical support for both direct and indirect effects of competition. Our results show that ex-post product quality in software markets is not only conditioned by rivals that operate in the same product market, but by also non-rivals that share the same common flaw.

机译：我们通过利用共享相同缺陷或常见漏洞的供应商数量的变化，通过经验估算竞争对供应商修补软件缺陷的影响。我们区分两种效应：同一市场中的供应商共享漏洞时的直接竞争效应，以及通过在不同市场中运行但仍具有相同漏洞的非竞争者运行的间接效应。使用时间修补作为我们的质量衡量标准，我们发现了对竞争的直接和间接影响的经验支持。我们的结果表明，软件市场中的事后产品质量不仅取决于在同一产品市场中运营的竞争对手，而且还受到具有相同共同缺陷的非竞争对手的制约。

著录项

来源
《Information economics and policy》 |2010年第2期|164-177|共14页
作者
Ashish Arora; Chris Forman; Anand Nandkumar; Rahul Telang;
展开▼
作者单位

Fuqua School of Business, Duke University, 1 Towerview Drive, Durham, NC 27708, United States;

College of Management, Georgia Institute of Technology, 800 West Peachtree St. NW, Atlanta, GA 30308, United States;

Indian School of Business, Gachibowli, Hyderabad 500 032, India;

H.John Heinz III College, Carnegie Mellon University, 5000 Forbes Avenue, Pittsburgh, PA 15213, United States;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
information security; competition; software quality; vulnerabilities;

机译：信息安全;竞争;软件质量;漏洞;

相似文献

外文文献
中文文献
专利

1. Patch Release Behaviors of Software Vendors in Response to Vulnerabilities: An Empirical Analysis [J] . ORCUN TEMIZKAN, RAM L. KUMAR, SUNGJUNE PARK, Journal of management information systems . 2012,第4期

机译：响应漏洞的软件供应商的补丁发布行为：实证分析
2. An Empirical Analysis of Software Vendors' Patch Release Behavior: Impact of Vulnerability Disclosure [J] . Ashish Arora, Ramayya Krishnan, Rahul Telang, Information Systems Research . 2010,第1期

机译：对软件供应商补丁发布行为的实证分析：漏洞披露的影响
3. Software reuse cuts both ways: An empirical analysis of its relationship with security vulnerabilities [J] . Antonios Gkortzis, Daniel Feitosa, Diomidis Spinellis The Journal of Systems and Software . 2021,第Feba期

机译：软件重用两种方式：与安全漏洞的关系实证分析
4. Detecting "0-Day" Vulnerability: An Empirical Study of Secret Security Patch in OSS [C] . Xinda Wang, Kun Sun, Archer Batcheller, Annual IEEE/IFIP International Conference on Dependable Systems and Networks . 2019

机译：检测“ 0天”漏洞：基于OSS秘密安全补丁的实证研究
5. Estimating Security Risk in Open Source Package Repositories: An Empirical Analysis and Predictive Model of Software Vulnerabilities [D] . Smith, Levii J. 2019

机译：估算开源包存储库中的安全风险：软件漏洞的实证分析和预测模型
6. Competition in the German pharmacy market: an empirical analysis [O] . Jörg G Heinsohn, Steffen Flessa 2013

机译：德国制药市场竞争：实证分析
7. Competition and patching of security vulnerabilities: An empirical analysis [O] . Ashish Arora, et al. 2010

机译：安全漏洞的竞争和修补：实证分析

Competition and patching of security vulnerabilities: An empirical analysis

摘要

著录项

相似文献

相关主题

期刊订阅