Issue No.04 - July/August (2005 vol.3)
Dimitrios Lekkas , University of the Aegean
Diomidis Spinellis , Athens University of Economics and Business
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2005.98
Vendors and independent response centers have vastly different views regarding security advisories--what to publish and how to organize the information. The authors? scorecard approach aims to provide a practical guide for how to publish, read, evaluate, and handle advisories.
security advisory, vulnerability disclosure, patch
Dimitrios Lekkas, Diomidis Spinellis, "Handling and Reporting Security Advisories: A Scorecard Approach", IEEE Security & Privacy, vol.3, no. 4, pp. 32-41, July/August 2005, doi:10.1109/MSP.2005.98