Is Finding Security Holes a Good Idea?

	This Article
	Subscribers, please Login Purchase article: $19 PDF HTML IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Eric Rescorla

Is Finding Security Holes a Good Idea?

January-February 2005 (vol. 3 no. 1)

pp. 14-19

	ASCII Text	x
	Eric Rescorla, "Is Finding Security Holes a Good Idea?," IEEE Security and Privacy, vol. 3, no. 1, pp. 14-19, January-February, 2005.

	BibTex	x
	@article{ 10.1109/MSP.2005.17, author = {Eric Rescorla}, title = {Is Finding Security Holes a Good Idea?}, journal ={IEEE Security and Privacy}, volume = {3}, number = {1}, issn = {1540-7993}, year = {2005}, pages = {14-19}, doi = {http://doi.ieeecomputersociety.org/10.1109/MSP.2005.17}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - MGZN JO - IEEE Security and Privacy TI - Is Finding Security Holes a Good Idea? IS - 1 SN - 1540-7993 SP14 EP19 EPD - 14-19 A1 - Eric Rescorla, PY - 2005 KW - blackhat KW - whitehat KW - software patches KW - vulnerability disclosure VL - 3 JA - IEEE Security and Privacy ER -

Eric Rescorla, RTFM

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2005.17

Despite the large amount of effort that goes toward finding and patching security holes, the available data does not show a clear improvement in software quality as a result.

Index Terms:

blackhat, whitehat, software patches, vulnerability disclosure

Citation:

Eric Rescorla, "Is Finding Security Holes a Good Idea?," IEEE Security and Privacy, vol. 3, no. 1, pp. 14-19, Jan. 2005, doi:10.1109/MSP.2005.17

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.