Issue No. 04 - July/August (2005 vol. 3)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2005.98
Dimitrios Lekkas , University of the Aegean
Diomidis Spinellis , Athens University of Economics and Business
Vendors and independent response centers have vastly different views regarding security advisories--what to publish and how to organize the information. The authors? scorecard approach aims to provide a practical guide for how to publish, read, evaluate, and handle advisories.
security advisory, vulnerability disclosure, patch
D. Spinellis and D. Lekkas, "Handling and Reporting Security Advisories: A Scorecard Approach," in IEEE Security & Privacy, vol. 3, no. , pp. 32-41, 2005.