| Article ID | Journal | Published Year | Pages | File Type |
|---|---|---|---|---|
| 788076 | International Journal of Pressure Vessels and Piping | 2006 | 6 Pages |
Abstract
This paper proposes a method of assessing software vulnerability quantitatively. By expanding the concept of the IPO (input–program–output) model, we first define the software vulnerability and construct a stochastic model. Then we evaluate the software vulnerability of the sendmail system by analyzing the actual security-hole data, which were collected from its release note. Also we show the relationship between the estimated software reliability and vulnerability of the analyzed system.
Related Topics
Physical Sciences and Engineering
Engineering
Mechanical Engineering
Authors
Mitsuhiro Kimura,