TY - GEN
T1 - Classifying common security vulnerabilities by software type
AU - Ezenwoye, Onyeka
AU - Liu, Yi
AU - Patten, William
N1 - Publisher Copyright:
© 2020 Knowledge Systems Institute Graduate School. All rights reserved.
Copyright:
Copyright 2020 Elsevier B.V., All rights reserved.
PY - 2020
Y1 - 2020
N2 - The National Vulnerability Database does not identify a type for the software that is impacted by a specified weakness. To gain some insight into the security vulnerability landscape, we classify by software type a total of 51,110 vulnerability entries from 2015 to 2019. The software types are operating system, browser, middleware, utility, web application, framework, and server. This classification shows the pattern of prevalence of software weaknesses and the persistence of weaknesses as they pertain to each software type.
AB - The National Vulnerability Database does not identify a type for the software that is impacted by a specified weakness. To gain some insight into the security vulnerability landscape, we classify by software type a total of 51,110 vulnerability entries from 2015 to 2019. The software types are operating system, browser, middleware, utility, web application, framework, and server. This classification shows the pattern of prevalence of software weaknesses and the persistence of weaknesses as they pertain to each software type.
KW - Security
KW - Software
KW - Taxonomy
KW - Vulnerability
KW - Weakness
UR - http://www.scopus.com/inward/record.url?scp=85090507908&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85090507908&partnerID=8YFLogxK
U2 - 10.18293/SEKE2020-047
DO - 10.18293/SEKE2020-047
M3 - Conference contribution
AN - SCOPUS:85090507908
T3 - Proceedings of the International Conference on Software Engineering and Knowledge Engineering, SEKE
SP - 61
EP - 64
BT - SEKE 2020 - Proceedings of the 32nd International Conference on Software Engineering and Knowledge Engineering
PB - Knowledge Systems Institute Graduate School
T2 - 32nd International Conference on Software Engineering and Knowledge Engineering, SEKE 2020
Y2 - 9 July 2020 through 19 July 2020
ER -