|COOKIES: By using this website you agree that we can place Google Analytics Cookies on your device for performance monitoring.|
Milk or wine: does software security improve with age?
If you have a question about this talk, please contact Saar Drimer.
We examine the code base of the OpenBSD operating system to determine whether its security is increasing over time. We measure the rate at which new code has been introduced and the rate at which vulnerabilities have been reported over the last 7.5 years and fifteen versions. We learn that 61% of the lines of code in today’s OpenBSD are foundational: they were introduced prior to the release of the initial version we studied and have not been altered since. We also learn that 62% of reported vulnerabilities were present when the study began and can also be considered to be foundational. We find strong statistical evidence of a decrease in the rate at which foundational vulnerabilities are being reported. However, this decrease is anything but brisk: foundational vulnerabilities have a median lifetime of at least 2.6 years. Finally, we examined the density of vulnerabilities in the code that was altered/introduced in each version. The densities ranged from 0 to 0.033 vulnerabilities reported per thousand lines of code. These densities will increase as more vulnerabilities are reported.
This talk is part of the Computer Laboratory Security Seminar series.
This talk is included in these lists:
Note that ex-directory lists are not shown.
Other listsFaculty of Education Special Events Algebraic Geometry Seminar Engineering Without Borders Cambridge
Other talksThe Quest for Innovative Treatments in Psychiatry and Medicine: a personal perspective Techfugees Cambridge Biodiversity and Livestock Producer Acceptance of Genomics: Evidence From Three Producer Surveys In Canada Turner, Goya and Cornelius in 1816 CO2 + H2O + Sunlight → Chemical Fuels + O2 Data Dissemination: A Survey of Recent Approaches, Challenges, and Connections to Data Linkage