[71131] in North American Network Operators' Group
Re: AV/FW Adoption Sudies
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Wed Jun 9 14:36:44 2004
To: Dennis Dayman <dennis@thenose.net>
Cc: "'Nanog'" <nanog@merit.edu>
In-Reply-To: Your message of "Tue, 08 Jun 2004 17:29:51 CDT."
<769016A85139@mail.thenose.net>
From: Valdis.Kletnieks@vt.edu
Date: Wed, 09 Jun 2004 14:34:12 -0400
Errors-To: owner-nanog-outgoing@merit.edu
--==_Exmh_785702980P
Content-Type: text/plain; charset=us-ascii
On Tue, 08 Jun 2004 17:29:51 CDT, Dennis Dayman <dennis@thenose.net> said:
>
> Does anyone know of any studies on user adoption of security s/w (AV and FW
> products), including how often people update and how regularly?
Two papers that might help:
A writeup on the OpenSSL holes, the Slapper worm, and when/why users
patched their systems. 17 pages, PDF.
http://www.rtfm.com/upgrade.pdf
Lots of interesting conclusions about user behavior, which we probably
need to consider when planning. Some non-trivial math/stats, but they
explain what the results mean in plain English too, so feel free to
skip over the formulas to the "this clearly shows..."..
Crispin Cowan's presentation from Usenix LISA:
http://wirex.com/~crispin/time-to-patch-usenix-lisa02.ps.gz
Both of these papers are somewhat flawed in that they focus on the
mostly-broken idea that the admin/user would even know a patch if it came by
and bit them on the posterior.....
--==_Exmh_785702980P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQFAx1gkcC3lWbTT17ARAngEAKDTPHvFA20LvnBbXrig55HLpny1KwCg6nIA
6DUBSdz6wCjahuD/RT9Jog4=
=gqjX
-----END PGP SIGNATURE-----
--==_Exmh_785702980P--
