ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Security threats Toolkit

Prioritising patches will help keep bad guys at bay

Joris Evers CNET News.com

Published: 15 Nov 2005 18:05 GMT

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

System administrators may be dealing with security vulnerabilities more quickly, but the bad guys are still leading the race.

That's because threats that exploit the flaws are also appearing sooner, according to research presented on Tuesday.

Although patching practices improved in the last year, nearly 70 percent of systems are currently vulnerable and at risk of attack, Gerhard Eschelbeck, chief technology officer and vice-president of engineering at vulnerability management vendor Qualys, said during a presentation at the Computer Security Institute conference in Washington.

In 2005, administrators have shaved two days off the "vulnerability half life," the time it takes to reduce the number of vulnerable systems that have direct Internet connections, Eschelbeck said.

Every 19 days, half of all the critical vulnerabilities are currently dealt with, either via a patch, a workaround or another security solution, according to Eschelbeck. That compares with 21 days a year ago and 30 days two years ago, he said.

But 19 days to fix half of all the vulnerable systems is not good enough. "Eighty percent of the exploits come out within the first half life of the vulnerability," Eschelbeck said. The "window of exposure" continues to shrink.

Administrators take their time to patch internal systems, which are behind a firewall or protected by other security technologies. Half of the vulnerable systems are now protected in 48 days, compared to 62 days last year, Eschelbeck said.

To better secure their systems, Eschelbeck recommends that organisations prioritise their patches. "Ninety percent of exposure is caused by 10 percent of the vulnerabilities," he said. To assist in the prioritisation task, Eschelbeck pitched the CVSS, which was introduced earlier this year.

"With the constant evolution and complexity of critical vulnerabilities, it is impossible for an organisation to fix every potential flaw. It is essential to prioritise and patch those vulnerabilities that are most damaging to their individual network," he said.

For his research, Eschelbeck analysed data from more than 32 million vulnerability scans. For 2003 and 2004, the data is for the full year, while the data for 2005 is for the first three quarters.

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with Dell

Did you find this article useful?
52 out of 118 people found this useful


Talkback

Post a comment


Full Talkback thread

2 comments

  1. Being able to patch quickly is not enough. One nee... Arthur B.
  2. Being able to patch quickly is not enough. One nee... Arthur B.

Related Links

More In Security threats


Company/Topic Alerts

Create a new alert from the list below:






Related Jobs

IT Support Analyst, DMA, Algo, Wombat, Oracle

Also a good understanding of RDBMS, preferably Oracle and PL/SQL with good understanding of Equity business, flows and processes, some exposure to ...

IT Service Desk / Infrastructure / Systems Support Graduate Vacancies - London

Our vision is to help the most vulnerable children and young people break through injustice, deprivation and inequality, so they can achieve their ...

Applications Support, FIX, Tibco RV, SQL, Wombat, Equities

You must have exposure to working in a Trading Floor environment with strong Wintel and Solaris, Market Data, RV or Wombat, FIX connectivity and SQL ...

Featured Talkback

What was achieved there is recognised to be of fundamental importance to both winning the war (Churchill visited to say 'thank you' to them) and the development of the computer. Maybe Bill Gates doesn't want to support this museum because it underlines where electronic computing started i.e. here, not the U.S.

By: 1000103773

Read full story:
Bletchley Park faces bleak future

Sentry Posts Blog

Skype - The Roach Motel

Here is an interesting article from The National Business Review, pointing out once again that you can never delete a Skype account. Never. Period. This is something I am familiar... More

Post a comment

The vPhone: Why Visa Should Go Mobile

The vPhone: Why Visa Should Go Mobile Author: Eric Everson, Founder MyMobiSafe.com With all of the success of Apple’s iPhone, there is a growing case to support a company like Visa... More

Post a comment

The Google Apple Merger: Fantasy or Fu...

The Google Apple Merger: Fantasy or Future? Author: Eric Everson, Founder MyMobiSafe.com Market research suggests that Microsoft controls upwards of 90% of the respective computer-based... More

1 comment

Featured Oracle Resources

businessfirst: Ideas to help small companies retain their successful entrepreneurial spirit

Oracle ONE Magazine: Technology solutions for midsized businesses February 2008 edition

Choosing a Reliable and Powerful IT Infrastructure at a Price You Can Afford

Database Consolidation: Reducing Cost and Complexity

Ensuring Data Protection for Growing Business

Oracle for medium and emerging businesses: protect, strengthen and enhance your organisation

Oracle partner network solutions catalogue

See All White Papers