Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror

+ - Stop fixing all security vulnerabilities. ->

Submitted by PMcGovern
PMcGovern writes: At BSidesLV in Las Vegas, Ed Bellis and Data Scientist Michael Roytman gave a talk explaining how security vulnerability statistics should be done. " Don't fix all security issues. Fix the security issues that matter, based on statistical relevance." They looked at 23,000,000 live vulnerabilities across 1,000,000 real assets, which belonged to 9,500 clients to explain their thesis.
Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Stop fixing all security vulnerabilities.

Comments Filter:

Once it hits the fan, the only rational choice is to sweep it up, package it, and sell it as fertilizer.

Working...