Analyzing the Software Patch Discipline Across Different Industries and Countries

In view of recent cyberattacks and new regulatory requirements, companies in different industries and countries are forced to implement additional IT security measures. Nevertheless, a large number of services with vulnerable or outdated software can be found on the Internet. In this work, we investigate whether industry-specific differences exist in the maintenance and use of outdated Internet-facing software. For this purpose, we combine results from Internet-wide port scans with product and version information as well as information of companies listed at stock markets in different countries. We show that different industries have more or less up-to-date software for different services like remote access tools, databases, webservers and file servers. With this approach, we discovered surprising amounts of outdated and even unsupported software in use across many industries and countries.

Müller, Robin; Ruppert, Julius; Will, Katharina; Wüsteney, Lukas; Heer, Tobias (2022): Analyzing the Software Patch Discipline Across Different Industries and Countries. GI SICHERHEIT 2022. DOI: 10.18420/sicherheit2022_10. Gesellschaft für Informatik, Bonn. PISSN: 1617-5468. ISBN: 978-3-88579-717-3. pp. 159-170. Session 3. Karlsruhe. 5.-8. April 2022

Schlagwörter

Internet Scanning , Vulnerability Management , Patch Management

DOI

10.18420/sicherheit2022_10

Sammlungen

P323 - Sicherheit 2022 - Sicherheit, Schutz und Zuverlässigkeit

Komplettanzeige

Analyzing the Software Patch Discipline Across Different Industries and Countries

Volltext URI

Dokumententyp

Dateien

Zusatzinformation

Datum

Autor:innen

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Quelle

Verlag

Zusammenfassung

Beschreibung

Schlagwörter

Zitierform

DOI

Tags

Sammlungen