Abstract

Software vulnerability disclosure has generated much interest and debate. Recently some private intermediaries have entered this market. This paper examines the effects of such private intermediaries on optimal timing of disclosure policy made by public intermediaries and vendors' reactions. Our analysis of private intermediaries' role suggests that public intermediary's optimal disclosure time does not change with private intermediary's participation. However, a vendor's patch time increases when the probability of information leakage is low, if not non-existent. In other words, private intermediaries' service decreases a vendor's willingness to deliver quick patches. Empirical evidence with 1493 vulnerability observations from CERT/CC and other 326 different vulnerability observations from iDefense provided support for our analytical results.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
The roles of intermediaries in sectoral innovation system in developing countries: public organizations versus private organizations
P Intarakumnerd ... P Chaoroenporn
Asian Journal of Technology Innovation | VOL. 21
P Intarakumnerd, et. al.P Intarakumnerd ... P Chaoroenporn
01 Jun 2013
The roles of intermediaries and the development of their capabilities in sectoral innovation systems: a case study of Thailand
Patarapong Intarakumnerd ... Peera Chaoroenporn
Asian Journal of Technology Innovation | VOL. 21
Patarapong Intarakumnerd, et. al.Patarapong Intarakumnerd ... Peera Chaoroenporn
28 Nov 2013
Bridging skills demand and supply in South Africa: The role of public and private intermediaries
Il-Haam Petersen ... Michael Gastrow
Development Southern Africa | VOL. 33
Il-Haam Petersen, et. al.Il-Haam Petersen ... Michael Gastrow
03 May 2016
Intermediaries in environmental offset markets: Actions and incentives
Anthea Coggan ... Jeff Bennett
Land Use Policy | VOL. 32
Anthea Coggan, et. al.Anthea Coggan ... Jeff Bennett
03 Dec 2012
View more papers

More From: Information Systems Frontiers

Paper Title
Journal
Date
Author
AI in the Organizational Nexus: Building Trust, Cementing Commitment, and Evolving Psychological Contracts
Muhammad Farrukh Moin ... Amit Shankar
Information Systems Frontiers | VOL. -
Muhammad Farrukh Moin, et. al.Muhammad Farrukh Moin ... Amit Shankar
15 Nov 2024
A Grey Combined Prediction Model for Medical Treatment Risk Analysis during Pandemics
R Rajesh
Information Systems Frontiers | VOL. -
R RajeshR Rajesh
11 Nov 2024
Stress Level Assessment by a Multi-Parametric Wearable Platform: Relevance of Different Physiological Signals
Beatrice De Marchi ... Andrea Aliverti
Information Systems Frontiers | VOL. -
Beatrice De Marchi, et. al.Beatrice De Marchi ... Andrea Aliverti
06 Nov 2024
Classifying DSS Research – A Theoretical Framework
Rahul Kumar ... Rahul Thakurta
Information Systems Frontiers | VOL. -
Rahul Kumar, et. al.Rahul Kumar ... Rahul Thakurta
04 Nov 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.