Kernel vulnerabilities: old or new?
Posted Oct 20, 2010 1:49 UTC (Wed) by bfields
In reply to: Kernel vulnerabilities: old or new?
Parent article: Kernel vulnerabilities: old or new?
Could it not simply mean that we are doing a really poor job of finding the new bugs (and have thus not found them yet)?
So, say we want to determine the age distribution of kernel bugs. Given infinite time, we could find every kernel bug, then determine the age of each bug we find, and get an exact answer to our question. But of course we can only afford to investigate a sample of the kernel bugs.
So one way to phrase your criticism is: the sample chosen (of kernel vulnerabilities found this year) is biased towards older bugs, because it takes time for kernel bugs to be found.
So the problem is to find a sample that we think is more representative.
One approach might be to look just at bugs discovered by one new technique. If we believe the technique is sufficiently novel that very few of the bugs it discovers would have been discovered without it, then we could hope that set of bugs it discovers might have the characteristics of a random sample. (And perhaps we could test the novelty of the technique by looking through previously discovered bugs to see if any of them would have been caught by the new technique.)
to post comments)