The following material is under construction, and immature.

Terms and Concepts

What is a Vulnerability?

There are many definitions of vulnerability out there in both academic and industry world. Here are some of them:

A vulnerability is

1. "An error or weakness in design, implementation, or operation"
2. "A specific flaw or oversight in a piece of software (or program) that allows attackers to do something malicious, expose or alter sensitive information"
3. "A weakness in a system that can be exploited to violate the system's intended behavior. There may be security, integrity, availability, and other vulnerabilities"
4. "An internal fault that enables an external fault to harm the system"
5. "A flaw or defect in a technology or its deployment that produces an exploitable weakness in a system, resulting in behavior that has security or survivability implications"
6. "An instance of [a mistake] in the specification, development, or configuration of software such that its execution can violate the [explicit or implicit] security policy"

In industry, vulnerability is defined as

1. Security holes/bugs are faults, defects, or programming errors. These may be exploited by unauthorized users to access computer networks or web servers from the Internet. Secpoint
2. A security vulnerability is a flaw in a product that makes it infeasible – even when using the product properly — to prevent an attacker from usurping privileges on the user's system, regulating its operation, compromising data on it, or assuming ungranted trust. Microsoft

Flaw vs Bug

http://zastita.com/09486/Bugs_vs._Flaws.html

Laws of Vulnerabilities

Research Plan

Result, So Far