ECE News Story
Dumitras Receives NSF Award to Study Software Update Vulnerabilities
Tudor Dumitras (ECE/ UMIACS/ Maryland Cybersecurity Center ) has received a National Science Foundation (NSF) award to study how well software updating mechanisms work.
For example, Dumitras says, popular applications like Web browsers, media players or document editors and readers often have vulnerabilities that may allow criminals to steal sensitive information like passwords, credit card numbers or medical records, or to control those hosts remotely for sending spam or for launching other cyber attacks.
Dumitras and Zhu are working to come up with mathematical models for patch deployment so they can predict what the window of vulnerability will be for future exploits. Their work may also highlight opportunities for improving software-update mechanisms.
—Story by Melissa Brachfeld
May 15, 2015