Skip to main content
Conference Proceedings

Automated Patch Management: An Empirical Evaluation Study

Proceedings of the 2023 IEEE International Conference on Cyber Security and Resilience, CSR 2023 (2023) 321-328
DOI: 10.1109/CSR57506.2023.10224970
2Citations
Citations of this article
8Readers
Mendeley users who have this article in their library.
Get full text

Abstract

Vulnerability patch management is one of IT orga-nizations' most complex issues due to the increasing number of publicly known vulnerabilities and explicit patch deadlines for compliance. Patch management requires human involvement in testing, deploying, and verifying the patch and its potential side effects. Hence, there is a need to automate the patch management procedure to keep the patch deadline with a limited number of available experts. This study proposed and implemented an automated patch management procedure to address mentioned challenges. The method also includes logic to automatically handle errors that might occur in patch deployment and ver-ification. Moreover, the authors added an automated review step before patch management to adjust the patch prioritization list if multiple cumulative patches or dependencies are detected. The result indicated that our method reduced the need for human intervention, increased the ratio of successfully patched vulnerabilities, and decreased the execution time of vulnerability risk management.

Author supplied keywords

References Powered by Scopus

The attack of the clones: A study of the impact of shared code on vulnerability patching

Proceedings - IEEE Symposium on Security and Privacy
129Citations
N/AReaders
Get full text

Software security patch management - A systematic literature review of challenges, approaches, tools and practices

Information and Software Technology
46Citations
N/AReaders
Get full text

Towards a self-managing software patching process using black-box persistent-state manifests

Proceedings - International Conference on Autonomic Computing
28Citations
N/AReaders
Get full text
View more at Scopus

Cited by Powered by Scopus

Virtual Power Plants Security Challenges, Solutions, and Emerging Trends: A Review

2024 Cyber Awareness and Research Symposium, CARS 2024
0Citations
N/AReaders
Get full text

Impact of cybersecurity attacks on electrical system operation

Cyber Security Solutions for Protecting and Building the Future Smart Grid
0Citations
N/AReaders
Get full text
View more at Scopus

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Cite

CITATION STYLE

APA

Mehri, V. A., Arlos, P., & Casalicchio, E. (2023). Automated Patch Management: An Empirical Evaluation Study. In Proceedings of the 2023 IEEE International Conference on Cyber Security and Resilience, CSR 2023 (pp. 321–328). Institute of Electrical and Electronics Engineers Inc. https://doi.org/10.1109/CSR57506.2023.10224970

Readers' Seniority

Tooltip

Lecturer / Post doc 2

100%

Readers' Discipline

Tooltip

Computer Science 2

50%

Engineering 1

25%

Business, Management and Accounting 1

25%

Save time finding and organizing research with Mendeley

Sign up for free