Strengthening DoD Cyber Security with the Vulnerability Market

Abstract

Every year, the Department of Defense (DoD) upgrades its information technology systems, allows new applications to connect to DoD information networks, and reconfigures the enterprise to gain efficiencies. While these actions better support the warfighter and satisfy national security interests, they introduce new system vulnerabilities waiting to be exploited. Often, these vulnerabilities are discovered only after the system has already deployed, where costs to fix are much larger. This article recommends the DoD adopt an economic strategy called the vulnerability market, or the market for zero-day exploits, to enhance system Information Assurance. Through the mutual cooperation between industry and the military in securing information, the DoD optimizes security investments, secures critical information, and provides an effective and resilient warfighting capability.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2014
Accession Number
ADA600496

Entities

People

  • Bradley C. Panton
  • John M. Colombi
  • Michael R. Grimaila
  • Robert F. Mills

Organizations

  • Air Force Institute of Technology

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Air Force
  • Computer Network Security
  • Computer Networks
  • Computer Programming
  • Computers
  • Cyber Warfare
  • Information Security
  • Information Systems
  • Market Economy
  • National Security
  • Network Architecture
  • Operating Systems
  • Security
  • Systems Engineering
  • Vulnerability
  • Web Browsers
  • Word Processors

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Enterprise Information Systems Architecture and Joint Command Capability Interoperability Support.
  • Strategic Security Studies

Technology Areas

  • Cyber