Episode Thumbnail
Episode 5  |  49:28 min

Analyzing Vulnerability Remediation Strategies w/ Cyentia Institute

Episode 5  |  49:28 min  |  07.15.2020

Analyzing Vulnerability Remediation Strategies w/ Cyentia Institute

00:00
00:00
This is a podcast episode titled, Analyzing Vulnerability Remediation Strategies w/ Cyentia Institute. The summary for this episode is: The first in a multi-part dive into the Prioritization to Prediction (P2P) research series by Kenna Security and The Cyentia Institute - guests Ed Bellis and Wade Baker discuss P2P Volume 1 which quantifies the performance of vulnerability prioritization and remediation strategies for the very first time.
Takeaway 1 | 00:45 MIN
This is the doctor you're looking for...
Takeaway 2 | 01:44 MIN
The Cyentia Institute and Its Research Library
Takeaway 3 | 01:44 MIN
Ed Swipes Right
Takeaway 4 | 02:28 MIN
Why We Kicked Off Prioritization to Prediction
Takeaway 5 | 07:46 MIN
CVE, CPE, CVSS, NVD, and The Challenges of Collecting Data
Takeaway 6 | 07:46 MIN
What Makes A Vulnerability a Priority?
Takeaway 7 | 06:37 MIN
Coverage vs. Efficiency in Vulnerability Prioritization
Takeaway 8 | 05:50 MIN
A Teaser on Predictive Models
Takeaway 9 | 05:50 MIN
Timelines of Exploitation
Takeaway 10 | 01:23 MIN
Vendor-Driven Remediation is Worse Than Randomly Patching
Takeaway 11 | 04:41 MIN
The Performance of CVSS-Based Remediation
Takeaway 12 | 02:52 MIN
Creating "The Everything" Model
Takeaway 13 | 02:52 MIN
Ed Cries
Takeaway 14 | 01:22 MIN
Wade Measures Something He Can Hang His Hat On
Takeaway 15 | 01:22 MIN
Comparing The Everything Model vs. Other Strategies