umu.sePublications
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Don’t let my Heart bleed!: An event study methodology in Heartbleed vulnerability case.
Umeå University, Faculty of Social Sciences, Department of Informatics.
Umeå University, Faculty of Social Sciences, Department of Informatics.
2014 (English)Independent thesis Advanced level (degree of Master (One Year)), 10 credits / 15 HE creditsStudent thesis
Abstract [en]

Due to the rapid evolution of technology, IT software has become incredibly complex. However the human factor still has a very important role on the application of it, since people are responsible to create software. Consequently, software vulnerabilities represent inevitable drawbacks, found to cost extremely large amounts of money to the companies. “Heartbleed” is a recently discovered vulnerability with no prior investigation that answers questions about the impact it has to the companies affected. This paper focuses on the impact of it on the market value of the companies who participated in the vulnerability disclosure process with the help of an event study methodology. Furthermore our analysis investigates if there is a different affection to the value of the company based on the roles those companies had in the process. Our results suggest that the market did not punish the companies about the existence of vulnerability. However the general negative reaction of the market to the incident reflects the importance of a strategic vulnerability disclosure plan for such cases.

Place, publisher, year, edition, pages
2014. , 33 p.
Series
Informatik Student Paper Master (INFSPM), 2014.16
Keyword [en]
software vulnerability, IT risk management, disclosure policies, event study methodology
National Category
Information Systems, Social aspects
Identifiers
URN: urn:nbn:se:umu:diva-90126OAI: oai:DiVA.org:umu-90126DiVA: diva2:726055
External cooperation
Swedish Armed Forces
Educational program
Master's Programme in IT Management
Supervisors
Examiners
Available from: 2014-06-18 Created: 2014-06-17 Last updated: 2014-06-18Bibliographically approved

Open Access in DiVA

Lioupras Manthou(1003 kB)736 downloads
File information
File name FULLTEXT01.pdfFile size 1003 kBChecksum SHA-512
952b3ccb215d62edb2ad45b419b1520085bbf741d934b0ab7cc296b59a4f4955f6de2bc038daa168c7142b7e2788c30c86fba8e00a7ff76efbf0d65cf9ec6e13
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Lioupras, IoannisManthou, Eleni
By organisation
Department of Informatics
Information Systems, Social aspects

Search outside of DiVA

GoogleGoogle Scholar
Total: 736 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 2022 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf