Analysis of the Global Public Vulnerability Research Market, 2015

Growth of Public Vulnerability Disclosures, the Important Intermediary Between Commercial Threat Analysis and Cyber Grid Threat Reporting

USD 4,950

* Required Fields

USD 4,950

PAY BY INVOICE

Be the first to review this product

The Frost & Sullivan report analyzes the global public vulnerability research market. The growth of cyber threats such as malware, viruses, ransomware, botnets and more are of great concern to companies and consumers. Uncovering and disclosing vulnerabilities is important for analyzing and countering potential threats.
The vulnerability material that is collected, queried, and segmented provides rich qualitative commentary on the vulnerability research industry and community of contributors, and recognizes the most prolific disclosers of new vulnerabilities.
Research Scope
•     Total number of public vulnerabilities
•     Market trends of severity levels
•     Market trends of applications and classes of applications
•     Market trends of different vulnerability flaws
In 2015, public vulnerability disclosures increased 43.8% over the previous year. Researchers are covering a wider breadth of applications, such as media players, operating systems, office products, web browsers and many more.
There have also been notable changes among the key players. Trend Micro acquired HP TippingPoint and Google Project Zero launched in mid-2014.
The different types of threats which can exploit vulnerabilities are discussed in this report. Frost & Sullivan also conducted competitive analysis of the research institutions involved in disclosing vulnerabilities.
Key questions this study answers:
•     Which institutions have disclosed the most vulnerabilities and what types?
•     Which applications have had the most public vulnerabilities?
•     Have severity levels changed?
•     What are the most likely impacts threats will have on exploitable vulnerabilities?

Table of Contents

1. Executive Summary
Key Findings
2. Market Overview
Bug Bounty Programs and Contests
Pwn2Own
Pwn2Own Competition
Mobile Pwn2Own Competition
The Role of MITRE and CVSS Scoring
Research Methodology
3. Types of Threats
Malware
Mobile Malware
Ransomware
Bots and Botnets
Advanced Persistent Threats (APT)
Web and Phishing Attacks
4. Market Trends in Public Vulnerabilities
Vulnerabilities Reported by Year
Quarterly Reported Vulnerabilities
Market Trends
Vulnerability Disclosure
Vulnerability Disclosure by Institution Type
5. Analysis of Vulnerabilities by Severity
Analysis of Vulnerabilities by Severity
6. Comparison of Targeted Applications
Targeted Applications
Analysis of Targeted Applications
Top Targeted Class of Applications
Disclosing Institutions: Media Player Vulnerabilities
Disclosing Institutions: Web Browser Vulnerabilities
Disclosing Institutions: Operating System Vulnerabilities
Disclosing Institutions: IT Support Tools Vulnerabilities
Analysis of Targeted Applications by Class
Targeted Web Browser Type
Analysis of Targeted Web Browser Type
7. Vulnerability Analysis
Definitions
Vulnerabilities Reported by Flaw Type (2014 and 2015)
Disclosing Institutions: Buffer Errors
Disclosing Institutions: Use After Free Errors
Disclosing Institutions: Permissions, Privileges, and Access Control Errors
Top Impact Type (2014 and 2015)
Disclosing Institution: Disruption-of-Service/Unauthorized Modification/Disclosure of Information Impacts
Analysis of Impact Types
8. Competitive Analysis
Competitive Analysis Vulnerabilities
9. The Status Of Public Vulnerability Reporting
Then, Now, and in the Future
10. Profiles of Security Platform Providers Offering Public Vulnerability Disclosure
Core Security
FortiGuard Labs (Fortinet)
Google Project Zero (Google)
High-Tech Bridge
IBM X-Force (IBM)
Secunia (now Flexera)
Secunia Research About Often-Targeted Applications (Adobe, Flash, and Microsoft)
TippingPoint Zero Day Initiative (Trend Micro)
US-CERT
Verisign (Verisign Labs)
11. Conclusions
12. Appendix
Vulnerability Database Sources (for 2015)
List of Publications Cited in this Report
Legal Disclaimer
13. The Frost & Sullivan Story


List of Figures & Charts

1. Public Vulnerability Research Market: Yearly Reported Vulnerabilities, Global, 2010–2015
2. Public Vulnerability Research Market: Quarterly Reported Vulnerabilities, Global, 2011–2015
3. Public Vulnerability Research Market: Percentage of Reported Vulnerabilities by Disclosure Type Global, 2015
4. Public Vulnerability Research Market: Percentage of Vulnerabilities by Institution Type, Global 2015
5. Public Vulnerability Research Market: Reported Vulnerabilities by Organization Type Global, 2015
6. Public Vulnerability Research Market: Percentage of Reported Vulnerabilities by Severity, Global 2015
7. Public Vulnerability Research Market: Critical-severity Vulnerabilities by Disclosing Institution Global, 2015
8. Public Vulnerability Research Market: Reported Vulnerabilities by Severity, Global, 2015
9. Public Vulnerability Research Market: Critical & High-severity Vulnerabilities by Reporting Source, Global, 2015
10. Public Vulnerability Research Market: Reported Vulnerabilities by Severity, Global, 2014 and 2015
11. Public Vulnerability Research Market: Reported Vulnerabilities by Quarter and Severity, Global, 2015
12. Public Vulnerability Research Market: Applications with the Highest Number of Unique Confirmed Vulnerabilities, Global, 2015
13. Public Vulnerability Research Market: Class of Applications with the Highest Number of Unique Confirmed Vulnerabilities, Global, 2015
14. Public Vulnerability Research Market: Media Player Vulnerabilities by Disclosing Institutions, Global, 2015
15. Public Vulnerability Research Market: Web Browser Vulnerabilities by Disclosing Institutions, Global, 2015
16. Public Vulnerability Research Market: Operating System Vulnerabilities by Disclosing Institutions, Global, 2015
17. Public Vulnerability Research Market: IT Support Tools Vulnerabilities by Disclosing Institutions, Global, 2015
18. Public Vulnerability Research Market: Percent of Reported Vulnerabilities by Web Browser Type, Global, 2015
19. Public Vulnerability Research Market: Reported Web Browser Vulnerabilities, Global, 2015
20. Public Vulnerability Research Market: Reported Vulnerabilities by Top Flaw Type, Global, 2014
21. Public Vulnerability Research Market: Reported Vulnerabilities by Top Flaw Type, Global, 2015
22. Public Vulnerability Research Market: Reported Buffer Errors by Disclosing Institutions Global, 2015
23. Public Vulnerability Research Market: Use After Free Errors by Disclosing Institutions Global, 2015
24. Public Vulnerability Research Market: Permissions, Privileges, and Access Control Errors by Disclosing Institution Global, 2015
25. Public Vulnerability Research Market: Percentage of Vulnerability Reports by Associated Impacts, Global, 2014
26. Public Vulnerability Research Market: Percentage of Vulnerability Reports by Associated Impacts, Global, 2015
27. Public Vulnerability Research Market: Disruption-of-Service/Unauthorized Modification/Disclosure of information Impacts by Reporting Source, Global, 2015
28. Public Vulnerability Research Market: Vulnerabilities by Disclosing Institutions, Global, 2014
29. Public Vulnerability Research Market: Total Vulnerabilities by Disclosing Institutions, Global, 2014 and 2015





Keyword1

Keyword2

Keyword3

Why Frost & Sullivan

Working with the CEO’s growth team to create a vision based on a transformation growth strategy

Creating content-based digital marketing strategies that leverage our research perspective to differentiate and “tell your story”

Tracking over 1000 emerging technologies and analyzing the impact by industry and application to reveal the companies to watch in each sector

The Frost & Sullivan team is based in our 45 global offices and have developed a powerful global understandings of how industries operate on a global level.