TY  - JOUR
A1  - Demir, Nurullah
A1  - Urban, Tobias
A1  - Wittek, Kevin
A1  - Pohlmann, Norberg
T1  - Our (in)Secure Web: Understanding Update
Behavior of Websites and Its Impact on Security
T2  - Passive and Aktive Measurement : 22nd International Conference, PAM, Virtual Event, March 29 - April 2, 2021, Proceedings
N2  - Software updates take an essential role in keeping IT environments secure. If service providers delay or do not install updates, it can cause unwanted security implications for their environments. This paper conducts a large-scale measurement study of the update behavior of websites and their utilized software stacks. Across 18 months, we analyze over 5.6M websites and 246 distinct client- and server-side software distributions. We found that almost all analyzed sites use outdated software. To understand the possible security implications of outdated software, we analyze the potential vulnerabilities that affect the utilized software. We show that software components are getting older and more vulnerable because they are not updated. We find that 95 % of the analyzed websites use at least one product for which a vulnerability existed.
Y1  - 2021
UR  - https://whge.opus.hbz-nrw.de/frontdoor/index/index/docId/4412
UR  - https://norbert-pohlmann.com/wp-content/uploads/2021/02/424-Our-inSecure-Web-Understanding-Update-Behavior-of-Websites-and-Its-Impact-on-Security-Prof.-Norbert-Pohlmann.pdf
ER  -