The purpose of this paper is to identify the problem facing the network security
community regarding vulnerabilities and patches. It explains why current security
technologies such as firewalls, intrusion detection and prevention systems,
and automated patch management solutions have failed in preventing vulnerabilities
from being exploited. Finally an alternative approach is proposed that incorporates
and builds upon existing security technologies.
This document is in pdf format. To
view it click here.