Mediebidrag
1Mediebidrag
Titel Vulnerability Counts: A Rejoinder Grad af anerkendelse International Mediets navn/udløb Communications of the ACM Medietype Internet Land/Område USA Dato 24/11/2025 Beskrivelse In their September 2025 Communications Opinion column, “Stop Using Vulnerability Counts to Measure Software Security,” Andrew Meneely and Brandon Keller presented an argument that vulnerability counts should be avoided for making inferences about software security. The argument is not new, and I have raised it previously also myself. With this rejoinder, I wish to add a little more nuance to the argument and the potential ways forward. In what follows, the points raised are based on my own research, but I omit references for brevity: if needed, any interested reader will be able to find the research with little effort. URL https://cacm.acm.org/opinion/vulnerability-counts-a-rejoinder/ Personer Jukka Ruohonen