Home
Certification Preparation
(ISC)²
CISSP
False Positive
dhufstader
I came across an interesting question in Boson that discusses false positives. A false positive is any instance in which something has been incorrectly identified. Let’s say that a business cannot upgrade some software that has known vulnerabilities due to incompatibilities. If the software is upgraded to patch the vulnerability then other critical business applications will not function correctly. Would this this vulnerability now be identified a false positive because of the business case?
Find more posts tagged with
Comments
changlinn
No if the vulnerability is detected and it is un-patched it is a true positive. It would be called a false positive if you had another mitigation, eg a HIPS that blocked the attack, or the service that was vulnerable being disabled or inaccessible outside of the host.
Quick Links
All Categories
Recent Posts
Activity
Unanswered
Groups
Best Of
