Competition and patching of security vulnerabilities: An empirical analysis

We empirically estimate the effect of competition on vendor patching of software defects by exploiting variation in number of vendors that share a common flaw or common vulnerabilities. We distinguish between two effects: the direct competition effect when vendors in the same market share a vulnerability, and the indirect effect, which operates through non-rivals that operate in different markets but nonetheless share the same vulnerability. Using time to patch as our measure of quality, we find empirical support for both direct and indirect effects of competition. Our results show that ex-post product quality in software markets is not only conditioned by rivals that operate in the same product market, but by also non-rivals that share the same common flaw.

MoreLess

Year of publication:	2010
Authors:	Arora, Ashish ; Forman, Chris ; Nandkumar, Anand ; Telang, Rahul
Published in:	Information Economics and Policy. - Elsevier, ISSN 0167-6245. - Vol. 22.2010, 2, p. 164-177
Publisher:	Elsevier
Keywords:	Information security Competition Software quality Vulnerabilities

Online Resource

Check full text access |

More access options

Check Google Scholar

In libraries world-wide (WorldCat)

In German libraries (KVK)

subito order

I need help

More details

Type of publication:	Article
Source:	RePEc - Research Papers in Economics

Persistent link: https://www.econbiz.de/10008499092