NOTICE: Due to a lapse in annual appropriations, most of this website is not being updated. Learn more.

Form submissions will still be accepted but will not receive responses at this time. Sections of this site for programs using non-appropriated funds (such as NVLAP) or those that are excepted from the shutdown (such as CHIPS and NVD) will continue to be updated.

U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PUBLICATIONS

Dramatically Reducing Software Vulnerabilities

Published

Author(s)

Paul E. Black, Larry Feldman, Gregory A. Witte

Abstract

This bulletin summarized the information presented in NISTIR 8151: Dramatically Reducing Software Vulnerabilities: Report to the White House Office of Science and Technology Policy. The publication starts by describing well known security risks and presents a list of specific technical approaches that have the potential to make a dramatic difference in reducing vulnerabilities.
Citation
ITL Bulletin -
NIST Pub Series
ITL Bulletin
Pub Type
NIST Pubs

Download Paper

Local Download

Keywords

measurement, metrics, software assurance, software measures, security vulnerabilities, reduce software vulnerability
Cybersecurity and privacy, Software research, Software testing and Numerical methods and software

Citation

Black, P. , Feldman, L. and Witte, G. (2017), Dramatically Reducing Software Vulnerabilities, ITL Bulletin, National Institute of Standards and Technology, Gaithersburg, MD, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=922589 (Accessed October 3, 2025)

Issues

If you have any questions about this publication or are having problems accessing it, please contact [email protected].

Created January 18, 2017, Updated May 4, 2021
Was this page helpful?