Skip to main content Skip to navigation

WMG News

Show all news items

The Trustworthy Software Initiative Stresses the Importance of Patching

cyber security

The Trustworthy Software Initiative (TSI), based in WMG’s Cyber Security Centre at the University of Warwick, has produced a set of videos to raise awareness of the risks businesses run when they put off installing patches for existing software.

Disregard for patching represents a significant and growing problem for businesses of all sizes. According to the latest figures, untrustworthy software is responsible for over 90% of data breaches worldwide, with 99.9% of these vulnerabilities being exploited more than a year after details were made public.

The videos were commissioned in a partnership between government agencies and some of the world’s leading technology companies including IBM, Microsoft, Intel, Oracle, and Dell Secureworks, for the Technology forum. The key messages are: leaving software unpatched amounts to gambling away business; seemingly time-consuming preparation is essential for secure performance; and stressing the importance of trustworthy software to the successful operation of any modern business.

The Director of the WMG Cyber Security Centre, Professor Tim Watson, said: "Trustworthy software is vital for us all. We need to have confidence in the systems we rely on to protect our personal information; that control our power, water and food supplies; that manage our financial systems; and that defend our critical national infrastructure. The work that TSI have done in partnership with the Technology Forum on explaining patching for a wider audience highlights the need for a cradle-to-grave approach to the trustworthiness of software. WMG are very proud to be contributing to this work by hosting TSI."

“Our hope is that these videos will encourage businesses to invest time and resources into the development and maintenance of trustworthy software,” said Tony Dyhouse, Director of the TSI. “Considering the substantial risks untrustworthy software can pose to individual businesses and the UK economy as a whole, it is important that government and industry speak with one voice to raise awareness of this important issue.”

Businesses wishing to take a more comprehensive approach are advised to consult the TSI’s landmark guidance document PAS 754:2014 Software trustworthiness, the first Publically Available Specification to document the overall principles for effective software trustworthiness.

Notes

Watch the three videos

 About TSI

The Trustworthy Software Initiative (TSI) is a public good initiative supported and funded through the UK Government’s National Cyber Security Programme (NCSP) with a mission to “Make Software Better”. TSI provides the knowledge, skills and capability for the supply, demand and education communities such that trustworthy software can be designed, implemented, sustainably maintained and assured in a risk-based, whole-life process.

Visit: http://www.uk-tsi.org/

About WMG’s Cyber Security Centre

The Cyber Security Centre focuses its research on constructive innovation, on the rigorous foundational thinking needed to forge new understanding of the nature of the cyber environment. Novel and transformative research approaches contribute to protecting the human experience within the cyber environment. The Centre focuses on delivering transformative solutions for governments and industry, and for individuals and communities; regionally, nationally and globally. The CSC team has recognised expertise in cyber security, especially within government, defence and the law enforcement communities. Areas of focus include cyber-physical systems, vehicle cyber security, smart cities, digital forensics, advanced network defence, and counterfeit protection.

Visit: http://www2.warwick.ac.uk/fac/sci/wmg/research/csc/

Thu 02 Jul 2015, 16:29 | Tags: Cyber Security Centre Research