100 NT 2580 U2A1

Calculate the Window of Vulnerability First, what is the definition of Window of Vulnerability (WoV)? According to www.techopedia.com, an IT dictionary and more for the IT word, the definition states that “vulnerability is a cyber-security term that refers to a flaw in a system that can leave it open to attack. Vulnerability may also refer to any type of weakness in a computer system itself, in a set of procedures, or in anything that leaves information security exposed to a threat.”¹ To calculate this time frame or window of vulnerability mean that we much think about a number of attributes to the situation. The specific attributes we must use in the calculation are the time it takes the attack to start and when the attack is found and removed or fixed. The time from the start to the removal or fix is the window of vulnerability.
Since we already know that the server software manufacturer detected the hole the day before, and that a new patch will be available in three days but the LAN administrator needs at least a week to download the software, test it, and then install the patch, then we can calculate that the approximate window of vulnerability will be about 8 days at the very minimum. In this particular case, we do not know the specific time or day in which this occurs. To explain, further, we’ll use a made up day and time frame.
Let’s say for this particular scenario, that the attack hole was detected on Tuesday morning at 9:00am, and the attack happened the next day, or on Wednesday, around 8:00am. If the software company or manufacturer can’t have the patch ready for about 3 days, this means that we’ll most likely receive the patch around Monday or Tuesday of the following week. This is because in most cases, business days are when anything from a software company will be carried out. Once this patch has been received by the LAN administrator, he/she will need to install it and conduct tests to make sure that everything within the patch is fully