Toolkit
Story: Vendors, not developers, to blame for poor code
Posted by: RockyH (Thursday 20 October 2005, 10:55 PM)
While this sounds like a good idea, it's highly impractical. As long as humans write software, there will be honest mistakes that lead to vulnerabilities. I'm not making excuses, we should all be scrutinizing our code for flaws, especially security related ones. AFter all I'm one of the biggest promoters of secure software.
Think what impact this will have on the Industry. Software development will all but vanish as a career, and those that remain in it will demand exorbitant amounts of money due to the liability. Nothing would ever get done because no one would be able to get liability insurance to run their software companies.
Companies would make a business out of dragging individuals through civil suits just to make money because they made a mistake. We can't even clearly define security flaws, and where things actually go wrong yet.
It's good in theory, but a really silly idea.
Full Talkback thread
Story: Vendors, not developers, to blame for poor code
-
Indeed, liability should be introduced at the leve... Arthur B. -
While this sounds like a good idea, it's highly im... RockyH -
There are two issues here:
1) I agree there is no... Anon
-
I agree that Developers should take more resp... Doug -
Currently, if you accept the EULA, you are telling... oldator
-
Fact is that if we do nothing then it's likely tha... Arthur B.
-
As a software developer, I can say that I am force... Michel Behna
