It is well past time for laws that require all mission-critical software to have publicly published source code. Flying planes, driving cars, and using voting machines whose software hasn't been publicly analyzed is a dangerous (and deadly) policy choice. https://www.bloomberg.com/news/articles/2019-06-28/boeing-s-737-max-software-outsourced-to-9-an-hour-engineers …
-
Show this thread
-
Requiring public disclosure would not only allow concerned programmers to find problems, but it might also create incentives for good software development at corporations because they know they have to publish the code, and if it is poor quality, their reputation suffers.
4 replies 7 retweets 111 likesShow this thread -
Replying to @cmuratori
I think you’re super right. But also, would publicly publishing code allow people to find vulnerabilities and exploit them as well? Or do you think this would not be a huge concern, or they would be found, pointed out, and fixed faster?
1 reply 0 retweets 0 likes
I think it is safe to assume that anything high value enough for people to want to exploit it, black hats somewhere already have that code, either through industrial espionage or infiltration. Relying on "security through obscurity" for critical infrastructure is not good enough.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.