[UncleMeat]

Is there any other field of computer security where this argument is acceptable? Usable security matters. Ecosystems matter. You cannot put a boundary somewhere in the middle of what the end user sees and call your security job done.

When people majorly botch x509 cert validation because the spec is so monstrously complex that's still a problem with x509.

[dahdum]

Ethereum specifically chose to develop around multiple clients to mitigate the risks of implementation errors such as this. It would be ideal if all were perfect from the start, but no software is, security or otherwise.

[heliumcraft]

One can't claim the Web is broken just because a bug was found in one of the many browsers.