|
|
|
|
|
|
by rapind
2854 days ago
|
|
|
This is the misconception I can't stand. Where we hold individuals responsible for a product / companies defect. I thoroughly disagree with the idea that it's his fault people are vulnerable. So called responsible disclosure is just a marketing spin term. Disclosing bugs privately is a favour not a responsibility. All this does is reduce the risk of bad software decisions. It doesn't solve anything. How about free market instead? If you run a multi-billion dollar company that can be hurt by issues like this, then it's on you to make it more profitable to disclose issues privately. If you can't or refuse to do that, then you're exposing your company and your customers to risk. Enough with the shunning and the "responsibility" of individuals which expose bugs. |
|
|
What this marketing spin does is give cover to those who design badly secured systems.
http://www.youtube.com/watch?v=CS9ptA3Ya9E
Also similar is the “jaywalking” idea, made by car manufacturers to make the default right of way to cars!
http://amp.charlotteobserver.com/opinion/op-ed/article650322...