[happymellon]

The fundamental flaw is normally "but doing it correctly would cost too much and take too long, what can we do for $5 and a chocolate bar?".

Airline projects don't have the same level of issues because the FAA (or equivalent domestic authority) tells them to do it correctly.

[SQueeeeeL]

Except when they don't, then you get the Boeing 747 MAX literally avoiding mandatory safety evaluations and ignoring engineers

[happymellon]

But that is notable for being unusual.

After the FAA agreed that the two crashes were similar it grounded all planes, revoked Boeings certification authority, and fined Boeing.

Has Lastpass received anything other than bad publicity?

[anticensor]

737 MAX, but otherwise correct.

[Gigachad]

Is there any real equivalent process for tech? It seems like the majority of security certifications is a box checking exercise where actually being secure has very little relation to how many boxes you checked.