Hacker News new | ask | show | jobs
by msla 1246 days ago
Maybe I'm being too harsh, but my interpretation of that point is that they expect we'll eventually become perfect, which isn't going to happen in the software world as it hasn't happened in the airline world, even though the airline world has more incentives to be perfect in the form of more penalties when it isn't.
2 comments
riffraff 1246 days ago
My understanding is the author suggestion is to start with a security first approach, rather than wait-and-fix.

They don't expect the airline to be infallible, but they expect the airline to be proactively avoiding trouble.

link
scotty79 1246 days ago
The most secure plane is the one that stays on the ground.

It's always point of contention between people with security mindset and people that need to earn money to even hire people with security mindset.

link
kortilla 1246 days ago
You’re not being too harsh, you’re missing the point. Defense in depth is not something you advocate for if you expect perfection.
link