Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Apple, Google, etc. have whole teams of talented people dedicated to doing exactly these types of things, and they undoubtedly help prevent many vulnerabilities from escaping the labs. Yet vulnerabilities are still created and exploited despite their best efforts. As long as software is created by imperfect humans, it will reflect the imperfections of its creators.


This is my take as well. If Apple and Google can't do it then what hope does anyone else have? The current paradigm is insecure and broken.


Not only humans, the math says it’s not knowable whether any open ended hardware/software is inherently safe.


It's not knowable for any, but it is knowable for some. You just have to build systems that are in the some and are inherently safe. Difficult, not impossible.


Difficult often implies additional resourcing and development related costs.

Something that many companies are not willing to invest in since it will have a negative impact on the shareholder values.

Often risks are accepted, and cybersecurity insurance is used to mitigate those risks.


I agree, I just wanted to clarify that isn't mathematically impossible to make provably secure systems. It's just hard enough that it's not often done.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: