Why Software Isn't Liable

Almost everyone with a device (computer, phone, tablet) connected to the Internet worries about security or performance impact. Anti-virus packages can only help so much: they are engaged in an endless evolutionary war with the viruses: each side evolves, adapts and improvises, but neither ever wins the war for good.
Jane Chong asked the question as to why software companies are not held liable for the quality of what they sell. Why were there vulnerabilities that could be exploited? Shouldn’t it be the company’s responsibility to test it thoroughly? In exasperation, she writes:
“Dazzled by what software makes possible—the highs—we have embedded into our lives a technological medium capable of bringing society to its knees, but from which we demand virtually no quality assurance.”
She denounces the software industry’s response that bad things happen because users often “fail to implement adequate security”.

I don’t know if Chong understands the first thing about software, but Steven Sinofsky sure does. He points out that programming languages are just tools. It is humanly impossible for anyone to anticipate and prevent every conceivable misuse of the tool. Or to use an analogy:
“I used a screwdriver as a pry bar.  I used a wrench as a hammer.”
Also, in today’s world, if anyone identifies any vulnerability, the impact happens on an “Internet scale” at warp speed. Add to that, programmers are “always going to push the limits of what they do”, sometimes to show off, at other times, for malicious purposes. As Sinofsky says:
“There is simply no way to prevent clever uses anymore than you can prevent me from using my screwdriver as a pry bar.”

Removing all features that can be misused would just be throwing the baby out with the bath water:
“There will be cost and unintended side effects of those actions.”
So can nothing be done at all? All hope isn’t lost, because modern platforms, especially the mobiles ones, are better than their predecessors:
“We’re not there yet collectively as an industry on balancing the extensibility of platforms and the desire for safety, security, performance, predictability, and more.  Modern platforms are a huge step in a better direction.”

Comments

Post a Comment

Popular posts from this blog

Why we Deceive Ourselves

In their book, The Elephant in the Brain , the authors describe this weird aspect of deception that we practice: deceiving ourselves! That is so weird: “If our minds contain maps of our worlds, what good comes from having an inaccurate version of these maps?” The Sigmund Freud school of thought treats self-deception as a defense mechanism, “a way for the ego to protect itself”. The mind seeks to protect itself from anxiety and other negative emotions. Many object to this reasoning: since accurate information is so critical to our survival, surely distorting information would be dangerous. Wouldn’t the goal of protecting our self-esteem have been better achieved by making the brain’s self-esteem mechanism stronger instead? The new school of thought explains self-deception as “primarily outward-facing, manipulative, and ultimately self-serving”. This is based on Thomas Schelling’s work on game theory: “In a variety of scenarios, limiting or sabotaging yourself is the winn...
Read more

Europe #3 - Innsbruck

The last city we visited in Europe was Innsbruck in the Austrian Alps. After the cold and windy experience (at times) of Paris and Netherlands, Innsbruck was a wonderful change – it didn’t feel that cold, it was not windy all of which made it easy to walk around. Something absolutely necessary given how scenic the place is.   Since the hotel check-in time was much later in the day, we left the baggage and went to the Swarovski HQ-cum-museum about an hour by bus from Innsbruck. The crystal exhibits were brilliant – colorful, bright, shiny. Jewellery aside, it was a display of what one can do with crystals. While my wife and daughter loved the jewellery, I liked the superhero themed exhibits of Batman, Spiderman, the Hulk, and Star Wars. We didn’t buy anything there, though we did buy stuff in the Swarovski store in Innsbruck – jewellery, not the superhero stuff.   Innsbruck is a major tourist attraction during the skiing season but now in summer, we saw many groups of ...
Read more

The Thrill of the Chase

So many people complain about the difficulty in making decisions while shopping. Do you buy Brand X that gives 20% extra free? Or Brand Y that has 10% off? Or Brand Z that gives something else free with it? Do you buy that flat screen TV today or wait for the sale at Diwali? Now since the customer is king, shouldn’t companies be simplifying pricing choices? Like maybe offering consistently low prices all the time? Not so fast, as the US store, JC Penney discovered to its cost. Turns out that while people do complain about pricing choices, they are irrational. Also, they enjoy the thrill of the chase. Huh? The word “sale” acts like a siren call for many people: it lures them in to make that purchase. Consistently low prices don’t do the same. Besides, if a competitor lowers their prices just one time of the year, and Poof! Suddenly that low price claim becomes suspect in shoppers’ eyes. Then there are those sites that offer coupons: have lunch at Restaurant A on Wedne...
Read more