Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Revealed preferences. People complained about OpenSSL, but in practice were far more concerned with the latest Java ORM or NoSQL database.


The revealed preference is that the industry doesn't really care about security. We follow "industry best practice" - that is, we do the minimum to stop users complaining - but users don't buy based on security, and so it's not worth putting marginal effort into.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: