There’s a growing call for developers of computer software to be held responsible for vulnerabilities in their products. The IEEE Computer Society’s Center for Secure Design says that around 50 per cent of IT security issues are caused by software design faults. Many of the problem applications are not up to current standards and while fixes or ‘patches’ may plug some weaknesses they often do not completely secure the product. Dan Geer of the CIA’s venture capital wing In-Q-Tel says that software designers should be held legally accountable. Rolf von Ressing of Isaca, an organisation representing cybersecurity professionals told the FT: “Software vendors bring these products into the world with all their vulnerabilities, but it’s the companies that buy them that are left dealing with the consequences.”
