There was an article by Google about the security of their code base, and one of their core findings was that old code is good, as it gets refined and more free of bugs over time. And of course conversely, new code is worse.
https://security.googleblog.com/2024/09/eliminating-memory-safety-vulnerabilities-Android.html
Generally it seems like capitalism’s obsession with growth is at odds with complex software. It’s basis in property also.
Absolutely. It’s a shit show.
And interestingly, making the general public more aware of this is likely quite important. Because 1, they have very idealistic views of what research is like, and 2, just about everyone is entering research blind to the realities. It’s a situation that needs some sunlight and rethinking.
IMO, a root cause is that the heroic genius researcher ideal at the base of the system’s design basically doesn’t really exist any more. Things are just too big and complex now for a single person to be that important. Dismantle that ideal and redesign from scratch.