From: "Marin David Condic" <dont.bother.mcondic.auntie.spam@[acm.org>
Subject: Re: Faulty languages and Liability
Date: Mon, 17 Jun 2002 17:07:40 -0400
Date: 2002-06-17T21:07:41+00:00 [thread overview]
Message-ID: <aelj2t$fj5$1@nh.pace.co.uk> (raw)
In-Reply-To: 3D0E461A.8050207@mail.com
Suppose the case goes like this:
You purchased software that failed in some way and caused you harm.
You discover that the reason for that failure (and your subsequent damage)
was that the program had a careless and unchecked array reference that
allowed an index to go out of bounds.
You argue in court that array index out of bounds errors are classic errors
discussed in all forms of computer science textbooks and that they are so
well known and infamous that most modern programming languages automatically
include runtime checks in them to catch this kind of error. Since the error
type is so well known and so obviously a problem, one would expect that a
*competent* programmer and a *responsible* company would have exercised due
dilligence and either a) used a language that checked for this common and
well publicized risk or b) maintained coding standards that would have
insured that all array references were manually bounds checked if the
language didn't provide for it.
Sounds to me like a case that might be made. In the same way that we would
hold a company liable for constructing a catwalk without guardrails, we
could hold a company liable for constructing software without array bounds
checks. How is this different? All the same arguments made against bounds
checks could be applied to guard rails. (Inefficient, costs too much, not
necessary, etc.) I doubt the courts would dictate the tools to use to build
the guard rails, but they might still insist on you're putting them up.
MDC
--
Marin David Condic
Senior Software Engineer
Pace Micro Technology Americas www.pacemicro.com
Enabling the digital revolution
e-Mail: marin.condic@pacemicro.com
"Hyman Rosen" <hyrosen@mail.com> wrote in message
news:3D0E461A.8050207@mail.com...
>
> > So, given the well-known falible nature of human programmers, if one
> > has the choice between well-known tools which perform many such checks
> > automatically, and tools which do not perform such checks
> > automatically, and if a falible programmer then uses tools of the
> > second type which contribute to a major software failure, has due
> > diligence been used?
>
> Perhaps not in hiring that programmer. The tools in question are not
> equivalent in other aspects than safety, which is why the safe ones
> are not always chosen.
>
next prev parent reply other threads:[~2002-06-17 21:07 UTC|newest]
Thread overview: 81+ messages / expand[flat|nested] mbox.gz Atom feed top
2002-06-16 2:10 Faulty languages and Liability David Botton
2002-06-16 3:18 ` Lyle McKennot
2002-06-16 4:58 ` Robert C. Leif
2002-06-16 4:58 ` Robert C. Leif
2002-06-16 11:52 ` Hyman Rosen
2002-06-16 13:07 ` Larry Kilgallen
2002-06-17 14:56 ` Marin David Condic
2002-06-18 5:00 ` Hyman Rosen
2002-06-18 13:35 ` Chad R. Meiners
2002-06-18 14:59 ` Hyman Rosen
2002-06-18 19:25 ` Wes Groleau
2002-06-19 17:18 ` Robert I. Eachus
2002-06-19 19:31 ` Larry Kilgallen
2002-06-19 17:57 ` Wes Groleau
2002-06-16 14:33 ` David Botton
2002-06-16 18:28 ` Mike Silva
2002-06-17 0:48 ` Hyman Rosen
2002-06-17 4:09 ` David Botton
2002-06-17 12:59 ` Larry Kilgallen
2002-06-17 7:04 ` Mike Silva
2002-06-17 8:29 ` AG
2002-06-17 13:21 ` Hyman Rosen
2002-06-17 14:37 ` Larry Kilgallen
2002-06-17 3:16 ` Robert C. Leif
2002-06-17 13:36 ` Hyman Rosen
2002-06-17 14:51 ` Larry Kilgallen
2002-06-17 14:26 ` Hyman Rosen
2002-06-17 15:55 ` Larry Kilgallen
2002-06-17 16:29 ` Marin David Condic
2002-06-18 5:18 ` Hyman Rosen
2002-06-18 13:10 ` Marin David Condic
2002-06-18 21:27 ` Robert A Duff
2002-06-18 20:02 ` John Kern
2002-06-18 22:17 ` Larry Kilgallen
2002-06-19 15:47 ` John Kern
2002-06-19 18:06 ` Larry Kilgallen
2002-06-17 16:25 ` Marin David Condic
2002-06-18 19:29 ` Wes Groleau
2002-06-19 12:58 ` Marin David Condic
2002-06-17 19:00 ` Mike Silva
2002-06-17 20:27 ` Hyman Rosen
2002-06-17 21:07 ` Marin David Condic [this message]
2002-06-18 1:09 ` Chad R. Meiners
2002-06-18 4:52 ` Hyman Rosen
2002-06-18 13:49 ` Chad R. Meiners
2002-06-18 14:15 ` Marin David Condic
2002-06-19 12:35 ` Larry Kilgallen
2002-06-19 14:20 ` Marin David Condic
2002-06-20 13:50 ` Larry Kilgallen
2002-06-20 16:53 ` Wes Groleau
2002-06-20 18:56 ` Larry Kilgallen
2002-06-20 15:21 ` Hyman Rosen
2002-06-21 17:21 ` Matthew Woodcraft
2002-06-21 22:00 ` Robert A Duff
2002-06-23 4:50 ` Hyman Rosen
2002-06-23 9:13 ` Matthew Woodcraft
2002-06-23 10:29 ` Hyman Rosen
2002-06-23 13:21 ` Matthew Woodcraft
2002-06-23 18:24 ` Hyman Rosen
2002-06-23 19:27 ` Pat Rogers
2002-06-24 2:50 ` Hyman Rosen
2002-06-24 14:05 ` Pat Rogers
2002-06-18 6:14 ` Mike Silva
2002-06-18 8:53 ` newsfraser
2002-06-18 19:33 ` Wes Groleau
2002-06-18 12:49 ` Steve O'Neill
2002-06-18 13:49 ` Marin David Condic
2002-06-17 19:00 ` Mike Silva
2002-06-17 20:38 ` Hyman Rosen
2002-06-18 3:45 ` Mike Silva
2002-06-18 15:11 ` Hyman Rosen
2002-06-18 15:54 ` chris.danx
2002-06-18 18:01 ` Marin David Condic
2002-06-18 17:12 ` Larry Kilgallen
2002-06-17 7:34 ` AG
2002-06-18 21:17 ` Robert A Duff
2002-06-16 22:26 ` Ted Dennison
2002-06-17 14:38 ` Marin David Condic
2002-06-18 8:57 ` chris.danx
2002-06-19 0:34 ` tmoran
2002-06-19 20:28 ` Mike Silva
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox