We need invulnerable software systems, and we need them today, even if they are ten times slower than our current systems. Tomorrow we can start working on making them faster.
Daniel J. Bernstein

Recently, an npm “event-stream” vulnerability was found. Many apps were affected, including Copay.

In the times where I trust others’ people code to handle my money, and more important, other people trust mine, I can’t stop thinking about how can we fight unavoidable vulnerabilities. I thank Bernstein for his insight into whether it’s something wrong with the way we code, not with the code itself.

Security! Security! Security!

Do you know the feeling when you are completely focused on the new feature, and you create a branch for it, say feature/profile, and start hacking. And then in two hours you find yourself here:

Changes not staged for commit:(use "git add <file>..." to update what will be committed)modified:   ViewControllers/ProfileViewController.swift
modified: ViewControllers/SettingsViewController.swift
modified: Models/UserProfileModel.swift
modified: Network/APITypes.swift
modified: Network/APIController.swift
modified: Tests/ProfileTests.swift

Okay, that looks nice. But then all of a sudden:

modified:   ViewControllers/SettingsViewController.swift

And somehow even these guys! What did they forget here?

modified:   Utils/Date.swift
modified: Utils/DateConversion.swift

Sounds familiar?

And you can’t just stage and commit them file-by-file, because…

When you combine cooperation, free duplication and cheapness, you have an explosion. Torrents take all three. ICOs take only cooperation and cheapness (relatively). Google Movies and Apple Music are free duplication and cheapness. Linux/GNU is cooperation and free duplication.

Each of there three is gold mine even by itself. Google Ads are so cheap for you, that you willingly pay your attention to them. And Google sells that attention.

Free duplication is what makes all the software profitable and that gave us boosting growth for the last 30 years. Movies are also the product of the free duplication.

Cooperation is…

“From each according to his ability, to each according to his needs”
– Karl Marx

Here we have torrents. Jokingly, they say, it is essentially communism. You download anything you need and pass over to everyone who needs that too, as long as you can.

Why would it work like that at all? Because it costs a lot less to keep your PC on through the night, then the cost of the ability to download any movie from the web in 15 minutes for free. You know the person on that end receives a lot more than you give away.

Aleksey Bykhun

developer, Black Swan follower, blockchain enthusiast, suites’ lover, music listener, video maker

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store