Click here to Skip to main content
15,113,873 members

Survey Results

Who is responsible for a software system's security?

Survey period: 24 Oct 2016 to 31 Oct 2016

A hardcoded password, a SQL injection, a system with a known issue, or not changing the default password. There can be lots of fingerprints on that knife.

OptionVotes% 
The user using the system51214.74
The person who recommended the use of the system1975.67
The person who installs the system45713.15
The developer who built the system80223.09
The person who decided on the default settings of the system50914.65
None of the above2,51572.39
Respondents were allowed to choose more than one answer; totals may not add up to 100%



 
GeneralThe Security Officer Pin
Slacker00724-Oct-16 1:40
professionalSlacker00724-Oct-16 1:40 
GeneralBlamestorming Pin
ed welch24-Oct-16 1:10
Membered welch24-Oct-16 1:10 
GeneralRe: Blamestorming Pin
den2k8824-Oct-16 1:29
professionalden2k8824-Oct-16 1:29 
GeneralThe CEO (and everyone else, too!) Pin
PeejayAdams23-Oct-16 23:46
MemberPeejayAdams23-Oct-16 23:46 
GeneralMost of all the developer. Pin
Timo Tielens23-Oct-16 23:41
MemberTimo Tielens23-Oct-16 23:41 
GeneralRe: Most of all the developer. Pin
den2k8824-Oct-16 1:08
professionalden2k8824-Oct-16 1:08 
GeneralOT Pin
CDP180224-Oct-16 3:24
MemberCDP180224-Oct-16 3:24 
GeneralRe: Most of all the developer. Pin
Philippe Mori24-Oct-16 3:43
MemberPhilippe Mori24-Oct-16 3:43 
Obviously, the way to recover would not be to send them the lost password but to send then an email to recover lost password...

And I would say that you should not compromise for a dump client but instead explain them why doing otherwise would make the system less secure... And if the client has not specified explicitly in the contract that he want to be able to recover user passwords, in which case you should have discuss the issue with them, then you should not accept that they send back the system...

Obviously, if you wait until the end of the project to get paid, then the have the advantage over you... So in my opinion most of the development cost should be paid as it goes and be not refundable.
Philippe Mori

GeneralRe: Most of all the developer. Pin
den2k8824-Oct-16 3:54
professionalden2k8824-Oct-16 3:54 
GeneralRe: Most of all the developer. Pin
Philippe Mori24-Oct-16 5:48
MemberPhilippe Mori24-Oct-16 5:48 
GeneralRe: Most of all the developer. Pin
Philippe Mori24-Oct-16 7:55
MemberPhilippe Mori24-Oct-16 7:55 
GeneralEveryone is. Pin
Afzaal Ahmad Zeeshan23-Oct-16 23:19
mveAfzaal Ahmad Zeeshan23-Oct-16 23:19 
GeneralSalma Hayek... Pin
Sander Rossel23-Oct-16 22:21
professionalSander Rossel23-Oct-16 22:21 
GeneralRe: Salma Hayek... Pin
Jörgen Andersson24-Oct-16 1:46
professionalJörgen Andersson24-Oct-16 1:46 
GeneralRe: Salma Hayek... Pin
OriginalGriff24-Oct-16 6:19
mveOriginalGriff24-Oct-16 6:19 
GeneralMany Pin
den2k8823-Oct-16 21:58
professionalden2k8823-Oct-16 21:58 

General General    News News    Suggestion Suggestion    Question Question    Bug Bug    Answer Answer    Joke Joke    Praise Praise    Rant Rant    Admin Admin   

Use Ctrl+Left/Right to switch messages, Ctrl+Up/Down to switch threads, Ctrl+Shift+Left/Right to switch pages.