Imagine buying a car that has faulty brakes, or a toaster that can catch fire at any moment. You would expect the manufacturer to be held accountable for selling you a defective product that can harm you or others. But what about software products that are riddled with vulnerabilities that can compromise your data, privacy, and security? Shouldn’t software developers be responsible for ensuring the safety of their products, as well?
That’s the question that Jen Easterly, Director of the U.S. Cybersecurity and Infrastructure Security Agency (CISA), posed during her speech at Carnegie Mellon University earlier this week.
