@kdfrawg a coffeemaker doesn't have obvious software on it, or if it does, it's ability to interact with the outside world is fairly limited. The minute you add connectivity and processing power to a device (i.e. the ability to run software, even if the end user can't upgrade it), the complexity changes dramatically and we (as a society) haven't fully come to grips with it. Practically every electronic device sold in the US, including ones that have vulnerable software, has been certified by Underwriters L

@kdfrawg a coffeemaker doesn't have obvious software on it, or if it does, it's ability to interact with the outside world is fairly limited. The minute you add connectivity and processing power to a device (i.e. the ability to run software, even if the end user can't upgrade it), the complexity changes dramatically and we (as a society) haven't fully come to grips with it.

Practically every electronic device sold in the US, including ones that have vulnerable software, has been certified by Underwriters Laboratory (UL) to ensure when you plug it into an electrical socket, it won't blow up. There are folks in the cybersecurity industry trying to come with the cyber equivalent of a UL certification to ensure that some level of minimum standards are followed by device manufacturers. There is a lot of debate about whether this is a good idea and what that minimum criteria should be.

// @streakmachine

2016-10-26T18:01:55Z