> Take Herb Sutter for example, who argues that "memory safety" as defined in th... | Hacker News

Hacker Timesnew | past | comments | ask | show | jobs | submit

		edmccard 6 months ago \| parent \| context \| favorite \| on: Memory Safety for Skeptics > Take Herb Sutter for example, who argues that "memory safety" as defined in this article is an extreme goal and we should instead focus on a more achievable 95% safety I wonder how you figure out when your codebase has reached 95% safety? Or is it OK to stop looking for memory unsafety when you hit, say, 92% safe?

testdelacc1 6 months ago [–]

Anything above 90% safety is acceptable because attackers look at that and say “look they’ve tried hard. We shouldn’t attack them, it’ll only discourage further efforts from them.” When it comes to software security, it’s the thought that counts.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact