From: The Hill | Congress Blog
By Dan Perrin
***
It is not rational behavior that businesses buy a defective piece of software, transfer all legal risk of its failure to them through a EULA, then try and insure themselves against the risks of defects in a product they did not build.
Mayo Clinic and Exxon have decided to stop the irrational behavior and act in their self-interest. They have procurement policies that force companies to accept liability for software flaws that cause a breach. And Mayo forces companies to go through extensive testing and to provide a bill of materials to insure none of the software has known vulnerabilities.
Leave a Reply