discussion

I am attaching here two papers by two leading software security  researchers to minimize software vulnerabilities or their exploitation  by attackers Two of the three ideas proposed by these papers advocate  the use of law/regulations to minimize software vulnerabilities. Dorothy  Denning puts forward two ideas: (1) Use of a vulnerability bounty  program that rewards vulnerability discoverers, and (2) Holding software  developers legally responsible (liable) for their faulty programs. Carl  Landwehr proposes code governing software code.

For this conference, your task is to take one of these three ideas  and discuss its pros and cons. Two quality posts are required from every  one for a passing grade.  Avoid duplications.