The (Embedded) Software Industry Must Up the Game: BUGSENG Has a Revolutionary Solution for C Programming
On February 1st, 2023, Jen Easterly and Eric Goldstein published an article on the Foreign Affairs journal titled: "Stop Passing the Buck on Cybersecurity: Why Companies Must Build Safety Into Tech Products." Jen Easterly is the Director of CISA, the Cybersecurity and Infrastructure Security Agency at the Department of Homeland Security of the United States; Eric Goldstein is Executive Assistant Director at CISA.
This is a very recommended reading for all vendors of software and software-based systems. The key message they deliver to the industry is that enough is enough: it is imperative for vendors to ensure that "technology is designed and built with safety as a top priority." To ensure this really happens, they argue that safety, integrity and security of the technology we "use every hour of every day" is an integral part of the core business and, consequently, it is a responsibility of the board, CEO and senior executives, who should be held personally accountable for managing the related risks.
The observation that opens the article is that "Despite a global multibillion-dollar cybersecurity industry, the threat from malicious cyber-activity, from both criminal and state actors, continues to grow."
It is instructive to run the following queries on the Google search engine: "buffer.overflow site:cvedetails.com", "carefully.crafted site:cvedetails.com".
The message coming from CISA is that we badly need "[...] that technology is purposely designed, built, tested, and maintained to significantly reduce the number of exploitable flaws before it is introduced to the market for broad use." Knowing that "[a]chieving this outcome will require radical changes in how technology is produced, including in the code used to develop software."
At BUGSENG we are working hard on this. In fact, we are about to release a new game-changing solution for C programming. This allows you obtaining all the benefits of Rust without actually converting your C code into Rust, that is:
- without changing programming language;
- without extensive retraining of programmers;
- without changing compilers and the tools;
- without giving up anything that the C ecosystem offers today.
This revolutionary solution will be announced at embedded world 2023. Write to us to be the first receiving further information as it becomes available. Also, meet us in Nürnberg to get a closer look! You can find us in Hall 4, Booth 348.