Yes, don't think we'll every be vulnerability free, not without some dramatic differences in how we produce the code for these devices, such as a move to the more Formal Methods approach used for airline or medical systems. And of course that would have dramatic impacts for how these devices function and on the costs of software development.That all depends on whether they're trying to fool the user into disabling controls or they're going after a vulnerability that can bypass without user intervention. That's getting harder all the time, but I don't foresee a day when all OSs and browsers will be vulnerability free.
I always remember being surprised when in my first job out of college reading electronic component specification sheets and seeing the large bold writing specifying they were not warranted for use in medical devices. Of course it all makes sense when you consider the additional quality control goes into manufacturing devices to higher quality.Yes, don't think we'll every be vulnerability free, not without some dramatic differences in how we produce the code for these devices, such as a move to the more Formal Methods approach used for airline or medical systems. And of course that would have dramatic impacts for how these devices function and on the costs of software development.
Don't hold your breath.
Don't worry my even bin company has a secure login system that often leaves me baffled. Just in case some hacker might login and pay my waste bill.But hey, I make a living out managing security controls, so if they ever eliminate all vulnerabilities I might be looking for a new job.
I guess the bin company has the legal obligation to protect whatever personal data about you that they hold, even if that is just name/address/email and bin usage.Don't worry my even bin company has a secure login system that often leaves me baffled. Just in case some hacker might login and pay my waste bill.
Messrs Fear, Uncertainty and Doubt will be selling security systems for a long time.