Security News > 2024 > February > On the Insecurity of Software Bloat

Adam February 15, 2024 7:27 AM. I remember watching a video with Brian Snow and Dan Geer and Brian talked about how they took a standard office package and were able to remove 80-90 % of the code and still maintain all the functionality.

Because of inefficiencies in the code and poor working structure of the people who wrote it.

I woul dhave expected the end of Moore's Law for single-thread performance to usher a new era of software optimization, but that just doesn't seem to have happened.

There are economies of scale in bundling a lot of features together, and disincentives to focusing on performance except in narrow niches.

Fun fact: Bert Hubert is a former colleague of mine.

News URL

https://www.schneier.com/blog/archives/2024/02/on-the-insecurity-of-software-bloat.html