Comment Most vulnerabilities are 'design issues' (Score 1) 92
It is my believe that most vulnerabilities are 'design issues' and not just "security holes" that can be patched over.
I have been studying OS design now for almost 20 years, I think most of these designs where fine for just trying hack something to work, but now with everything interconnected, they were just never built for that.
I have an OS design I have been working on for the past 10 years Amorphous OS that is intended to solve almost every issue I've seen talked about.
Most come from just having a common File System view for the whole OS. This become a place where malicious code can live and hide and exploit.
But memory could be treated much better and more efficiently. The Stack Also needs to be isolated better and separate data storage, instruction pointers, and code better.
None of this is new, it was talked about in the 60's and 70's then it seems everyone forgot about it. So today it's coming back to bite us.