Spinellis and “Zero Defect” Code
October 26th, 2008
Diomidis Spinellis posted last week about Tokeneer, a National Security Agency case study carried out by UK software firm Praxis of “…how to develop zero-defect code in a cost-effective manner”. Problem is, Diomidis found something that looked a lot like a bug, and his suspicions have now been confirmed.
(In my best Don Adams impression)
Would you believe… single-defect code?
I read about this on the RISKS digest – it was an interesting attempt. One bug doesn’t stop it from being at least moderately impressive – especially since it looks like the verification was stopped when the money ran out. Correctness by Construction isn’t magic bullet version 2.0, of course, but one bug doesn’t completely invalidate it.