Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> Being able to buy a new computing device from a store that will receive no security updates is terrible, and is fairly common in Android devices.

This seems like the kind of problem the free market could solve. Just get one phone vendor to guarantee secruity updates for a few years and then some customers will start buying those phones. After a while other vendors will start promising it or losing sales.



> This seems like the kind of problem the free market could solve.

It's the kind of problem solved by perfect market where all actors were rational, had access to complete information, and correctly prioritized their long term and short term needs.

Alas, the world we live in is seven billion highly distracted primates who interact by wiggling their smallest appendages on grids of buttons and pushing streams of air over a weird blob of muscle located inside an organ also used for food consumption.


   the kind of problem the free market could solve
Yet the free market doesn't solve this problem.


The market obviously isn't free enough. Maybe we should stop taxing rich people.


Yeah, poor rich people, being taxed to death. How can they afford their gold iPhones now?


The underlying assumption is that a multitude of users would switch to devices produced by such a manufacturer. This, I think, overestimates how much most users currently care about security.

As it turns out, there are more secure devices in the marketplace than the affected phones, but they cost more. All other things equal, a contractual obligation for security policies would increase the cost (and thus price) of devices, and users would likely stick with cheaper options.


>This, I think, overestimates how much most users currently care about security.

The media has failed to inform the lay public about this issue. Users could be made to care about security with the right messaging. Your average user may not understand OS updates but the issue can be phrased simply in terms of product defects which the manufacturer refuses to fix and that put their personal info at risk.


I don't think everyone needs to be perfectly rational, but news of a big hack like this combined with a marketing campaign could reasonably help.


Blackberry android phones does this. They patch phones the same day google nexus is patched or even earlier for beta program users. Still no one is buying them


No it doesn't, because most everyday users don't give a toss about security. It has to be something that is pushed as a best-practice by those who know better, not something that is demanded by an everyday user who doesn't. The invisible hand won't do shit here.


If this were entirely true then people wouldn't buy home security systems or safety deposit boxes.


That economic fiction requires an ideal rationale actor and a different time horizon.

1) Noble price researchers (Kahnemann & Tversky) showed that economic actors are not rationale.

2) Taking a long term view tends to require sufficient funding to allow to worry about the long term. People with lower level funds intensely worry about the short term and for them this is totally rationale.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: