from Hacker News

Open Source, Supply Chains, and Bears

by CiPHPerCoder on 4/13/24, 4:25 AM with 14 comments

  • by roenxi on 4/13/24, 11:49 AM

    > You’ll need to provide strong regulations on the new type of Cyber Insurance to prevent that

    It is ironic that this comes right after talking about healthcare. Strong regulation won't fix it, being able to opt out and move to other systems will fix it. The best insurance comes from community groups where people literally just come together to pool risk. There only needs to be enough legal protection that one member can't run off with the money.

  • by trimethylpurine on 4/13/24, 9:15 AM

    One insurance company pays, they all benefit. Companies would simply wait for someone else to pay. There would need to be some kind of government agency forcing all of them to pay in. They would pass the costs to customers. In essence, your suggestion leads to a Cyber tax collected by the IRS. Next they have to divvy up the funding to pay OSS developers. Now you have the same problem you started with.

  • by kosolam on 4/13/24, 8:40 AM

    Hey Mate, great post. I read it all. What I don’t understand is why you are proposing a model (insurance) that doesn’t work in practice, and is susceptible to high levels of corruption. Why this would work differently in the case of open source.

  • by Cyphase on 4/13/24, 8:14 AM

    I was disappointed that bears weren't mentioned beyond the title.