More of the same BS... trying to use bug free applications as an approach to security is just moronic. Limit the application's power via the operating system's security policy and it doesn't matter how flawed the application is.

Until this philosophy is adopted beyond the trusted systems community, not only are we unlikely to see any increase in theoretical system security, but overall application capability development is bogged down as well. (developers divide resources between security and features)

catch