Likewise, a perfect computer security system would cost us in convenience and features.
See... that is the myth. That is following the OpenBSD security philosophy and trying to lock down a bad design by cutting out features.

Why not just use a security kernel? This way only one very small amount of code handles all of the security rather than putting this burden on each application? This system would be more secure and more feature rich since developers would need to give security no concern at all. They could just trust the OS to protect itself from applications that go belly up.

To look at the problem otherwise is just insane... it is expecting different results by just doing a lot more of the same activities.

cheers,

catch