10/17/15 9:54 PM:
Interesting points. I got tired of the polarization: proprietary = closed and untrustworthy; FOSS = open and trustworthy. The availability of the source to the public isn't a factor in security *at all*. What matters is the availability of source to a reviewer, their competence in assessing it, and if you trust that person (or persons). I break the topic down, with many models of source sharing & review, in the essay below:


People need to really get past that nonsense because FOSS needs a reality check. And dual-licensed stuff could be the model we need to keep security-critical software maintained and reviewed. Not to mention, it lets one be altruistic and selfish at the same time. Nice motivator. :)

Nick P
High-assurance security researcher/engineer