Is Off-Shoring a National Security Threat?
An anonymous reader writes "Should the U.S. government hold developers more responsible for the quality of their code? One top cyber security analyst says more regulations would be a mistake. 'Any attempt to regulate software quality and security simply drives the software industry off-shore for good,' he says. 'Similarly, requiring trusted on-shore production ensures two things: (1) falling behind world progress as we aren't the only smart people and we are a minority, and (2) costs rise in a way that makes on-shore-mandated software cost-uncompetitive on the world market.'"
It isn't just secrecy. It is quality. In india, being a good programmer means getting promoted to management immediately. The only people left to code are those who are failures or newbies. As a result, the quality of code coming from overseas is crap and often broken. They often deliver completely broken code, or code that only works for a small subset of valid inputs, or that has terrible maintainability and performance. Every bit of that code you get back has to be thoroughly vetted and usually scrapped and rewritten from the ground up.
So yes, it definitely increases risk.