Click here to Skip to main content
15,613,873 members

Survey Results

Have you ever been asked to include a backdoor in your software?

Survey period: 7 Mar 2022 to 14 Mar 2022

Maybe it's to avoid having to ask for the keys, or a system that's just hard to debug, or maybe there are...other reasons. We don't want details, just an idea for everyone to understand how common this is.
Yes, with no explanation as to why121.64
Yes, to help with tech support669.02
Yes, to help with locked out accounts375.05
Yes, to help with debugging527.10
Yes, for nefarious business reasons (we don't want details)172.32
Yes, for nefarious political reasons (we really don't want details)91.23
Yes, for other reasons172.32
No - I've never been asked to add a backdoor to my code53873.50
I've not been asked, but I've placed one for my own reasons719.70
Respondents were allowed to choose more than one answer; totals may not add up to 100%

GeneralI was tempted to... Pin
Jacquers7-Mar-22 20:38
Jacquers7-Mar-22 20:38 
GeneralOnce ... Pin
Amarnath S7-Mar-22 19:35
professionalAmarnath S7-Mar-22 19:35 
GeneralRe: Once ... Pin
Sandeep Mewara7-Mar-22 19:43
mveSandeep Mewara7-Mar-22 19:43 
GeneralUsed a hardware USB HASP dongle to store the master password Pin
CJ17-Mar-22 11:59
professionalCJ17-Mar-22 11:59 
GeneralFederal agency spying Pin
  Forogar  7-Mar-22 4:36
professional  Forogar  7-Mar-22 4:36 
GeneralOther reasons Pin
lucanor7-Mar-22 2:03
lucanor7-Mar-22 2:03 
GeneralBackdoor to Code vs. Backdoor in your software?? Pin
Slacker0076-Mar-22 23:28
professionalSlacker0076-Mar-22 23:28 
GeneralIn most products I had to insert some master password Pin
den2k886-Mar-22 21:44
professionalden2k886-Mar-22 21:44 
Because users, even trained users for sensitive applications, are not bright and Companies are downright stupid.


1) You create an authentication and auditing system with unrecoverable passwords and customer-unique encryption keys upon request from them.
2) Customer proceeds to create their accounts.
3) Customer then burns all the hard copies of their passwords, doesn't communicate them to the IT, doesn't keep them in the reserved documents archive.
4) Customer proceeds to use a Neuralizer[^] to wipe any tace of said accounts clean from the mind of everyone, to be sure.
5) Customer then calls angry because now they are locked out of the machine and it is your fault and they are calling an attorney because they are losing entire days of production, and they cannot reasonably expect to wipe the user configuration and redo it from scratch or pay support to do it for them (because they sent to the training they paid for the temp subsitute who got fired 3 weeks later).

So... master password it is.
GCS d--(d-) s-/++ a C++++ U+++ P- L+@ E-- W++ N+ o+ K- w+++ O? M-- V? PS+ PE- Y+ PGP t+ 5? X R+++ tv-- b+(+++) DI+++ D++ G e++ h--- r+++ y+++*      Weapons extension: ma- k++ F+2 X

GeneralRe: In most products I had to insert some master password Pin
KarstenK7-Mar-22 3:56
mveKarstenK7-Mar-22 3:56 
GeneralRe: In most products I had to insert some master password Pin
den2k887-Mar-22 4:09
professionalden2k887-Mar-22 4:09 
GeneralRe: In most products I had to insert some master password Pin
KarstenK7-Mar-22 22:04
mveKarstenK7-Mar-22 22:04 
GeneralYes, and always for support Pin
Sander Rossel6-Mar-22 20:09
professionalSander Rossel6-Mar-22 20:09 
GeneralNo, but... Pin
PIEBALDconsult6-Mar-22 18:34
professionalPIEBALDconsult6-Mar-22 18:34 

General General    News News    Suggestion Suggestion    Question Question    Bug Bug    Answer Answer    Joke Joke    Praise Praise    Rant Rant    Admin Admin   

Use Ctrl+Left/Right to switch messages, Ctrl+Up/Down to switch threads, Ctrl+Shift+Left/Right to switch pages.