Closing the Software Understanding Gap

> Mission owners and operators often lack adequate capabilities for software understanding because technology manufacturers build software that greatly outstrips the ability to understand it.

I wonder if this is because software engineers build things that are too complicated for the problem domain, or whether it is because the problem space where the software sits is inherently complex.

This report addresses the unusual modes of operation, specifically mentioning "normal, abnormal, and hostile". So much of software has unpredictable operation in the face of hostile attacks (particularly if the attacker gets "past the firewall", either a network one or a metaphorical software interface boundary).