Who's line is it anyway?: When it comes to the integrity of code – the heart of application security – who's responsibility is it in the end? Software developers are clearly still not stepping up, so industry groups have been formed and security software companies are in place to help. But who is culpable and why?