Re: Low quality coding
People, management, often have the wrong idea that it is important to get something working, that security is not important and can easily be added after.
It is ignoring the fact that one has no more free time after than he had at the beginning of the project, so security concerns are always delayed. And also that adding security after is way more complicated than envisioning security from the get go. If some cutting corners choices had been made, the very architecture of the project has to be changed, with all the risks associated and because of the risk, security is not been implemented.