Actually it’s about ethics in software engineering

This is an expanded transcription of a tweetstorm (based partially on conversations with Peter) that starts at this Tweet about the Volkswagen emissions scandal but actually as we go along it will be clear that it is about ethics in software engineering. First the news that started it all.

Volkswagen’s US head Michael Horn blamed his engineers during a testimony about the emissions scandal.

Does anybody believe a German multinational is agile enough for a couple of engineers to be able to ship a feature without oversight? Because on the one side as people have commented if this were true that would leave huge questions open when it comes to their quality control and delivery process. On the other side if true it would be a refreshing level of agility in a German corporation. A car maker that uses the tagline ‘move fast and break things’ would certainly be a novelty.

I would be curious to see what the codebase of a modern car looks like but thanks to the DMCA that will probably never happen. Unless maybe if somebody dumps the VW code during the CCC this year?

This isn’t about car manufacturing or recruiting engineers, this is actually about ethics in software engineering. How this will affect VW’s chances of hiring the best engineers (“Volkswagen, and how not to describe your employees”) is one issue. They couldn’t hire the best anyway but they will likely always be able to hire a fair level of talent. To write good code, having a clear vision and a stable process are more important than having a mythical 10x engineer on your team. The questions now are why this took so long to be discovered and what the consequences are for the various parties involved.

I will focus on the software engineers because I am one and because I think they will be underrepresented.

Programmers could get away not caring about ethics when it involved being callous with user data or new ways to serve banner ads. The proliferation of really weird privacy-invading ad tech used to be considered a perfectly acceptable way for engineers to spend their time. Even the leak of sensitive user data like in the Ashley Madison hack was more or less business as usual among digital companies. Software companies being liable for their errors and engineers engaging in ethical behaviour were considered optional.

Not anymore. You probably wish you hadn’t snoozed through that ethics class in university. Not that that would have helped that much. Unlike many others, in university we got courses in both ethics and in the history of science and technology. Courses which at the time were much maligned by my fellow students for their lack of practical application. They were right that that course wouldn’t have helped you much by itself, but some basic level of understanding on this subject is nice to have.

Besides continuing to teach ethics, schools should teach engineers about rights and liability. Those courses in ethics could be supplemented by a practical course about your rights and liabilities when you are working at somebody else’s company or at your own. It used to be that either nobody cared about this stuff or that the company would bear the consequences. Both of those notions seem fairly shaky right now.

What do you do when your boss tells you to implement a feature, or very very strongly encourages you to reach a certain outcome? What VW seems to be arguing is that nobody gave the order to build this specific feature but it arose from a rogue group of people. That seems just as unlikely as the case where this was mandated but VW management maintained the operational security required to keep it a secret. The investigation almost certainly will reveal that an order was given and who gave it.

In an ideal company a manager of course will not tell their people how to do their work. Your boss should give you an ‘Auftrag’ (assignment) to reach certain strategic goals and leave it to you to determine the best way of getting there. They will trust that you will operate to the best of your ‘Fingerspitzengefühl’ (working knowledge) within the framework that is the norm in the ‘Einheit’ (unity) that is the company. This all borrowed liberally from Chet Richards’s excellent Certain to Win.

Even if an order was not given this points to an atmosphere in which exerting huge pressure is normal and where people consider it standard operating practice to cut corners maybe even without informing their superiors.

What recourse does a software engineer have in that situation? The current policy situation and broader environment suggest they have almost none.

Who’s responsible when that feature threatens the planet, evaporates shareholder value and leads to criminal investigations? Now that software is a determinant in one of the biggest industries in the world, bad actions have large consequences. Selling millions of faulty cars and exposing many millions more to pollution finally gives us a software malfunction that everybody can relate to.

This isn’t just the case for VW since other car companies are also implicated in fraud during emissions testing. It isn’t even exclusive for car makers since the sequence of events leading up to the financial crash were nothing but a large number of model/software malfunctions.

In the case of the financial crash nobody got punished. The American enthusiasm to extract punitive damages from VW may be attributed to the fact that the U.S.A. finally is a relevant player in (clean) car technology again.

Because these are the biggest industries in the world with immense resources and influence, normal or just rules of responsibility don’t really apply.

We need to answer these questions ourselves because if you ask the higher-ups it is clear who’ll get thrown under the VW bus. Software engineers can refuse to do work that they find ethically objectionable and find another job easily (the Snowden option). That is a luxurious position but it still remains to be seen how many actually do this.

What will likely happen is that the legal investigation will take forever and in the end some convenient people will take the fall. I think it’s unlikely that that will create a just outcome or improve the overall situation.

The criteria to which these emissions tests were held were already watered down thanks to the lobbyists of various car companies who also set the tests so that it would be easy to cheat on them. The tests may be fixed a little bit ostentatiously because they are the most visible point of failure.

The actual problem will go unfixed. We can’t independently verify the code that runs in cars now thanks to our broken copyright legislation. When cars become self-driving and dependent on remote services this will become infinitely harder. We are not be able to check software running in our devices to see whether it does what it promises to. That is the real problem and one I don’t think that is going to be fixed anytime soon.

Update: So today the word got out that some 30 managers at VW were involved in this. It looks like Michael Horn’s statement about the rogue engineers was not true.

Les Contes d’Hoffmann

I went to “Les Contes d’Hoffmann” yesterday in one of Berlin’s three operas thanks to this piece in the Guardian. Yes, I have to rely on a British paper for reliable cultural advice about Berlin.

The Komische Oper is a ten minute bike ride from my house and you can get a discounted ticket with some mild visual obstruction for €18. This makes it a fairly ideal way to spend a Sunday in Berlin which otherwise can be fairly quiet (stores aren’t open, most places close at five or six).

I’m not an expert on opera but I enjoyed the staging and the performances a lot. The Komische Oper’s productions can look a bit kitschy but this was all fairly in line. I can’t share anything from the play thanks to an extremely stringent copyright policy, so below is a recording of one of the major songs by the Met.

After having severed my relation with theater, opera is something that is still fun and interesting to me. What is especially interesting about opera is that despite it fielding some of the biggest budget stage productions we have, it allows a lot of space for weird things. That is not just the case for this opéra fantastique but reading the plot of any opera will leave you amazed at how cheesy it is.

The fact that opera is so open to even the dumbest of stories and at the same times is a spectacular confluence of the multimedia arts would indicate that it has a grand future. Unfortunately the average age of the attendees indicates that that is not the case yet.

Trying out the McB.

I finally got the chance of trying out the McB, McDonald’s new ecological burger tonight after a visit to the opera.

Trying out the McB, the McDonald's bio burger

First I think it’s great that McDonald’s is doing this. It would be nice if they switched all their meat to what is at least a nominally biologically produced variety. I’ve seen people hating on it but large food producers having to shift over is a sign of victory. Read this Fortune article about the war on Big Food.

Second I don’t think McDonald’s understands why it is that people eat organical food. I and many others eat it because it tastes better than the other stuff. There are other reasons to eat organically but if those were the only ones then it would be nowhere near as popular as it is now. The problem with the McB is that it’s just as bad a hamburger as you are used to eating from McDonald’s but now with a bio patty.

This makes it a great burger for the staunch McDonald’s customer who was thinking of switching away because they started worrying about meat quality. For Berlin’s actual burger lovers this is irrelevant and you should just keep going to Tommi.

Insurance in the age of big data and personalized tracking

Last week there was some debate spurred by some of the larger insurers of the Netherlands who want to use tracking data to personalize insurance coverage. A piece in the Reformatorisch Dagblad of all places and Rob Wijnberg talking about it at DWDD.

The problem is that insurance by definition is not personalized and we should be protected from each other’s best interests. I tweetstormed about it and have recorded it below.

This is particularly salient from a design perspective if you see the tweets below. What this comes down to is a policy design problem of a vast scale, a level of abstraction up again from service design. People aren’t well equipped to make these decisions for themselves and they probably shouldn’t have to be. They should be aware of which expertise they are lacking and they should know who they can trust. Creating those two competencies are the two hardest problems of our time.