Developers need to learn secure coding practices, but it is difficult to reach all developers. To help address this issue, programming frameworks and libraries should be designed securely by default to prevent common vulnerabilities like buffer overflows. Framework designers should make insecure code harder to write while still allowing overrides for skilled developers. Overall, the development process needs to guide and "babysit" developers more to prevent security mistakes from the beginning.