The source of your code affects the overall security of the system because some programming languages are more secure than others. Obviously it is better to select a language with less vulnerabilities. The code the company uses can come from an internal team or from an outsourced team. If the code was outsourced the code may not be as secure and the company would have no idea. If the code comes from an internal team then the company can control more aspects. Also, choosing a language that is known to the team will allow the system to be more secure but will also save the business time and money. Consider the use of classes and data members in your analysis. The security of the procedural system is easier to predict because it is simply a set of procedures with no data hiding mechanisms.