Hardware Hacking a Voting Machine in 4 Minutes 482
goombah99 writes "Bev Harris of BlackBoxVoting.org has acquired an actual Diebold Acu-vote ballot scanner. Rummaging through King County's trash, she managed to get her hands on some of their tags and seals. She has since demonstrated a successful penetration of the seals without breaking them ... all in under 4 minutes with no training or technical skills required. There's a nice how-to with photos over at Verified Voting New Mexico." More from goombah99 below.
"The demo is particularly relevant in light of the recent experience in Ohio in which there were large discrepancies between the electronic record and the paper trail, and also since many counties still permit the machines to be taken home by individuals before voting day (as a means of distributing them to precincts). These 'sleepover' machines were involved in the contentious narrow-margin San Diego Election, and are in continued practice in many states. Moreover, it's common practice for counties to contract out deliveries to third parties, such as in New Mexico where in one election, unlicensed delivery drivers took the machines on an unauthorized field trip and only got caught when they crashed the delivery truck after a stop at Hooters. The good news here is that the penetrated Diebold system in the photo essay is an optical scan system. It's not a touchscreen electronic voting system, so there is a paper trail. What hack really shows is that without mandatory random spot checks on the paper ballots, these may be as potentially vulnerable as the touchscreen direct recording electronic voting systems. It's perhaps worth noting that the open source voting system being developed by the Open Voting Consortium features a 100% reconciliation of every single paper ballot with an independent electronic record."
My Perception Has Changed Again (Score:5, Insightful)
So there was this interesting catch-22 where you couldn't let them into the general population for fear of a trojan being created and inserted into a group of normal ones on election day. But you also can't trust your government [alternet.org]. Especially not the current one in the United States and considering the voluntary resignation of the Diebold CEO [slashdot.org], I think we should at least ask for third party verification of these machines. In fact, I for one consider Black Box Voting to be a champion protector of my right to vote for publishing this information. You might not feel as strongly about them but had I not read two articles from them, I would still be ready to use a voting machine in the next presidential election.
Black Box Voting had me convinced these machines were at least a liability and at best a luddite's fear. After reading this quick "how-to" about these machines, my perception is no longer that we need to define how these machines are bought, sold & handled
Product created with shoddy security features. Get rid of Diebold and hope the market brings a new contestant into the ring for the much sought after prize of the American public's voting machine contract!
The Diebold Acu-vote has failed as a product that requires the utmost security. I am a dissatisfied consumer and I sincerely hope every citizen of the United States agrees with me.
Re:My Perception Has Changed Again (Score:5, Insightful)
Unfortunately, you're not Diebold's customer. The elected officials who in turn buy the machines responsible for reelecting themselves are Diebold's customers.
Re:My Perception Has Changed Again (Score:5, Insightful)
It's like television. (Score:5, Insightful)
Re:It's like television. (Score:4, Insightful)
Re:My Perception Has Changed Again (Score:4, Insightful)
Press the button next to the name of the person you want to vote for. Thank you for voting. Yes, it IS as simple as that.
This is the part where you're suppose to realize that it's because Acu-Vote was never designed to be "secure" :)
Re: (Score:3, Insightful)
I have two locks on my front door AND an alarm system. Hell, even my crappy 1999-era desktop came with a case alarm. You'd think that DieBold would have installed something that would start beeping, flashing, or explode after you open the top on the case or pull the memory card.
Did Blackbox look for other, less obvious, IDS that may be in place?
Re:My Perception Has Changed Again (Score:5, Interesting)
He's not a nice guy and I could easily see him overlooking a raise if he knew I voted Democrat in the last two presidential elections. He could, of course, claim it was something else even if it wasn't. Do you want me to suffer for my political views? Do you want your family, friends & coworkers to know who you vote for? Some of the people I spend my life with have different opinions than I do. This is fine but I don't want the situation exacerbated.
Re:My Perception Has Changed Again (Score:4, Interesting)
(BTW, if you aren't up on your Louisiana political history, the crook won.)
Layne
Re:My Perception Has Changed Again (Score:5, Funny)
We're talking about politics here. It doesn't matter who won, that's still true.
Re: (Score:3, Interesting)
Why not? The state Republican Party was passing out bumper stickers with "This time vote for the crook." on em. Duke certainly wasn't welcome in Republican ranks. Just a fluke of our crazy open primary system allowed the asshat to slide into the runoff.
Fortunately I wasn't in the state for that election cycle, instead I had a choice almost as easy to make, W over Ann Richards across the border in TX.
Re: (Score:3, Interesting)
Re:My Perception Has Changed Again (Score:5, Interesting)
The next day at work they held a company meeting and asked all employees to remove any political stickers from his car. He thought it was total crap until he saw that a majority of the employees were Bush supporters.
I know the feeling of having to hide your political beliefs. I live in Bush Country and everywhere you go its anti-liberal this and stupid dems that.
The terrorist don't have to work too hard to take away are freedoms because we will do it to ourselves just fine.
Re: (Score:3, Interesting)
Th
Re: (Score:3, Insightful)
When an environment exists where the moderate or the centrist is attacked by both sides for supporting the other side because they attempt honest and open discourse - you most certainly have enemies.
Re:My Perception Has Changed Again (Score:4, Insightful)
Not that groups can't terrorize entire districts suspected of leaning toward the other side, but it's all that much easier when you can point the finger at individuals. What the parent poster is talking about is the thin end of this particular wedge, and you're being obtuse describing that as sophistry.
Re: (Score:3, Insightful)
And for the record as a dyed-in-the-
Re:Nuts (Score:4, Insightful)
As far as practicality goes, with sufficient manpower, counting tens of thousands of ballots in a voting district can be accomplished surprisingly speedily, and to a very high degree of accuracy. Most countries do this without a problem. It perhaps gets more difficult if you have Californian-style ballots which include dozens of separate items (e.g. citizens' referenda). Not sure how practicable it is to count all this by hand, but perhaps the Presidential ballot could be treated differently?
Re:Nuts (Score:4, Insightful)
So yeah, you're right - electronic voting really isn't buying us anything, and in fact is probably selling out quite a bit more than we bargained for.
Sigh.. this is how democracies end. When confidence in the voting process dies, that is the beginning of the end of a nation's freedom.
Re: (Score:3, Insightful)
Is so so! You just have to redefine what people think when they think electronic voting. Instead of a monolithic device that displays the ballot, accepts the input, records the vote, and tallies the votes, by establishing a standard for the paper ballot, you enable companies to compete to sell a device that displays the ballot and accepts the input, that then prints out the standardized ballot. Then companies can compete to sell a device that sorts a stack of ballots based on their vote in a parti
Re:My Perception Has Changed Again (Score:4, Insightful)
Is the ivory tower up your ass cold? Does it chafe?
You can't necessarily just get another job. People with families to support can't always make the decision they'd like to make.
Anyway, the vote was closed not only for that reason, but to prevent people from selling their vote. You can't sell your vote if it can't be proven which way you voted.
Mu. What I want is freedom. I can't truly posess that without BOTH of those things being untrue. Thus opening the vote is not a solution at all. You've presented a false dichotomy. This is not an either-or situation.
Re:My Perception Has Changed Again (Score:4, Insightful)
i would still prefer to keep my vote secret to the majority of the population. if you ask me, i'll likely tell you, but the thing would be that I choose who i want to tell.
Re:My Perception Has Changed Again (Score:5, Interesting)
Re: (Score:3, Insightful)
You ever wonder how despots in various dictatorships around the world get 98% and 99% votes? Public voting is your answer. You take the red ballot and the blue ballot into the voting booth, in complete secrecy you put whichever ballot you want into the box, then you go outside and give
What about hacking paper ballots? (Score:4, Interesting)
Re: (Score:2)
Re:What about hacking paper ballots? (Score:5, Insightful)
In general, I'd say that any kind of large-scale vote rigging done by paper ballots would require a conspiricy involving multiple staffers and observers at the polling places. You'd need to physically replace thousands of paper ballots with fake ones. Good luck doing that by yourself. And afterwards, if the results look fishy, there is a good chance that the fraud could be discovered on a recount.
With these Diebold machines, on the other hand, any one person, even one without any special access given to election workers, could modify as many votes as they want, while arousing no suspicion, leaving no physical evidence in the form of discarded ballots, and leaving no trace of the original results should a recount or investigation be ordered.
There will always be some dishonest people who see democracy as a game they can "cheat" at to win. But if a voting machine doesn't produce a solid meat-space record that can be guarded, stored, and re-examined, the effects of those cheaters on the outcome is greater by orders of magnitude.
Re: (Score:3, Informative)
Not to mention that fact that these electronic systems are so expensive compared to the best voting method I've used, that is the "connect the arrow with a sharpie pen". No chads or punch systems, just thick paper and mar
Re: (Score:3, Informative)
Your comments could be applied to the Ukrainian Presidential runoff of 2004 [wikipedia.org] where massive vote fraud was don
Re:What about hacking paper ballots? (Score:5, Interesting)
The various parties have a representative sit in each room and oversee that proper pratices are taken by all the officials and voters, and that no tampering takes place. At all times they are privy to the process, EXCEPT WHILE BALLOTS ARE MARKED (obviously). When I was one of these people I even had to follow the box around when the election officers helped people in wheelchairs by bringing the box outside (the building was not wheelchair accessible).
Proper practices are this:
Prior to the booth being opened the total number of ballots are accounted for, and their serial numbers recorded. The cardboard ballot box is built (from the provided cutout) and taped with security tape.
Each person has a voter card or is eligible to vote. They are provided one ballot and their name is stroked from the list. They mark their ballot and fold it in private. They present the folded ballot to the elections officer. The officer then removes the "receipt" portion, which only has a serial number on it, stores it aside, and then they hand the ballot to the voter. The voter places the ballot into the ballot box. Repeat as necessary.
At the end of the election, the ballot box is opened. The ballots are counted in front of the party representatives, and any ballots anyone isn't happy with are contested. Contested ballots are recorded as contested. Damaged/misused ballots are accounted for. Serial strips are checked against the number of voters and the amount of votes in the box to ensure there are none missing / too many. All information is recorded. The box is resealed with new (different) security tape, this time also sealing the section one drops the ballots into, all documents are sealed, EVERYONE involved (including the representatives) signs all the envelopes and the tally sheet. Once everyone is happy (if there is much to contest, this may take HOURS) the ballot box is driven to the head office for the city and held for a period (I believe this period is YEARS).
Should there be enough contested votes that it would throw the election, there are recounts, recounts, and more recounts.
The nice part of this process is it provides third party verification at all times. Since all parties are assumed they may have their own interests in throwing the election, by allowing all parties on the ballot to sit there and watch EVERYTHING, no one party has the opportunity to throw the election. They only have the opportunity to delay it and whine a whole bunch.
It takes a bit more work, but by golly, find me a "crack" for that system and I'd be happy to see it work.
Oh, and yes, if someone contests all the ballots, recounts can be held indefinitely until someone gives. Did I mention during this entire time nobody is allowed to leave the election room, even if it is for the facilities or for food/water? And, of course, nobody else is allowed in. Permission is usually given if all the parties co-operate, but serious filibusters are nigh impossible.
Re:What about hacking paper ballots? (Score:5, Insightful)
However, changing one vote on a paper ballot requires modifying or replacing a sheet of paper. Changing 100,000 votes requires changing or modifying 100,000 sheets of paper. Changing one electronic vote requires a few keystrokes. Changing 100,000 electronic votes requries... a kew keystrokes.
Even better, to alter a paper ballot you need physical access to the ballot. To change an electronic vote you do not necessarily need physical access to the computer on which is resides.
100,000 paper ballots also takes up a bit of volume, os it is not something that can be easily concealed without having a lot of people in on the plot, and would take some time to prepare, swap and dispose of the evidence. A memory card holding 100,000 electronic votes can be slipped into a shirt pocket, can be prepared in minutes, and all traces of the original data can be destroyed almost instantly.
Lastly, anyone can read and verify a paper ballot. Only people with the proper equipment, software, and technical knowledge (and cryptographic keys, if any are used) will be able to look at and verify the electronic votes.
=Smidge=
Re:What about hacking paper ballots? (Score:5, Insightful)
Re:What about hacking paper ballots? (Score:5, Insightful)
Bullshit. How exactly is it easy to destroy ANY ballot when you have multiple election workers with their eyes on them at every moment? Plus any number of election observers, which may be representatives of all parties involved, plus any number of federal or foreign observers.
The ONLY way you can destroy a paper ballot is if there are no observers, and all present voting administrators are corrupt. (And observers are usually deployed to exactly the places where there are suspicions of corruption).
Now let's consider an "e-voting" machine that leaves no verifiable paper trail, shall we? The officials and observers at the polling station have no way of knowing that the vote the machine actually registered was accurate, and neither do you. Nor can they tell if the machine is malfunctioning. All you need is ONE person to tamper with the machine, and do so at ANY time.
If the machine is compromised it can still display "Zero votes registered" when the poll opens. But I'd sure like to see you do the same trick stuffing paper slips in a ballot box and still having it look empty.
To ensure a fair election with paper ballots you need: At least one honest election official. And/or at least one impartial observer. To ensure a fair election with an electronic voting machine you need: All people who've ever had the opportunity to tamper with the machine to be honest. You need the software to be correct and bug-free (yeah, right). You need to be able to verify the correctness of the software.
It's true that it's impossible to guarantee fair elections. All you can do is reduce the risk of cheating, and the possible magnitude of cheating. Electronic voting machines do neither. All they do is cost less money.
Re: (Score:3, Interesting)
>> Here here!
Where where?
Oh, sorry - did you mean "Hear hear!"?
Personally I vote by using a pen to draw on a piece of paper which goes into a box and is subsequently hand-counted in full view of a lot of people including representatives of multiple political parties.
Primitive system, but it works. Until you can come up with some new fangled technology device that's as efficient and honest I'm not particularly keen to switch away from it.
Re: (Score:3, Insightful)
So again, the real answer seems to be having a nice, easy to use electronic voting machine (with references to all referendums, lots of scrollable space for nam
Re: (Score:3, Insightful)
A real paper voting system would not require anything but a paper ballot and, gasp, a pencil. Yes, this is possible! These ballots are then counted by hand. With close to 300 milli
There is only one problem with electronic voting: (Score:5, Insightful)
We geeks love to bitch about solutions in search of a problem; is there a clearer example?
Re:There is only one problem with electronic votin (Score:5, Interesting)
In India, the introduction of EVMs [eci.gov.in] reduced the election expences by a magnitude of 10.
Also, since there is a huge potential number of votes (upto 500 Million), it can reduce the time taken for the counting by a huge amount.
Another point to be taken to consideration is that there was a lot of invalid votes (when people unknowingly pressed the marker between two candidates in the ballot) esp in places where illetracy is abound. In some places, the invalid votes was more than the difference of votes beween the winning and second candidates. The EVMs meant that invalid votes are no longer an issue.
Also, there was an issue wherein a group of people will barge in a polling booth, and stuff some hundreds or thousands of ballots to the ballot box and run out. This invariably caused either
(a) wrong counts or
(b) re-voting in that booth.
Now this is no longer an issue since there is a time limit between votes and if too many votes come in, it goes in to lock mode(i dont know whether the second option is used now, but the first one is still there - time limit is around 20 seconds or so).
So I guess, it is needed, in many enviornments.
It saves money!? (Score:5, Insightful)
Democracy isn't worth the price of paper ballots anyway.
Re:There is only one problem with electronic votin (Score:3, Interesting)
Indeed.
Us Canadians use plain old paper ballots, and are able to count them all within a few hours, even after a federal election. The votes are the paper trail.
I'm reminded of the election in The Moon is a Harsh Mistress.
...laura
Re: (Score:3, Insightful)
Re:There is only one problem with electronic votin (Score:3, Interesting)
Electronic voting machines can be designed to be easier to use and more accessible to people with disabilities than traditional voting machines. Blind people can connect a pair of headphones and have their choices read to them. People who don't speak English well can choose a different language such as Spanish or Korean or whatever. Touchscreens may be easier to operate for people with physical disabilities. The order of the candidates can be randomized for each voter, so alphab
Re: (Score:3, Insightful)
Ok (Score:5, Interesting)
So it's easy to compromise the security of a Diebold voting machine -- news? This has been going on for a while in one form or another ever since Diebold got into the business. I'd have been more shocked if they would have found that you couldn't force it without breaking the seal.
If states/counties are smart, they'll avoid Diebold like the plague and stick to the old voting systems until a virtually fool-proof system can be designed and built. In the meantime, this won't have much effect on voting, since fewer and fewer people vote all the time.
BTW, that website with the detail is a trociously put together.
Re: (Score:2)
Nah. (Score:3, Funny)
Re: (Score:3, Insightful)
You've already given the reason why it won't happen.
The elections not only have to be fool-proof, but fool-accountable too, so that the common voter can clearly understand, and verify the process of voting. That alone means no electronic voting, because 99% of the voters don't understand it, and even if they do, they can't verify the process.
The paper ballot is the only way, since that is the only voting process every voter understands, and e
Re: (Score:3, Insightful)
The Diebolds and the Mexico's of the world are just now starting to understand this: It doesn't matter if the voting machine actually rigs the v
Good Enough for Government Work (Score:5, Insightful)
If only people thought their vote mattered, they might be concerned about this.
Re:Good Enough for Government Work (Score:5, Insightful)
This is not at all to say that stories like this are bad at all. They are very very good. They bring attention to probably the most important issue of our time; if we have no say in our government, then every other political issue is quite literally irrelevant. I applaud black box voting for taking this seriously, and hope that I can justify their efforts by helping to galvanize people to demand transparent voting. It is absurd that our election process is subject to error at all.
As I've said before, it's just counting
Why can't we get it unequivocally right? It is so easy that there has to be some interest behind not making it as transparent and rigorously accurate as humanly possible. We need to draw out these interests and cancel out any undue influence they have over our system.
The vote is already subverted (Score:5, Interesting)
But the vote is *already* subverted by a social engineering attack which is practically unstoppable; media coverage of politics.
This subverts democracy at the earliest stage; right where the voter forms the desire to vote one way or another.
If you think this is bullshit consider advertising.
Billions of dollars, shekels, yen and pounds are spent on the advertising of products. Does it work? Well I think that it would be foolish to assume that its money wasted.
If advertising works for things like consumer products, foodstuffs, whiteware etc, shaping the way that people spend their money, why wouldn't it work for shaping the way that people spend their vote?
A vote is just an item of currency that everyone has just one of and gets to spend it every so many years. Shaping voting patterns is exactly the same as shaping spending patterns.
Problem is, without a crack-down on media presentation of politics its impossible to stop this kind of subversion. And if that were to happen, what would be the point in having a democracy in the first place?
I don't think that democracy can exist in the modern world. A better term for what we *call* 'democracy' would be 'mediacracy'.
The US has always been at war with Eurasia (Score:2)
I don't see why there's not more outrage about this. Do people not understand that every liberty that we have (and used to have) stems from the ability to vote, and have your vote counted?
Just my guess (Score:2)
Re:Just my guess (Score:5, Insightful)
It's not people at the polling place that they're concerned with. Its the corrupt officials who get to take the machine home with them, who could replace valid vote data with a trumped up memory card showing a clear majority win for whoever is paying them the most. The "tag" on the metal cover is supposed to prove that the machine has not been tampered with. This article proves that you can tamper with the data all you like without breaking that tag.
In a sense, this is even worse than a hacker attacking the machine right at the polling place. In this scenario, you feel like you've excercised your right to vote and contributed to the process of making things better, but in reality your vote never got counted at all. It was replaced by a dummy vote.
As Seen on TV! (Score:4, Funny)
Another useful experiment ... (Score:2)
Re: (Score:3, Insightful)
So okay wait. (Score:2, Insightful)
I'm doubtful.
Re: (Score:3, Funny)
Re: (Score:3, Insightful)
Personally, I don't care who fixes the system as long as the system is fixed.
Re: (Score:3, Funny)
Oh, don't worry; the system is definitely fixed. Very fixed.
Re: (Score:3, Insightful)
If the Democrats win in the fall, and they are skewed from the exit polling data, then yes, there will even be an uproar on slashdot. Now, it will mostly be split between "we need a goddamned paper trail" and the new favorite "we told you there should have been a paper trail, but nobody listened to us." The national "mainstream" (center-left) media will do their obligatory piece on it and let it die. The far left will be unusually quiet. The conservative media will,
Re:So okay wait. (Score:4, Insightful)
Still buying that piece of horse-crap? The news media is center-right. Yes, even ABC, NBC, etc.
Also, you need to rethink your definitions of left and right. Do you mean just regarding social issues? Or also fiscal issues? Because honestly, your post made almost no sense without a definition of terms.
If that were so, we wouldn't see so many posts like yours getting modded up. It's a guaranteed upmod -- just spout some nonsense about some tangentially liberal/conservative dichotomous issue, and then say slashdot leans left.
Newsflash: the center has moved to the right, largely due to the media and the greater birth rate among conservatives. What you consider left-of-center used to be the center.
Re:So okay wait. (Score:5, Insightful)
Oh, and a big difference -- the Republican party has been demonstrably messing with the election process. From worse gerrymandering (of course the Dems do it too), to manipulation of the voter rolls, Republican control of the voting apparatus has lessened the democracy of the US. When the Democrats are also demonstrated to have systematically abused the voting apparatus to rig elections, then there will be just as large an uproar.
And one final note -- what uproar? I haven't seen one. The MSM hasn't covered this to any extent. Joe Q. Public is unaware there is a problem. If you're trying to say in your post that the media is biased, or that coverage of the issue is biased, or that Democrats are only making an issue of this because they lost, you'e way off base. It isn't the Democratic party that's making an issue of this.
Re: (Score:3, Insightful)
I can only assume that you actually meant "allegedly" when you typed "demonstrably" because nobody has demonstrated anything about the election process being "messed" with by the Republican party. There sure have been plenty of baseless allegations, though.
Re: (Score:3, Insightful)
Umm... you've never heard of the city of Chicago and the "Democratic Machine [wikipedia.org]"? Over 70 years of outright fraud, including swinging the 1960 presedential election in favor of Kennedy (ballot stuffing to the tune of 91% of the vote!). Newer crimes and misdemeanors by the Chicago Machine are uncovered almost weekly [nytimes.com], with Mayor Daley and Governer Rod Blagojevi
why is it secured in the first place? (Score:5, Insightful)
No really, why should a memory card containing results need to be secured with a coverplate? It's the contents of the card that matters. Can't the authenticity of the card's content be ascertained without needing it NOT to fall in wrong hands? Is there no encryption used, no message authentication? Is there no protocol whereby officials at least sign off on a print-out containing the count, and some checksums? Wouldn't there need to be no need to secure the card itself? I mean, the machine (and it's RAM), obviously, but the card should only contain a copy of the results - a copy that will be in tomorrows papers anyway.
The fact that someone (at Diebold even!) saw the need to put a coverplate in front of the memory card speaks volumes as to the system's design assumptions. That the machines are left with people overnight only makes things much, much worse.
And that website's "web 2.0" ajaxy slidey photo thingy makes me dizzy and kinda nauseuous..
Re:why is it secured in the first place? (Score:4, Informative)
Logic being 'ease of updating', but the safeguards in place against inserting something other than an authorized, verified and certified update are close to nonexisting.
So, in essence, if you have access to the memory card slot, some time, and capability to reboot the machine, you can pwn the election. And it will most likely be untraceable.
Cue law suit in three... two... (Score:2)
Re: (Score:3, Insightful)
Re: (Score:3, Funny)
There's a pretty funny story in Portland, Oregon where local law enforcement was caught going through various peoples' trash, and they claimed that once the trash had been put out on the curb (never mind that in some cases the trash was still on the peoples' properties), that it was available to the public.
Whereupon one of the local papers took it upon themselves to look through the Mayor's & the Chief of Police's trash, and reported what they found. Fortunately for the two officials, th
A Negative Negative (Score:5, Interesting)
Have the voters fill out a scantron-type ballot. And then have the voter/user feed that ballot through two different voting machines made by two different manufacturers.
This way there would be a paper record and two, seperate databases to compare to each other.
This would double the effort (or perhaps square it at best) for hacking and would allow manual recounts from random sample districts to test the accuracy of the two machines.
Re: (Score:3, Interesting)
Have the voters fill out a scantron-type ballot. And then have the voter/user feed that ballot through two different voting machines made by two different manufacturers.
This way there would be a paper record and two, seperate databases to compare to each other.
This would double the effort (or perhaps square it at best) for hacking and would allow manual recounts from random sample districts to test the accuracy of the two machines.
I'm confused how reduculous this is supposed to be.
I
Some things should NOT be electronic (Score:5, Insightful)
Just as one should not have an internet accessible refrigerator "mom! someone hacked the fridge again and turned the cooling off! Oh god the smell!!"
One should not have electronic voting machines. Seriously, why the hell do we need electronic voting other than that a great deal of people were, excuse my honesty, too goddamn stupid to understand how to use a paper ballot.
Another case of the ignorant masses rising up, bitching about how things are "too hard" and overcoming those of us who can follow simply printed instructions with their sheer moronic numbers.
Fellow
Re:Some things should NOT be electronic (Score:4, Insightful)
It also shows the importance we place on money versus our government...
I'm all for this, but no one has proven they can do it right. Maybe we should just replace voting machines with slot machines...
Site is unreadable. (Score:3, Interesting)
The site referenced is so crapped up with "Web 2.0" junk that it doesn't work. The picture links result in a neat animated effect in which a translucent rectangle grows. Then it disappears without displaying the picture, at least in Firefox 1.5.
If you have something important to say, use standard HTML. Especially if it's something important enough that it should be archived. Using "TiddlyWiki" with images on Flickr means your site will not be archived properly, and many search engines won't even index it with all that Javascript.
obligatory (Score:5, Funny)
Most gratuitous use of Javascript yet! (Score:5, Funny)
Format of the linked article (Score:3, Informative)
That now qualifies as the most atrocious use of JavaScript I've ever seen - Jesus, render this garbage on the server. Feeding some oddball marked up nonsense to the browser, yielding a circa-1997 page, seems a little...unnecessary.
Kind of goofy article (Score:3, Interesting)
How is this news? The same can be said of any computer system.
You have to at least operate under the assumption that these machines are audited before and after the electoral process, just like the ballot boxes were... if not, then *there* is the flaw in the system. The flaw isn't "hey, I can open this computer and alter it to change how it functions", it is "I can open this computer without anyone else knowing".
Wrong Comparison (Score:3, Insightful)
If any granny can hack the box while supposedly voting, using $12 worth of tools bought at a grocery store, then it's not as secure as paper.
Yes, any computer that you have physical access to you can hack, but can you hack a payphone to cough up its coins in 4 minutes??
Security of a voting machine must be at least as solid as security of
Re: (Score:3, Informative)
Fear the DMCA. (Score:4, Insightful)
Here is my solution (Score:4, Insightful)
If the SSN, home address, home phone, etc. of all the legislators who voted for the machines were placed on the memory card (and the officers of the companies that made them), then you can be damn sure the machines would be tamper proof and there would be a well documented chain of custody of each machine as well.
Better, yet put all their pension money in an Swiss bank escrow account and place the number in the memory card. Then things get serious.
Good security is possible. My guess is that the Diebold machines, rather than being some diabolical plot, are just a sloppy product designed for the government feeding trough. The whole e-voting thing is a windfall for these companies. It is mandated business.
To Trust or Not To Trust (Score:4, Informative)
And that's bad.
Very few people trust the election system as it now stands on a national basis. There is NO national standard, NO overwatch that is politically independent and NO way to VERIFY the states that are using the electronic-only voting methods.
The gaps are obvious: we need a national standard for the voting process; one that allows verification of EVERY vote on a papertrail basis; we need an independent overwatch OF the voting process; and we need an electronic voting system that is far more secure than the one that is currently being used.
And the probability of that happening amounts to one Big FAT CHANCE.
The excuses? It costs too much, it will take too much time to put into place, it violates State's Rights, there is no way to keep the politics out of the system and no system is completely secure.
How much are we willing to spend to defend our shores from attack? Is
With regards to State's Rights, this is for a national election. Sorry kiddies, doesn't apply as far as standards of the systems themselves go. You still have control of WHO votes and that's where the REAL power resides, so STFU. Keeping the politics out of the system? Well, there's no easy fix for that, but making the election review board similar to the Supremes, but with a requirement of 4 and 4 from each party and only 1 being appointed by the LAST sitting Prez might work... subject to Congressional approval and all that, of course. And secure? Well, nothing is ever totally secure, but we should be able to do better than a four-minute, no-break-the-seal-non-techie-hack!
Lee Darrow,
Chicago, IL
Private Voting, Public Counting (Score:5, Informative)
I spoke briefly with Bev Harris recently. See below.
I'm at work, so I need to make this brief. Just four points.
First, the two pillars of our democracy (United States of America) are private voting and public counting. We adopted the Australian Ballot [wikipedia.org] (aka secret ballot [wikipedia.org]) a while back. Things like electronic voting and forced mail voting (e.g. 100% vote by mail) take away the secret ballot. Here in Washington State, our constitution says we need a secret ballot. Disagree if you want. There's lots of ideas. Like voting receipts and no more secret ballots. But please start by changing our laws. Meanwhile, any attempt to take away the secret ballot (private voting) is unconstitutional.
Second, there is no technical way to have an electronic voting system which both preserves the secret ballot and the public vote count. If the ballots are secret, then there's no verifiability, meaning no public count. If the system is verifiable, then there's no secret ballot. You can have one or the other, but not both. Electronic counting, as with the precinct-based optical scanners, can be done constitutionally.
Third, currently the most reliable way to vote in the USA is to use a voter-correctable precinct-based optical scanner (PBOS). Sorry, I don't have the cites handy (my bad), but dig a little and you can find the research on this. Brennan Center, GAO reports, MIT Voter Project, etc. The basic idea is that you mark a ballot and feed it into a machine. If there's a problem, the machine spits the ballot back out, giving the voter a chance to correct the problem. Yes, these machines need to be better designed, open source, yadda, yadda. But before anyone proposes a better system, please work to understand the best system currently available. (Thank you for your patience.)
Many juridictions have wisely moved away from touchscreens and other DREs and adopted PBOS systems with a low-cost, verifiable solution for disabled voting. TrueVoteCT.org just had a huge win. And Voter Action [voteraction.org] sued and got the touchscreens in New Mexico replaced with PBOS systems. (Please visit both orgs and give them cash. Activism is not cheap!)
Fourth, and lastly, Bev Harris made an incredibly important point: Our elections have to be understandable for all the voters. Blackbox Voting has spents years digging and researching. I've personally spent 2 years learning all that I can about elections, voting, and these systems. I'm a computer geek and I readily admit that I had to work pretty hard to understand stuff. Bev has a lot of contact with experts, computer scientists, security dudes, etc. Her point is that we cannot rely on those sage gurus to weigh in on our election systems. We all need to understand how our democracy works. Not just the wonks. That means our election and voting systems must be simple and straightforward.
(PS- I saw Bev during King County Washington's "logic and accuracy testing" of our new Diebold AccuVote TSx touchscreens last Tuesday. You can read "Report: Testing of Diebold AccuVote TSx" on my blog [blogspot.com], on WashBlog [washblog.com], or on dailyKos [dailykos.com]. Please holler if anyone has questions. I'll do my best to reply in a timely fashion.)
Fair and Balanced Vote Fraud (Score:5, Insightful)
Re: (Score:3, Interesting)
But they were all won by Democrats, it's just that the rigged machines said they were won by Republicans... :|
We can both maintain a poker-face, and neither of us will win.
Until someone does this in an actual election.. (Score:4, Insightful)
And here's how someone can prove to have done it (Score:4, Interesting)
One week before election day, the person posts a message to any publicly acessible place (such as a newsgroup, but surely there are better alternatives which give more trust for being more verifiable) containing one or more hash of the following sentence (MD5, SHA-1, whatever):
"In state X, county Y, candidate A will have exactly 1144 votes and candidate B will have exactly 905 votes because I will have rigged the election. A week after the counting, I shall reveal this message to prove this claim. Cryptographical hashes of this message have been posted one week before election day at alt.foobar.org"
One week after the election, the person unleashes this message and then everyone can verify the hashes and conclude that at least one of the following is true:
(1) The person is very lucky at doing predictions
(2) The person can predict the future and should play the lottery
(3) The person has cracked all of those hashing algorithms
(4) The person has in fact rigged the election
Non-violent protest (Score:4, Insightful)
we're almost there! (Score:4, Funny)
So... (Score:3, Insightful)
Diebold have been the butt-end of so many serious security failures its not funny any more. Its obvious they don't have a clue about security and aren't likely to get a clue anytime soon judging from their ongoing record.
Why are we still using this company's products? How many more times are the government going to allow Diebold to screw up?? Is there no-one else that makes a better system?
Re: (Score:3, Informative)
You think that that's just a joke? Ken Blackwell, the secretary of state of Ohio has approved using machines from Diebold, and then did an "oops, I guess I own stock in that company!" Here's one version of the story [cleveland.com].
Anyway, it appears that the three big "electronic voting" companies are Republican shills, just going by the 2004 election data (exit poll discrepancies were bigger in districts using electronic voting, and all discrepencies were in the fav
Soviet Amerika! (Score:3, Insightful)
Re: (Score:2, Insightful)
Re: (Score:2)
Re: (Score:3, Funny)
Re: (Score:3, Funny)
Re: (Score:3, Insightful)
I believe the whole thing is disinformation to keep the random public guessing and/or to make the elections rigable.
Of course this is an easy task. You point out lottery. I point out banks. Banks have used Diebold for years wi