Would Diebold/Premier Actually Open Source Its E-Voting Software?
from the how-far-we've-come dept
Clive Thompson has a fairly thorough NY Times Magazine piece on the problems with e-voting. For those who read our regular coverage on the topic, there may not be much new, but a key point that comes across is just how mainstream this issue has become. Not just the fact that it's being covered by the NY Times Magazine, but throughout the piece you recognize that the concerns that the e-voting companies could brush off just a few years ago as "fringe" are now pretty widely felt by the populace. In fact, it's actually reached the point that a Diebold (er... Premier) representative actually admits that the company is considering open sourcing its next generation of e-voting software to make people feel more comfortable. That wouldn't just be a huge step forward (though not enough to calm all concerns), it would be a complete about face for the company, which has a long history of both stonewalling and ridiculing any critics. Dan Wallach, who works with Ed Felten, points out that the article seems to give a pass to optical scan e-voting systems, even those have also been shown to have serious security problems. However, on the whole, it's good to see that this issue has become a truly mainstream one.
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Filed Under: e-voting
Reader Comments
Subscribe: RSS
View by: Time | Thread
Open Source
Steve
Note to editor: We will be a participate at Ohio's Board of Elections Winter event next week in Columbus, Ohio. Attendees will be able to register to vote, sign a pool book and vote using a pen and paper based system. ES&S, “Diebold (er...Premier”, Sequoia and Hart should all be there. This will be fun.
Below is a web response will use to identify who we are. A pilot project in the last election went well enough that a verbal commitment was given for a PO to expand the scope to include a “Super Center” in the Primary. Now if the Postal carrier could remember our address!!!
PenVote is our flagship voting product. It is a paper based voting system where voters make their selections with INK on paper. Unlike most optical scan system, we show voters how their marks were interpreted before they cast their vote, even allowing them to see a complete image of their ballot. All this is done with a flexible ballot system (we can do full ballot display, or even ballot books), and a robust and secure tabulation system.
[ link to this | view in chronology ]
Thoughts...
However, if the goal is to drive adoption for 2008 election, I remain pessemestic-- Don’t know for sure if there's enough time for peer review process, and to get the code ready for production. Point is, November 2008 may be an aggressive timeline. A lot of things will have to be in place and firing on all cylinders for that to work!
[ link to this | view in chronology ]
Into the Public Domain
If Diebold does not want to divulge this information, Diebold should not bid on government contracts.
As I have followed the Diebold saga, the story is strait out of the Dilbert comic strip. What is unfortunate about the Diebold saga is that it appears that governments (in their ignorance) are paying premium prices for what is essentially an off-the-shelf commodity product, your standard computer.
[ link to this | view in chronology ]
But...your products aren't open-source, Steve
If they're running on Vista/XP, then they're not open-source, because the operating system environment isn't open-source. The entire stack -- down to and including the firmware -- has to be open-source. (Otherwise [some] attackers will simply bypass the open-source portions and focus their efforts elsewhere. For instance, given a $50M budget -- and see Schneier's analysis for why that's a actually a low number -- I'd spend a chunk of it trying to subvert your code at the OS level. I have little doubt I'd succeed, as fresh evidence of the insecurity of Vista/XP arrives all day, every day.)
If it was your goal to build an open-source, secure voting system, then why in the world would you pick a closed-source OS which is well-known to be a miserable failure where security is concerned?
[ link to this | view in chronology ]
Re: But...your products aren't open-source, Steve
[ link to this | view in chronology ]
Re: But your products aren't open-source
I'm saying that the entire product, that is, "the voting system" (or "the personal video recorder" or "the wireless router") isn't open-source if it's running on a closed-source operating system.
Sure, your code may be open-source, but once you integrate that with someone else's closed-source code, the entire system is no longer open for independent peer review.
Does this clarify?
[ link to this | view in chronology ]
[ link to this | view in chronology ]