Bruce Schneier Sounds The Alarm: If You're Worried About Russians Hacking, Maybe Help Fix Voting Machine Security
from the wake-up-call dept
We've been writing about the lack of security (and accountability) in electronic voting machines almost since Techdirt began. Our very first post on the subject, way back in 2000, declared that e-voting is not safe. Of course, over the years, we've seen more and more examples of this, from the Diebold debacle to Sequoia's security disaster. Basically e-voting is a complete clusterfuck. The machines have long been easily hackable, and the companies behind them don't really seem to care much. They frequently don't do common security practices, such as allowing for outside testing of their machines (or, even better, open sourcing their code for security testing). Instead, it's a big "trust us" and any time security researchers have gotten their hands on these things, they've discovered that the trust is totally and completely misplaced. The machines are a disaster.Along the way, this has created significant distrust among the electorate. Not an election goes by where we don't see someone accuse the election of having been "rigged" in some manner or another, with people pointing to the insecure voting machines as the mechanism. While nothing nefarious has been proven, just the fact that this has created massive levels of distrust in one of the basic practices necessary for democracy to work is concerning.
Now, combine this with the ongoing claims of Russia hacking the DNC's computer systems (which some experts are still disputing). Whether or not it's true, Bruce Schneier is noting that this should be a very loud wakeup call for fixing the security of voting machines:
As he notes, "election security is now a national security issue," but it doesn't seem like anyone in the political realm has realized this yet. Hopefully, it doesn't take the discovery of a hacked election to make the point clear.But while computer security experts like me have sounded the alarm for many years, states have largely ignored the threat, and the machine manufacturers have thrown up enough obfuscating babble that election officials are largely mollified.
We no longer have time for that. We must ignore the machine manufacturers’ spurious claims of security, create tiger teams to test the machines’ and systems’ resistance to attack, drastically increase their cyber-defenses and take them offline if we can’t guarantee their security online.
Longer term, we need to return to election systems that are secure from manipulation. This means voting machines with voter-verified paper audit trails, and no Internet voting. I know it’s slower and less convenient to stick to the old-fashioned way, but the security risks are simply too great.
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Filed Under: bruce schneier, e-voting, elections, electronic voting, hacking, security
Reader Comments
The First Word
“Solution: Air Gapped, Tamper Resistant and Audited
Step one is to completely air-gap the voting machines and aggregation of results.This would eliminate hacking elections from the other side of the planet. (Won't happen since its 'too inconvenient')
Step two is to increase the physical security. Build machines that can detect they've been tampered with. (Won't happen since its 'too expensive')
Step three require that all machines must be audited by NUMEROUS third parties. Let the Democrats/Republicans/Manufacturer/Government/Other Third parties perform security audits, if any group one group finds a flaw that machine is not allowed to be used in elections. (Won't happen since 'ZOY MY GOD manufacturer's proprietary intellectual property is exposed allowing competitors to make better machines!')
Subscribe: RSS
View by: Time | Thread
Or you know, the NSA might give the win to her anyway, just because.
[ link to this | view in chronology ]
Re:
[ link to this | view in chronology ]
Re: Re:
That's hardly a number that even matters.
[ link to this | view in chronology ]
Cheating the elections
It WAS Clinton who cheated with the DNC to lock out Sanders, I'll grant you that. And yeah, Kennedy was voted in due to graveyard voting in Illinois, but Nixon was pretty progressive for a Republican.
[ link to this | view in chronology ]
Re: Re:
Florida, I think it was.
[ link to this | view in chronology ]
Illinois dead voted Democrat...
But then the nearly-dead voted Patrick Buchanan in 2000, Florida, due to a confusing butterfly ballot format. Apparently the Gore hole was too close to the Buchanan hole.
[ link to this | view in chronology ]
http://www.xkcd.com/463/
[ link to this | view in chronology ]
Re:
[ link to this | view in chronology ]
Re: Re:
[ link to this | view in chronology ]
Of course the ultimate goals should be first and foremost security, followed by accessibility and user friendliness. Something like this should be a task given to an established technology company, not someone who bids for the best contract. Someone like Apple, for example, would be good for this project since they have a history of focusing on improving security with an easy to use system.
Such a system should be accessible as physical stations as they are now and once that's established, work should begin towards making it accessible on the internet so that any American (with some sort of valid registration) is able to vote from the comforts of their own home.
Such a system would benefit from having additional resources available so voters could educate themselves on the people they are voting for rather than just selecting off a list of names and political party. You could click on "More Info" about a candidate and see what accomplishments they've made, what their stance is on issues, what things they've done in the past that may not be favorable. A sort of Wikipedia for candidates available in limited format right there for the person to see while they're voting. Because while it's easy to remember who Donald Trump, Republican Presidential Candidate is, it's not as easy to remember who Mary J Smith, Independent City Council Candidate is.
[ link to this | view in chronology ]
Re:
Wait, are you suggesting that politicians should pass laws that make it easier for voters to be informed?
https://youtu.be/UBf8Sb7wM7o?t=40s
[ link to this | view in chronology ]
Re: Re:
[ link to this | view in chronology ]
Solution: Air Gapped, Tamper Resistant and Audited
This would eliminate hacking elections from the other side of the planet. (Won't happen since its 'too inconvenient')
Step two is to increase the physical security. Build machines that can detect they've been tampered with. (Won't happen since its 'too expensive')
Step three require that all machines must be audited by NUMEROUS third parties. Let the Democrats/Republicans/Manufacturer/Government/Other Third parties perform security audits, if any group one group finds a flaw that machine is not allowed to be used in elections. (Won't happen since 'ZOY MY GOD manufacturer's proprietary intellectual property is exposed allowing competitors to make better machines!')
[ link to this | view in chronology ]
Re: Solution: Air Gapped, Tamper Resistant and Audited
The downside? The average voter will have to serve 3 sessions of ballot counting in his life time (a session more or less being one day, including ballot box watching) instead of spending $10000 of tax money on voting machines in his life time.
Making democracy work is an honor. Don't give it to machines, they cannot appreciate it and consequently do a sloppy job, with very little oversight.
[ link to this | view in chronology ]
Re: Re: Solution: Air Gapped, Tamper Resistant and Audited
[ link to this | view in chronology ]
Re: Solution: Air Gapped, Tamper Resistant and Audited
This would eliminate hacking elections from the other side of the planet.
You might want to ask those in charge of Iran's nuclear program how air-gapping worked out for them.
[ link to this | view in chronology ]
Re: Solution: Air Gapped, Tamper Resistant and Audited
[ link to this | view in chronology ]
Re: Solution: Air Gapped, Tamper Resistant and Audited
a local district sends their data to a county electronically, that data is sent to the state electronically up the line. The conclusion was that data sent isn't always the data received as somewhere between local and federal recipients of electronic data could alter the data.
Thus my recommendation we use in the pacific northwest, MAIL IN BALLOTS, a code on each ballot that you can use to validate how your vote was received and tabulated.
Mail in also means, and this is huge, you have several weeks to sit down at the table, read through the voter guides, do research and mail in or use drop boxes for your ballot.
No ONE DAY voting, you literally have weeks to cast your vote which means no long lines, no idiots at the reception area refusing your ID, no wrong polling stations, no intimidation at the poll.
[ link to this | view in chronology ]
Re: Re: Solution: Air Gapped, Tamper Resistant and Audited
Does this allow voters to see that they voted for X (for Senate, let's say) and for Y (for the House, let's say)?
[ link to this | view in chronology ]
Re: Re: Re: Solution: Air Gapped, Tamper Resistant and Audited
[ link to this | view in chronology ]
Re: Re: Re: Re: Solution: Air Gapped, Tamper Resistant and Audited
This is actually a fairly well-known problem in election system design, see for example Electronic Voting (by Ron Rivest) which touches on this point briefly.
[ link to this | view in chronology ]
Re: Re: Re: Re: Re: Solution: Air Gapped, Tamper Resistant and Audited
So? If I want to sell my vote, shouldn't I be allowed to do so? It's my vote! I get to do what I want with it! That's the capitalist way! All you socialists need to just shut up.
/s
[ link to this | view in chronology ]
Re: Re: Re: Re: Re: Solution: Air Gapped, Tamper Resistant and Audited
[ link to this | view in chronology ]
Re: Re: Re: Re: Re: Re: Solution: Air Gapped, Tamper Resistant and Audited
[ link to this | view in chronology ]
Re: Solution: Air Gapped, Tamper Resistant and Audited
Step 1 is to stop using electronic voting machines anywhere.
Step 2 is to look into developing a voting system that can be remotely trusted.
[ link to this | view in chronology ]
MailInIsTheOnlyWayToGo
Each mail in ballot comes with a code, that code is used to VERIFY how the election system took your ballot and confirms who you voted for.
Anything less than our system is well, undemocractic!
[ link to this | view in chronology ]
Re: MailInIsTheOnlyWayToGo
(I ask knowing full well that I have no confirmation of that even with the scanned paper ballots in my district.)
[ link to this | view in chronology ]
Re: Re: MailInIsTheOnlyWayToGo
[ link to this | view in chronology ]
Re: Re: Re: MailInIsTheOnlyWayToGo
[ link to this | view in chronology ]
Re: Re: Re: Re: MailInIsTheOnlyWayToGo
I can see where your going, but no we haven't had voter fraud of any sort using this system, as we can verify our final vote cast - it's like the paper audit, we can see the result.
[ link to this | view in chronology ]
Re: Re: Re: Re: MailInIsTheOnlyWayToGo
For example, news reporters couldn't go in to the system and get a list of HOW they voted, only that they voted.
This is the exit polling aspect that political parties CAN use to call you and remind you to vote. They don't see how you voted, only that you did or did not.
[ link to this | view in chronology ]
Re: MailInIsTheOnlyWayToGo
[ link to this | view in chronology ]
Re: MailInIsTheOnlyWayToGo
So, you can prove to whoever you sold your vote to that you actually voted the way they they wanted? Most excellent! We need more systems like this if the vote selling market is ever going to really take off.
/s
[ link to this | view in chronology ]
Make America Great Again
Then the only remaining obstacle would be to remove the limit on the number of terms that the president can serve.
Unrelated: from googling, the name "Donald" seems to have two meanings. 1. ruler of the world, and 2. dark stranger.
For the convenience of everyone, couldn't voting machines be modified to automatically vote for you. This would save you from the time and trouble of having to leave work to go to the polling place and wait. Voting is such an inconvenience anyway. Like jury duty.
[ link to this | view in chronology ]
Re: Make America Great Again
My first thought is Duck.
[ link to this | view in chronology ]
Re: Re: Make America Great Again
[ link to this | view in chronology ]
Re: Re: Re: Make America Great Again
[ link to this | view in chronology ]
Re: Re: Make America Great Again
[ link to this | view in chronology ]
Re: Re: Make America Great Again
And cover.
[ link to this | view in chronology ]
Re: Re: Re: Make America Great Again
[ link to this | view in chronology ]
The real meaning of "Make America Great Again"
It wasn't already?
[ link to this | view in chronology ]
Re: Make America Great Again
If you are an American citizen please leave the U.S., you are not worth the fucking air you breath.
Since you have such a dim view of Jury Duty, it is clear you are one of the ones responsible for the corruption of the government. Jury Duty is the last stand against government corruption where citizens can refuse to convict people when government comes calling for their liberty, property, or life.
You are an enemy of "The People" and one of the reasons that Trump's political potential came to exist in the first place. I do not like Trump, but I will enjoy watching people like you writhe over his existence and doubly so if he becomes president.
[ link to this | view in chronology ]
Re: Re: Make America Great Again
[ link to this | view in chronology ]
Re: Re: Re: Make America Great Again
[ link to this | view in chronology ]
Re: Re: Make America Great Again
Pretty sure you missed the sarcasm in the post you're replying to.
[ link to this | view in chronology ]
Re: Re: Make America Great Again
I mentioned Jury Duty because it is fresh on my mind. I happen to be on Jury Duty this past week, and next week. Last Monday in the judge's orientation, she pointed out how jury duty is not convenient for anyone. But we should be glad we have an independent judiciary. Which I am. Jury duty, like voting, is part of how you participate in a democracy. Even one that has become disfunctional.
I have no wish for Trump to become president. I'm hoping that was obvious.
[ link to this | view in chronology ]
Re: Re: Re: Make America Great Again
I sometimes get red eye about the whole jury duty process because 99% of Americans are shirking their duty to the nation.
I do not see anyone getting out of this Presidential election unscathed, but I have to say, Hillary is a proven corruption, and so far Trump appears to be a huge toddler that is hated by both parties. There is a higher likely hood that a lot of his BS will be put into check by that fact where as Hillary will get a blank check because she stands for everything wrong with the Democrats.
[ link to this | view in chronology ]
Re: Re: Re: Re: Make America Great Again
See, for instance, “Plea Bargaining and the Innocent”, by U.S. District Judge John L. Kane (Dec. 2014), who was writing in response to an earlier article by United States District Judge Jed S. Rakoff, “Why Innocent People Plead Guilty” (Nov. 2014).Approximately similar statistics can be readily found with a quick Google.
We no longer have a system of criminal trials, rather we have a system of plea-bargaining.
[ link to this | view in chronology ]
Re: Re: Re: Re: Re: Make America Great Again
I also consider people fighting back when innocent and NOT taking those plea bargains and another duty to their Nation. You see, we have clearly done this to ourselves, which is why I am red eyed about it all. First citizens treated Jury Duty like some fucking game to get out of ("judged by people too stupid to escape jury duty") ring any bells? Then by that understanding people lose faith in their fellow citizens to protect them. This is not helped by a well corrupted legal system that actually lies to the jurors about their duties and responsibilities. It could be countered by the Public Education system, but we all know how that turned out.
Life may not be fair, but you cannot win laying down, you MUST rise up. Yes, we will lose some during the fight, but we will lose more if we do not fight.
Americans have lost heart, become apathetic, and fight each other over the farces created by both parties. Instead they are full of fear and cowardice!
[ link to this | view in chronology ]
Re: Re: Re: Re: Re: Re: Make America Great Again
You started out in this thread by saying—Forgive me when I suggest to you that your comment did not actually quite come across to me as any sort of calm, rational and reasonable statement. Not at all.
[ link to this | view in chronology ]
Re: Re: Re: Make America Great Again
For that matter, is the Techdirt comment section considered “social media”?
[ link to this | view in chronology ]
Re: Make America Great Again
Do you really think she would do that?
[ link to this | view in chronology ]
It's a civic duty
The United States asks so little of its citizens. For example, we don't have mandatory military or civic service. Yet people complain about the "inconvenience" of taking a few hours out of their schedule every 2 or 4 years to vote.
And yes, jury duty may be boring and you may sit around all day, but again, this is part of your civic duty as an American citizen.
[ link to this | view in chronology ]
Re: It's a civic duty
Here's an item from earlier this month… “Republican-American: Waterbury chief: ‘Let’s cooperate’ [and consent to searches to defuse police]”, by John Hall, FourthAmendment.com, July 19, 2016:All part of a proud American's“civic duty”? — Voting. Jury duty. Police cooperation. Consent to search.
All part of the same “civic duty”?
[ link to this | view in chronology ]
'Rights: Only applicable when they don't inconvenience the police'
If an officer stops your car, if they ask to search your person or vehicle, if they demand entry into your home, comply and then complain later to the department’s internal affairs office and police chief’s office if you feel your rights have been violated, Riddick said.
Yeah, no. That argument/threat might make at least some sense if he was phrasing it as a matter of safety('You don't want to make the police mad, they can make your life all sorts of unpleasant/short purely on a whim.'), but 'cooperation'? Not even close.
That's not 'cooperation', that's rolling over and letting your rights be violated, potentially screwing you over later on('The accused willingly let us perform the search, and as such any evidence found should not be suppressed.'), under the idea that (barring the police union) the two groups least interested in punishing police for violations will do something about it at some point down the line.
It's amazing he can travel anywhere safely with blinders as large as the ones he seems to be wearing.
[ link to this | view in chronology ]
Re: 'Rights: Only applicable when they don't inconvenience the police'
You're saying that an American's civic duty includes: • Voting • Jury duty • Cooperating with police.
But you're also saying that that civic duty does not include: • Consenting to search.
Is consenting to search maybe part of some other “civic duty”?
Or am I twisting your words too much? Into something unrecognizable.
[ link to this | view in chronology ]
Choice vs Obligation
My focus wasn't on the 'civic duty' part so much as the absurd idea thrown out by the police chief, but addressing your questions I'd probably say yes, yes and no respectively.
The first two are (theoretically) how the public makes sure that the 'right' people are representing their interests and acting as a check against unjust laws and overzealous prosecutors who care more about convictions than seeing justice done, while the third has a chance to negate the first two if applied blindly or poorly.
If someone chooses to be cooperative or helpful to police rather than the absolute minimum required that's up to them, but I don't feel in the slightest that it should ever be seen as an obligation or duty to do so, especially when it comes to actions that are violations of a person's rights. The police are intended to serve the public and society, not the other way around.
If police want people to want to help them then they need to work on doing something about their toxic reputation, and the idea that people should feel obligated to help, even at the cost of their rights just because a cop feels like doing something isn't exactly helping that.
[ link to this | view in chronology ]
Re: Re: It's a civic duty
[ link to this | view in chronology ]
Re: Re: Re: It's a civic duty
All the same, even living now in a state where our state's constitution contains an even stronger guarantee to our citizens than the U.S. Constitution's Fourth Amendment—(York v. Wahkiakum School Dist. No. 200 (Wash.2008), citing State v. McKinney (Wash.2002) and State v. Myrick (Wash.1984).)
All the same, even living now in a state with an even stronger distaste for warrantless searches, it's as well-established here as it is anywhere else in the union that consent is indeed an exception.
So, on a non-emotional basis (Massachussetts is a long ways back east on I-90, and the year 1761 was a very long time ago), on a non-emotional basis, I'd have to reject the proposition that people have any duty to refuse consent to a warrantless search. No, folks ought to be free either way.
[ link to this | view in chronology ]
Re: Re: Re: Re: It's a civic duty
People are perfectly free to to shirk their civic duty to refuse warrant-less searches.
[ link to this | view in chronology ]
Civic duties
The motivation to civic duties from patriotism (jury duty, the draft, census forms, voting, writing angry letters to your congressperson) only work when the people are patriotic. Such as if they generally feel enfranchised, recognized and supported by their state officials and agencies.
That's not a situation we have presently in the US.
Considering how long it has been since that has been a common feeling, it is no surprise that all of these functions have become tragic commons. People don't expect the legal system to be available to them (And why should they when innocent people are forced into convictions or plea bargains every day?) so of course they don't care to be a juror.
When we have to choose between a charismatic demagogue and a criminal career politician, why would people want to vote?
When we're being sent to fight in foreign lands to win land rights for corporate interests, why would people want to risk their lives?
But as I'm fond of noting, We build a civilization with the people we have, not the people we wish we had. (credit to Rumsfeld where it's due) Now that there is a abyssal divide between the state and the people, we're going to need to find other ways to motivate them to want to participate in their own governance.
Once votes and juries count again, they might start doing it out of patriotic duty again, and people may actually put effort into serving their country.
But so long as our country treats its people like conscripted commoners pressed into service for the bemusement of a handful of gentiles, we're not going to show much enthusiasm for service.
[ link to this | view in chronology ]
Re: It's a civic duty
Individual liberty, the ability to choose where we go and what we do, is the very foundation of 'being American'.
The thought that people are unpatriotic, unamerican, or somehow immoral because they do not consent to the activities YOU consent to IS wildly facetious.
[ link to this | view in chronology ]
Re: Hopefully, it doesn't take the discovery of a hacked election
IMHO the correct solution was actually demonstrated decades ago in the film Johnny Mnemonic.
More or less it comes down to arranging the machines in a "U" shape, with the screens pointing at the voters outside of the "U", and the other side camera pointing a string quartet or something similarly animated. Each vote is block chained with a snapshot of the string quartet. Validation is by watching the video of the string quartet (which will be unique to each machine) after the vote is complete and sequence checking the blocks.
In such a case, volunteers are only responsible for security over physical installation of the removal of the machines, and validation of the initial block chain key for each machine, and perhaps interspersing their own random input string every 20 or 30 voters to bind the witness to the machine. After that the whole vote tally is tamper evident.
Of course we won't do this even though the tech is more than 20 years old at this point. And really, as the leaders of the free world, we should have open sourced a chip for this shit to the world YEARS ago, as a national security initiative. Whole cost would have been less than a rounding error in the defense budget. And don't tell me that nobody fucking thought of it, because protecting the integrity of the democracy is what the NSA is SUPPOSED to be doing.
I mean I get it. I'd rather be inventorying porn for the FBI than hacking crypto API all day too. And hey, why create world peace when you can blow shit up really good. Job security and all that.
The problem is not that we don't know how to fix this. The problem is that oligarchy doesn't want it fixed. And if you are voting for either of the two circus clowns in the main attraction ring, YOU are contributing to that.
[ link to this | view in chronology ]
It WILL NOT take the discovery of a hacked election
Or will ensure that the discoverers cannot publish.
The world wide internet will need to be shut down briefly, um . . . for maintenance. Sorry for any inconvenience.
[ link to this | view in chronology ]
Three laws safe
[ link to this | view in chronology ]
Electronic voting machines CAN'T be fixed
On resources, I'll refer to Schneier himself and to the article that I think is the first one anybody interested in this issue should read. It's from 2004, and it's called Stealing an Election.
In that article, Schneier arrives at the very conservative estimate of a $100M attacker budget for someone attempting to ensure that their party gains control of the US House of Representatives. That, to remind everyone again, was in 2004. If you look at the numbers Schneier bases this on (campaign expenditures) and update those for 2016, you will arrive at a much higher final estimate. And note: this is for the House. What's the Senate worth? How about the Presidency? (Even more so given current and anticipated Supreme Court vacancies.)
Do think it would be worth $1B to the Russians (or Chinese, the other government capable of footing the bill)? (The correct answer is "yes". They would write that check in a heartbeat.)
That covers resources. Now for asymmetry. One of the things that we keep seeing over and over and over again in security is that attackers need only a tiny fraction of the defenders' budget in order to prevail against them.
So if an attacker has $1B, how much will you need to spend to defeat them? I'll give a conservative estimate of $100B -- reflecting a 100:1 ratio, while noting that observed attacks have often reflected much greater differences.
You can differ with the $1B number and the 100:1 ratio all you like. Make it $500M and 40:1 or whatever you wish. But whatever that final total comes out to be, you're going to need to be prepared to spend that much, or you're going to need to be prepared to lose.
Given this, I think the only way to win is not to play the game. Manual voting systems are well-understood, heavily studied, and very difficult to manipulate en masse. They have the significant downside of requiring large amounts of human labor and not yielding immediate results. I think we have the labor ("poll duty" should be like "jury duty", something we take turns doing) and I think we can manage to wait a day or a week for results.
[ link to this | view in chronology ]
Re: Electronic voting machines CAN'T be fixed
[ link to this | view in chronology ]
Re: Electronic voting machines CAN'T be fixed
Why pay $1B for the presidential election if you can buy the (much less controlled) primaries for $20mil each in order to leave only bad choices?
I mean, explain Hillary Clinton and Donald Trump rationally. Probably a wager between the Chinese and the Russians: "if you get one, I'll get the other, see if I don't".
[ link to this | view in chronology ]
Re: Re: Electronic voting machines CAN'T be fixed
[ link to this | view in chronology ]
Re: Electronic voting machines CAN'T be fixed
I think you are reading the asymmetry in reverse video. Validation is a matter of binding unreproducible state to the user input (hence the the live string quartet). The user can validate an image back to the machine with a paper ticket, but the hacker can't spoof an image that is taken in real time.
The problem is similar to a one way cipher, with the added requirement of reproducible human validation of a single use key. It can be done. I'd estimate a team 8 very good software and hardware engineers could do it in 2 years for about 10M$, with about a 50% chance of bullseying the thing, and about a 90% chance of advancing the state of the art to a point where rev 2.0 would be servicable.
This isn't like DVD security. There is more state on the end user side to play with. The other issue here is that if you are willing to tolerate a conversation with someone at the RNC or the DNC, it is highly unlikely you are the guy with the skillset.
People who are willing to subjugate themselves to the consensus view even though the math speaks otherwise, don't become scientists. (Or Democrats or Repuplicans in the current electoral cycle for that matter.)
[ link to this | view in chronology ]
Re: Re: Electronic voting machines CAN'T be fixed
Is there a rigorous proof of that?
[ link to this | view in chronology ]
I maintain my position: copyright is utterly toxic and should be abolished.
[ link to this | view in chronology ]
Redundancy.
Open-source software and hardware.
Redundant auditing and counting by multiple, independent agents.
Maybe blockchaining which allows for some organizations to securely vote online without tampering worries.
[ link to this | view in chronology ]
Re: Redundancy.
No reason to let a machine between a person and their vote.
It is now possible to remotely watch or tamper with a machine even with an air gap, it is currently not possible to remotely tamper with a paper ballot that I am aware of.
[ link to this | view in chronology ]
Re: Redundancy.
I'm kind of worried about it. China has gotten hold of a lot of power within the bitcoin world with their massive mining farms. If it comes to blockchain then it should prevent power concentration.
[ link to this | view in chronology ]
OCR cards combine speedy reporting with solid recount
[ link to this | view in chronology ]
Re: OCR cards combine speedy reporting with solid recount
[ link to this | view in chronology ]
Re: Re: OCR cards combine speedy reporting with solid recount
Nah, too hard to rig. That's why most places won't use it.
[ link to this | view in chronology ]
Re: OCR cards combine speedy reporting with solid recount
[ link to this | view in chronology ]
Re: Re: OCR cards combine speedy reporting with solid recount
[ link to this | view in chronology ]
Re: OCR cards combine speedy reporting with solid recount
(I'll admit I sort of do miss the old mechanical lever machines, but I realize what we have now is better.)
[ link to this | view in chronology ]
[ link to this | view in chronology ]
ANYONE HERE?
And abit of programming language, in HTML, GW basic, or any of the 20 Older languages USED?
TELL me how easy it would be to LOCK down a system..
Hardware and software..
Couldnt we just use an OLD 385/486(without all the current hardware spec).. And set it up REAL basic and simple..
Lock down all the ports.
NO ACKNOWLEDGED Ports in OS software..
Master KEYLOCK on the case that will interrupt the computer and SHUT IT DOWN from any inputs..
There REALLY is bad news here, in that there are TO MANY PEOPLE willing to PAY to get a backdoor into these machines...
[ link to this | view in chronology ]
Re: ANYONE HERE?
Please see http://blackboxvoting.org/black-box-voting-book/ or watch "Hacking Democracy" for a sense of the challenges.
[ link to this | view in chronology ]
Re: Re: ANYONE HERE?
99.999% of it all comes down to MONEY and Corruption.
It wouldnt matter WHAT computer we used, or software..
If you gave me ENOUGH money and paid the TAX for me...
It wouldnt be a problem.
The one thing I can say, is that the SIMPLER it is, the EASIER it is to monitor...
DONT complicate it..
Then when the Election is done, the Programming is looked at by both sides, and verified..Then the count is done..
I would also PRINT a form for the voter, that could be taken IN' anytime and Checked with the Finished vote.
The 1 REAL problem is we cant make it with NO HUMAN hands touching it.. There are to many places to Augment things..
[ link to this | view in chronology ]
Tampered
So what. if it takes an extra hour to get the tally in, if the voting is electronic, the only safest way to get those tally's in is the Human factor - meaning, a 'body' has to go online and submit their count. It's the only way to be sure. Leave the voting booths offline - period.
[ link to this | view in chronology ]
Any is election held on a working day, anyway?
[ link to this | view in chronology ]
Yeah, but, how will we have the option to rig the vote then
*scratches head*
I dont understand
Yours insincerely
Career Politician
[ link to this | view in chronology ]
Videotape and publish our ballots
Whether or not that's true of the weather, it's largely true of digital voting systems. That's because even the most secure proposed remedy--traditional "hand-counted paper ballots" (HCPB)--isn't secure enough.
In traditional hand-counting, the paper ballots get hand-tallied in the polling place. That sounds great, until you realize that you're not personally there to see the counting. Instead, you're asked to put your trust in the six people who do the counting--and to trust the thousands of other six-person teams in other precincts across the country. Do you really trust all those people? No way.
What's needed is a new approach to hand counting, one that reduces the "trust-me" factor to virtual insignificance.
Here's an outline of one such approach:
1. All votes get cast on paper ballots in the polling place on election day.
(Yes, there are arguments for allowing paper ballots to be cast at other places and/or times. We can discuss these options if the rest of this proposal is acceptable.)
2. When the polls close, each person in the polling place gets to video-record the ballots. Each video should simultaneously show enough of the polling place to authenticate the video.
3. The videos get published on the Internet, each video serving as a check and balance on the others. As desired, the videos get authenticated against the actual ballots.
4. The public gets to tally the ballot images, by hand, by personal software, by off-the-shelf software, by calculator, or however. Alongside each video is a description that includes its tallies as calculated by its creator. Ambiguous and other miscast votes get tallied as such.
5. Any outlying miscount is quickly detected due to its divergence from the other counts.
The result: All counts soon converge to an accurate count, given the margin for miscast votes.
[ link to this | view in chronology ]