stories filed under: "vulnerabilities"

Even More Trouble For E-Voting Firms: Source Code Review Finds All Sorts Of Scary Vulnerabilities

from the doesn't-look-good dept

Fri, Aug 3rd 2007 7:11pm — Mike Masnick

This has not been a good week for e-voting companies. First came the report out of California that the security had problems on every machine tested by independent security experts, followed quickly by security experts finding problems with other machines in Florida. This should come as no surprise. Every time a security expert seems to get a chance to check out these machines, they find problems. What was odd, though, about the announcement on Monday coming out of California, was that the state had only released some of the reports. It left out the source code review. However, late Thursday, the source code reports were finally released and things don't look much better. Apparently all of the e-voting machines are vulnerable to malicious attacks that could "affect election outcomes." The report also points out: "An attack could plausibly be accomplished by a single skilled individual with temporary access to a single voting machine. The damage could be extensive -- malicious code could spread to every voting machine in polling places and to county election servers." This, of course, is what others have been saying for years, and which Diebold always brushes off. Ed Felten has gone through the reports and is amazed to find that all of the e-voting machines seem to have very similar security problems -- and that many problems that Diebold had insisted it fixed in 2003 were still present. Remember how Diebold had used the master password "1111" in their machines? Now their machines use hard-coded passwords like "diebold" and (I kid you not) "12345678." At some point, isn't it time for Diebold (and the other e-voting machine makers) to stand up and admit that their machines aren't secure and, in fact, were never secure? At the very least, the company owes the world a huge apology -- but somehow, given its past behavior whenever its machines are shown as insecure, that seems unlikely to happen.

Filed Under: e-voting, security, vulnerabilities
Companies: diebold

32 Comments

<< Newer Stories

Follow Techdirt

Essential Reading

The Techdirt Greenhouse

Read the latest posts:

read all »

Techdirt Deals

Report this ad | Hide Techdirt ads

Techdirt Insider Discord

The latest chatter on the Techdirt Insider Discord channel...

Older Stuff

Monday
10:39	Daily Deal: The 2022 Ultimate Adobe CC Training Bundle (0)
09:38	How EARN IT Could Give Abusers A Get Out Of Jail Free Card: By Making Evidence Inadmissible (21)
05:37	Law Firm Sues US Citizen And Immigration Service After It Tries To Claw Back Docs Obtained Legally Thru A FOIA Request (12)
Sunday
12:00	Funniest/Most Insightful Comments Of The Week At Techdirt (14)
Saturday
12:00	This Week In Techdirt History: February 6th - 12th (1)
Friday
19:39	Danish Court Confirms Insane 'Little Mermaid' Copyright Ruling Against Newspaper Over Cartoon (348)
16:26	Analog Books Go From Strength To Strength: Helped, Not Hindered, By The Digital World (62)
14:02	Declassified Documents Shows The CIA Is Using A 1981 Executive Order To Engage In Domestic Surveillance (12)
12:13	Can We Compare Dot-Com Bubble To Today's Web3/Blockchain Craze? (11)
10:49	Cop Trainer Encouraging Cops To Run Facial Recognition Searches On People During Traffic Stops (20)
10:46	Daily Deal: The Complete 2022 Microsoft Office Master Class Bundle (0)
09:46	Penguin Random House Demands Removal Of Maus From Digital Library Because The Book Is Popular Again (79)
06:33	Unknown American VC Firm Apparently Looking To Acquire NSO Group, Limit It To Selling To Five Eyes Countries (13)
Thursday
21:09	Minneapolis Police Officers Demanded No-Knock Warrant, Killed Innocent Gunowner Nine Seconds After Entering Residence (146)
15:30	The Top Ten Mistakes Senators Made During Today's EARN IT Markup (61)
13:31	Court (For Now) Says NY Times Can Publish Project Veritas Documents (43)
12:00	Yet Another Israeli Malware Manufacturer Found Selling To Human Rights Abusers, Targeting iPhones (2)
10:45	Surprise: U.S. Cost Of Ripping Out And Replacing Huawei Gear Jumps From $1.8 To $5.6 Billion (12)
10:40	Daily Deal: The Complete GameGuru Unlimited Bundle (0)
09:36	Senator Blumenthal, After Years Of Denial, Admits He's Targeting Encryption With EARN IT (20)
09:33	Yes, It Really Was Nintendo That Slammed GilvaSunner YouTube Channel With Copyright Strikes (4)
06:33	Even Officials In The Intelligence Community Are Recognizing The Dangers Of Over-Classification (12)
Wednesday
21:02	First Circuit Tears Into Boston PD's Bullshit Gang Database While Overturning A Deportation Decision (23)
15:46	Content Moderation Case Study: Russia Slows Down Access To Twitter As New Form Of Censorship (2021) (2)
13:47	Emails Show The LAPD Cut Ties With The Citizen App After Its Started A Vigilante Manhunt Targeting An Innocent Person (9)
12:11	Over 60 Human Rights/Public Interest Groups Urge Congress To Drop EARN IT Act (66)
10:49	Terrible Vermont Harassment Law Being Challenged After Cops Use It To Punish A Black Lives Matter Supporter Over Her Facebook Posts (14)
10:44	Daily Deal: Certified Refurbished Vivitar VTI Phoenix Foldable Drone (0)
09:37	WarnerMedia Sued For Giving People Want They Wanted (The Matrix, Streaming) During An Historic Health Crisis (41)
05:28	Whistleblower Alleges NSO Offered To 'Drop Off Bags Of Cash' In Exchange To Access To US Cellular Networks (6)

Even More Trouble For E-Voting Firms: Source Code Review Finds All Sorts Of Scary Vulnerabilities

from the doesn't-look-good dept

The Techdirt Greenhouse

Monday

Sunday

Saturday

Friday

Thursday

Wednesday

More

Tools & Services

Company

Contact

More

from the doesn't-look-good dept

Techdirt Daily Newsletter

The Techdirt Greenhouse

Tools & Services

Company

Contact

More