No announcement yet.

Electronic voting in 2013 ?

  • Filter
  • Time
  • Show
Clear All
new posts

  • #31
    America Continues to Ignore the Risks of Election Hacking | The New Yorker
    One of the enduring myths about American elections, and one that persists even after the revelations of 2016, is that they are largely insulated from hacking because we have no centralized voting system— ...”

    Irregularities discovered in WinVote voting machines

    “...Schuermann noted there are actually two problems with insecure voting machines. The first is obvious: The systems can be easily hacked.

    "That's a real threat," he said. "But the other threat is equally important and equally dangerous, and that is the threat of...”

    “Those vulnerabilities in themselves didn't prove the machines had been hacked, but a closer examination of files on some of the WinVote voting machines showed unexplained anomalies. One of the machines, for example, had MP3s of a Chinese pop song and traces of CD-ripping software, and data showed the machine broadcast the song on the internet. That was strange, he said, but there were more concerning voting machine irregularities.

    For example, three of the machines used during the 2005 Virginia gubernatorial election dialed out via their modems on Election Day, though the data didn't explain why. Schuermann speculated that perhaps the systems were getting a security update, but one of the machines actually dialed the wrong number.

    In addition, two of the systems that were used in the 2013 Virginia state elections had more than 60 files modified on Election Day before the polls closed. And USB devices connected to one of the machines while the polls were open.

    "That's really bizarre," he said.

    It was unclear whether the files were modified as part of a system update, he said, and there wasn't enough data to explain what those USB connections were for. Schuermann cautioned the audience that the voting machine irregularities weren't necessarily evidence of hacking, but he said the uncertainty about the irregularities should serve as a call to action. Only a few states, he said, have electronic voting systems that produce paper ballots and can be audited.”
    Last edited by KC; 13-08-2018, 12:27 AM.


    • #32
      How hard could it be?

      An 11-year-old changed election results on a replica Florida state website in under 10 minutes

      Nico Sell, the co-founder of the the non-profit r00tz Asylum, which teaches children how to become hackers and helped organize the event, said an 11-year-old girl also managed to make changes to the same Florida replica website in about 15 minutes, tripling the number of votes found there.

      Sell said more than 30 children hacked a variety of other similar state replica websites in under a half hour.

      “These are very accurate replicas of all of the sites,” Sell told the PBS NewsHour on Sunday. “These things should not be easy enough for an 8-year-old kid to hack within 30 minutes, it’s negligent for us as a society.”


      • #33
        I think using paper ballets provide a better paper trail for elections than recording everyone's votes electronic machines does.


        • #34
          It is possible to do both. I built a system for our board elections where voting happens on iPads in booths, paper ballots are printed for the voters as a backup. It vastly sped up the voting process and the counting process and when there was a tight vote we were able to do manual recount to confirm.

          The big thing is to have the paper trail and have it visible to the voters so they can confirm the paper ballot matches their on screen choices.

          I'm also partial to the system the City uses where we mark a paper ballot and but the cards can be machine counted.

          "For every complex problem there is an answer that is clear, simple, and wrong"


          • #35
            This is a bit over the top for effect the point has some validity.

            "For every complex problem there is an answer that is clear, simple, and wrong"


            • #36
              To be fair, and speaking from my field of work; the graphic above is funny because it's partly true. However, it's in the way IT sectors are run and managed, or rather, mismanaged. Big data can be hard to crunch and keep 100% reliable when it comes from thousands of sources and the validity of it all needs to be 100% checked.

              It's also a lack of skill. Not that people lack them, but there's always someone somewhere that is better. Companies keep their programs and source code hidden away, assuming nobody can hack it. They're usually wrong.

              This is why open-source projects are far superior. All the source code for how the program works can be viewed by anyone. And anyone can contribute to it, and review contributions. This means some kid somewhere in the world could even find a flaw or security hole and do a pull request to submit a fix. You have way more eyes on how things work. And believe it or not, large open-source projects are actually some of the most secure applications out there.


              • #37
                Yup. :/ The IT world, whether development or operations is still very thin in terms of the people are really good at it or have access to well developed resources to make up for that. Where you do have talent they can be hamstrung by organization they're in. I've heard many stories where the developers wanted robust security but were blocked by managers who didn't want to spend the money.

                "For every complex problem there is an answer that is clear, simple, and wrong"