?

Log in

No account? Create an account
Trevor Stone's Journal
Those who can, do. The rest hyperlink.
Democracy's Weakest Link 
13th-Sep-2006 06:17 pm
Trevor baby stare
As many people suspected, Princeton has shown that it's really easy to hack a Diebold voting machine. Like many corporations, Diebold prefers to deal with technical problems (faulty design) with non-technical tools. One tool is ignoring the problem. Another tool is attacking critics. A third tool is keeping the design secret so that nobody knows how bad the system is. An example of the first two tools follows.

"[Our critics are] throwing out a 'what if' that's premised on a basis of an evil, nefarious person breaking the law," Bear told Newsweek after the March Emery County study. "For there to be a problem here," he further explained to the New York Times, "you're basically assuming a premise where you have some evil and nefarious election officials who would sneak in and introduce a piece of software … I don't believe these evil elections people exist." -- Hack the Vote? No Problem on Salon.com

A fundamental technique of secure system design involves playing a malicious party. At point of entry in the system, this party gets to say "What if this happens here?" I'll bet companies that make slot machines don't answer that question "Surely there's nobody so evil to do that!" That's right. Your gambling rights are better protected and enforced than your voting rights.
Comments 
14th-Sep-2006 01:42 am (UTC)
Ugh. Thanks for posting this. Disappointing, but, as you say, not surprising.
14th-Sep-2006 03:41 am (UTC)
Need to bring back the butterfly ballots. At least those elections are stolen by honest to God mayors of Chicago and governors of Florida, not by random geeks.
14th-Sep-2006 04:35 am (UTC)
Geez. Makes me wonder if it's even WORTH voting anymore. Even in hicksville we're getting them. Got an informational pamflet on them and everything.

Or maybe the hackability and/or them ignoring it IS part of the design!
14th-Sep-2006 05:37 am (UTC)
Back in the days I DESIGNED "security" and "system" software, I would do everything to break it before it left shop.
This included doing both stupid and malicious things.
Pressing timing problems.
Name it.

Not today.
The "ass"umption is that "everyone is honest and no one will EVER make a mistake, especially and 'honest' mistake."

Yeah.
Right.
14th-Sep-2006 02:25 pm (UTC)
Why wouldn't they fix this?
Either they're in denial,
or
they're in on the fixing.
14th-Sep-2006 05:01 pm (UTC) - Pondering on meanings
Funny, I just realized I used "fix" in two different senses in the same post.
This page was loaded Jul 23rd 2018, 3:57 am GMT.