Verified Voting Logo
Edit Your PreferencesContact VerifiedVoting.orgAbout VerifiedVoting.org
Verified Voting HomeJoin - Help us do this work!Donate - Help us do this work!Take Action Today!Endorse the resolution!
Printer Friendly Version

See information for:

The Verified Voting Foundation engages in educational activities permitted by IRC Section 501(c)(3). Please visit VerifiedVoting.org for info about 501(c)(4) lobbying activities. You can also visit Vote Trust USA, a project of the Verified Voting Foundation. Also, check out our blog and twitter feed.

E-Mail This Page
Home   »  VVF Newsletter: Latest Security ...


VVF Newsletter: Latest Security Vulnerability in Paperless E-voting Underscores Need for Paper Trail, Auditing

by Verified Voting Foundationhttp://www.verifiedvotingfoundation.org
May 16th, 2006

A critical security vulnerability has been brought to light in Diebold touch screen voting machines, just as several primaries are about to occur.

In a May 12th New York Times article, Avi Rubin, a Professor at Johns Hopkins and Verified Voting advisory board member, said “I almost had a heart attack” when he understood the nature of the problem. Michael Shamos, a computer scientist and voting system examiner in Pennsylvania, was quoted in the same article, "It's the most severe security flaw ever discovered in a voting system." Indeed, several experts have urged that the technical details of the problem not be discussed because it is so easy to exploit. Such recommendations are extraordinary, coming from a community that values openness and transparency on computer security issues.

According to the report (available in redacted version at www.blackboxvoting.org) by computer expert Harri Hursti, the machines have insufficient protection to prevent malicious firmware from being installed. If bad firmware were installed, it would be difficult to detect, and it might be difficult to install new “clean” firmware. A wide variety of poll workers, shippers, technicians and so on, have physical access to voting machines at various times; any of these people might be able to use that access to install bad firmware.

Shockingly, news of the security flaw was topped off on Monday with news that both Diebold and the State of Maryland have been aware of the security vulnerability for at least two years.

Further adding to the scandal is the fact that the backdoor (or doors) were designed into the machines intentionally, against accepted design practice and, indeed, simple common sense, as Diebold spokesman David Bear admits in the same New York Times article. He goes on to say, “For there to be a problem here, you're basically assuming a premise where you have some evil and nefarious election officials who would sneak in and introduce a piece of software,” he said. “I don't believe these evil elections people exist.”

Diebold's confidence in election officials is heartwarming. But what really matters is the confidence of the voting public. What are these same election officials to do when disgruntled candidates question the results of their elections? They can’t point to federal and state safeguards, which completely overlooked this glaring problem. In most places using Diebold touch screen machines, there will be no voter-verified paper records to recount. In those jurisdictions in particular, Diebold has left election officials with no method to defend themselves or their elections when questions arise.

It is easy for people to learn the wrong lesson from this incident: that we need more stringent computer security. More stringent security is desirable (depending on how much it costs), but won’t solve the real problem. The cause of the real problem is the use of paperless electronic voting, which is fatally flawed as a concept. Modern computer systems cannot be made sufficiently secure to handle all-electronic voting with secret ballots. Mistakes or tampering at any level, from the software to the circuits in the chips can change electronic votes, undetectably.

This incident is just one of many, involving products from many different manufacturers. It won’t be the last. Indeed, such problems will never end as long as paperless electronic voting is in place.

Suppose we had the best possible practices, such as thorough background checks of the ownership, management, and employees of vendors, meticulous and intrusive reviews of the design and manufacture of the equipment by truly independent experts, and so on – the kinds of measures used for regulation of gambling equipment. Even these measures would not eliminate programming errors and security holes. Even in a best-case scenario, there will always be people who can “hack” the machines (including the programmers who write the code in the first place). Voters will never know whether their votes were recorded and counted accurately.

Given the current state of technology, elections cannot be trustworthy unless there are voter-verified paper records of the votes and a significant portion of those paper records are manually counted to check the machine counts. We can’t guarantee that machines will always function correctly, but each voter can make sure that his or her vote has been correctly recorded on paper (preferably by the voter’s own hand).

Fortunately, twenty-seven states with over fifty percent of the U.S. population require voter-verified paper records. Some counties in those states may use the Diebold touch screen machines with “paper trail” printers. If they must use the machines, we would urge them in the strongest terms to be especially diligent in protecting and auditing those paper records – including manually counting more than the minimum number required by law.

Every jurisdiction with voter-verified paper records (paper ballots or paper audit trail printouts verified by the voter) should publicly carry out a manual audit, after the initial vote count is reported, with random selection of the areas to be counted. Voters should encourage their election officials to carry out such an audit – regardless of whether it is required by law in their state – in order to check the voting system for accuracy. Currently, more than twice as many jurisdictions offer voter-verified paper records than there are jurisdictions that require audits.

Whatever you do, don’t let these problems discourage you from voting. If you don’t vote, you can be sure that your vote won’t count. Instead, contact your elected officials and the candidates and make sure they understand that paperless electronic voting must be replaced with systems that provide a voter-verified paper record that is manually audited – our democracy depends upon it.


###


Verified Voting Foundation
1550 Bryant St., Suite 855
San Francisco, CA 94103
415-487-2255 telephone
info@verifiedvoting.org



The Verified Voting Foundation is a 501(c)(3) nonprofit corporation; your contributions to the Foundation are tax-deductible to the extent provided by U.S. tax law. To donate online, visit http://verifiedvoting.org/donate --or if you prefer to mail a check, please send to Verified Voting at the address shown above.

Announcements

August 26, 2010
On Indias Electronic Voting Controversy
August 25, 2010
Pac-Man for president: Hack highlights e-voting flaws
August 6, 2010
Voting Technology Research Gets In-Depth
July 27, 2010
State Election Officials: Recountable Process A Must for Overseas Voters
July 20, 2010
Online Voting: All That Glitters Is Not Gold (Unless You're a Vendor)
June 21, 2010
Voting Without A Net In South Carolina
June 17, 2010
Voting results in New Jersey should not be mysterious
June 16, 2010
Verified Voting Calls for Recountable, Auditable Voting Systems Following South Carolina Primary
June 16, 2010
Voting integrity groups call for investigation of South Carolina voting systems in wake of unexpected primary results in Democratic US Senate race
June 15, 2010
On the South Carolina Primary
May 23, 2010
Benefits, risks of e-mail ballots weighed
May 4, 2010
PA - Team 4: Security Concerns About Voting Machines Remain
April 26, 2010
California Assembly committee endorses UC Berkeley statistician's election auditing method
March 8, 2010
Feds Move to Break Voting-Machine Monopoly
March 2, 2010
Is the Internet the Right Place for Our Ballots? Election Administration and Voting Rights Thought Leaders Weigh in on the Future of Overseas Voting at Summit 2010
February 25, 2010
Minnesota Civic Groups Refute Recount Claims
February 17, 2010
Groups and Election Officials Warn Department of Justice that Voting Machine Vendor Merger will Inflate Costs to Taxpayers, Threaten Election Accuracy and National Security
February 11, 2010
Fla. justices uphold local election law
February 3, 2010
NJ Judge Issues Mixed Order on Use of E-voting Machines
February 1, 2010
Ruling Issued in RutgersNewark Law Schools Constitutional Litigation Clinic Challenge to NJ's Electronic Voting Machines

Get E-Mail Alerts




Important Links

  • VVBlog: Check out the latest news and commentary at our blog.
  • Election Day Problems?
    Call 1-866-OUR-VOTE
  • Find Your Polling Place: Vote411.org
  • Questions? Contact Us
  • Vote Trust USA - national resource for state-based organizations supporting verifiable elections, a Verified Voting Foundation project


    • "The core of our American democracy is the right to vote. Implicit in that right is the notion that that vote be private, that vote be secure, and that vote be counted as it was intended when it was cast by the voter. And I think what we're encountering is a pivotal moment in our democracy where all of that is being called into question." (more here)

    Kevin Shelley, former
    California Sec. of State


    Verified Voting Foundation, Inc., is a 501(c)(3) nonprofit corporation.

    © Copyright 2008, Verified Voting Foundation, Inc. All rights reserved, although reprint permission granted for nonprofit purposes with attribution to Verified Voting Foundation, Inc.


    Privacy    Site Map