Slashdot Mirror


Diebold Voting Systems Grossly Insecure

Several well-known security researchers have examined the code for Diebold's voting machines (which we last mentioned two weeks ago) and produced an extensive report (pdf). The NYT has a story on the report, which cuts to the bone: 'Our analysis shows that this voting system is far below even the most minimal security standards applicable in other contexts. We highlight several issues including unauthorized privilege escalation, incorrect use of cryptography, vulnerabilities to network threats, and poor software development processes. For example, common voters, without any insider privileges, can cast unlimited votes without being detected by any mechanisms within the voting terminal.'

5 of 534 comments (clear)

  1. Ah-ha! by grub · · Score: 5, Funny


    voters, without any insider privileges, can cast unlimited votes without being detected by any mechanisms within the voting terminal.

    Were they testing these in Florida a few years ago?

    --
    Trolling is a art,
    1. Re:Ah-ha! by Glonoinha · · Score: 5, Funny

      Dammit, that's a bug.

      Unlimited voting was supposed to be restricted to the elite voters that have insider privileges.

      Expect a patch.

      --
      Glonoinha the MebiByte Slayer
  2. *sigh* by Ummagumma · · Score: 5, Funny

    You would think, with all the qualified unemployed software engineers out there, they could at least hire a few...

    --
    "The natural progress of things is for liberty to yield and government to gain ground." - Thomas Jefferson
  3. Well yeah! by cspenn · · Score: 5, Funny

    You can't expect a secure voting machine! I mean, how else can [insert current party in power] rig the next election unless the machines are grossly insecure?

    What, you were expecting fairness?

  4. Poor choice of words by PontifexPrimus · · Score: 5, Funny

    "This is an iceberg that needs to be hacked at a good bit," Mr. Neumann said, "so this is a step forward."
    Isn't that a rather poor choice of words when talking about program code? And is hacking an iceberg permissible under the DMCA?

    --
    -- Language is a virus from outer space.