Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hardly Anyone Cares About Computer Voting Problems

Posted by timothy on from the 10-vote-20-goto-10 dept.

Avidwriter writes "It's a sad thought that Roblimo explores in a NewsForge article about computer voting fraud and how you'd think all honest politicians would be working to make sure computerized voting systems are open source, and why open source wouldn't hurt well-run voting machine companies' profits. Not that most people care, since they don't even bother to vote, right?"

21 of 530 comments (clear)

  1. Thus say... by inertia187 · · Score: 5, Funny

    Not that most people care, since they don't even bother to vote, right?

    I don't know off hand, so let's put it to a vote!

    --
    A programmer is a machine for converting coffee into code.
    1. Re:Thus say... by Anonymous Coward · · Score: 5, Insightful

      Its sad that the same people who scream for open source voting and open source this and that are the same people who bemoan the cheaters once quake 1 and quake 2 source was made public (though not open source) .

      You would think that voting machines you would want simple and private code with high encription.

    2. Re:Thus say... by Anonymous Coward · · Score: 4, Insightful
      The difference is that Quake and similar games are inherently impossible to proof against cheats. Too much is done at the client side, so there's too many ways that the cheaters can cheat -- and no way to protect against them all. At what point is the line between incredibly good reflexes, and cheating? And how can you tell, unless you're physically there, at the client, watching them play?

      Voting, on the other hand, is a much simpler problem, and the problems with fraud are much better documented and understood. Those that control the rules can control the voting -- but that's a problem with paper ballots as well as electronic. In this case, the risks of opening the code are outweighed by the risks of not opening the code.

    3. Re:Thus say... by texaport · · Score: 5, Funny

      "What with voting turnout at an all-time
      low, not voting makes me more American."

      --
      Hank Hill, King of the Hill

  2. in australia I hear they have mandatory voting by dreadnougat · · Score: 5, Interesting

    even if you vote "abstain", or you get a small fine (unless you CAN'T be there, ie are hospitalized)

    At least it would stop the whining about voter turnout :)

    1. Re:in australia I hear they have mandatory voting by Mjec · · Score: 5, Informative

      [In Australia there is compulsary voting,] even if you vote "abstain", or you get a small fine (unless you CAN'T be there, ie are hospitalized)

      Yes, voting is compulsary, but thanks to protection of privacy there is no way for them to know whether you actually voted or no. You just have to turn up, and place a ballot paper - it can theoretically be blank, and for some people often is. But everyone turns out, and it is a much better system. We actually get a reasonable representation of the opinion of the people.


      But with response to the article:
      Yes! There is a need in the US for a better voter turnout, and if machines are in use it needs to be difficult to be forge or modify votes. Go me, master of the blindingly obvious!

      --
      "But everyone should know everything." -markab
    2. Re:in australia I hear they have mandatory voting by canning · · Score: 5, Insightful

      Yeah, the duty of the government is to protect the rights and well being of its citizens but it's also up to the citizens to protect each other.
      Being required to vote is in the best interest of everyone in the country and it's a small price to pay. You can't tell me that you're life is so significant and hectic that you cannot accommodate casting your vote? Give me a break.
      I truly believe that if you don't vote (or in an Australian citizen's case cast a blank ballot) you have no place to criticize politics or the actions of politicians until you do so.

      Just my $0.02.

      --
      I love the smell of Karma in the morning
    3. Re:in australia I hear they have mandatory voting by cranos · · Score: 5, Insightful

      " If you want to talk about requiring things of your subjects for the common good of all, then you're talking about communism"

      So a criminal justice system is commie plot now is it?

      Seriously as members of a community we are expected to contribute to that community as well as take away, other wise the community collapses. Voting is your way of saying this is the person/group I want leading the community. If you don't vote then you have no right to complain about who gets in.

    4. Re:in australia I hear they have mandatory voting by An+Onerous+Coward · · Score: 4, Insightful

      I think you're being unrealistic. Instead, I side with Scott Adams' comment on the importance of your vote: The value of your vote is actually negative if its influence on the outcome is outweighed by the time and effort spent casting it.

      Throw in the fact that you can be a conscientious citizen, get yourself well informed on all the candidates and issues, and have your vote negated by some ninety-five year old lady who is voting for Al Gore because he wore the best tie... can you blame us for getting cynical?

      --

      You want the truthiness? You can't handle the truthiness!

    5. Re:in australia I hear they have mandatory voting by Slurpee · · Score: 4, Insightful

      gantrep obviously hasn't thought this through. Paying taxes to pay for roads and education is also a commie plot (according to his view). As is 911. Stupid government attempting to help people help others.

      If you don't vote then you have no right to complain about who gets in.
      I'm not so sure about this one. I use to think this, but have now modified my view somewhat. While holding that view, I couldn't see how I could complain about a government who I helped vote to power. IE, only those who did not vote for the ruling party can complain (or vice versa). Also, people I know in politics would also tell me that "I can't complain if I don't directly do something about it". IE Unless I'm attending peace marches, writing letters to papers, signing surveys, or even stand for government I shouldn't be complaining about it. Locally, it makes more sense. If I care about the dog droppings in my local park (I do), then why aren't I picking them up myself, or writing letters telling the pollies to do something, or even attempting to be voted in on a "no dogs" policy.

      My modified view is something like "Everyone can complain, but the more someone does about something, the more they care about it". IE, listen to complaints of people who make a lot of effort regarding fixing the problem (Voting is an effort). If they can't even be bothered to vote, then I may not think their complaint is worth listening too.

  3. It has to be said... by kzinti · · Score: 4, Funny

    ...you'd think all honest politicians would be working to make sure computerized voting systems are open source...

    That assumes you could find an honest politician.

  4. You're asking for too much. by psoriac · · Score: 4, Insightful

    Not that most people care, since they don't even bother to vote, right?

    Most people don't even bother to click the link to read the article; you think they'd actually get up, leave the house, drive to the voting center, and push some buttons to vote? That's way too much effort involved.

    --
    I browse Slashdot at +3, Funny
  5. Open Source vs. Closed Source voting by Dancin_Santa · · Score: 4, Insightful

    Security through Obscurity works as a temporary stopgap. It doesn't last long, but it does keep a system secure for a short time until someone discovers the security hole.

    Voting takes place once every two years in the US (different for other countries). And it only takes place on one day. Security through obscurity can hold that long.

    On the other hand, divulging the source code to the system beforehand (otherwise, what's the point to having the system being Open Source) makes it that much easier for evil-doers to find the holes in the system. Keep in mind that these fraudsters aren't going to fix the hole and "turn it back over to the community". They will have plenty of time to find the exploits and they will exploit it on election day.

    Yes, in general Security through Obscurity is a bad idea, but in one-off systems like electronic voting, it is the best method of keeping the system secure short of armed guards and video cameras.

    1. Re:Open Source vs. Closed Source voting by Qzukk · · Score: 5, Insightful

      it does keep a system secure for a short time until someone discovers the security hole.

      You're assuming that someone hasn't already bought the "hole". You're assuming that the ballot system developers are impartial. You're assuming that if the government won't abuse any knowledge that the public has no access to.

      You're assuming too much.

      --
      If I have been able to see further than others, it is because I bought a pair of binoculars.
    2. Re:Open Source vs. Closed Source voting by KoalaBear33 · · Score: 5, Insightful

      What do security experts say about systems? They say that open, heavily scrutinized systems are more secure. For instance, any decent encryption is open. Keeping them open actually improves the encryption's strength. Same thing with open voting systems...

      The number of people who find and fix flaws will far outweight those with malicious intents. As a matter of fact, non-profit organizations and academic institutions can study the code for loop-holes/bugs/etc. Academia is good at coming up with theoretical solutions to problems and would be perfect here. They will be able to analyze the software for flaws far better than any private company can (except possibly large ones like IBM, Microsoft, etc). They will be able to do it from the specifications even (how do you know the specs are correct? )

      KoalaBear33

      --
      ......The worst thing in my life happened when the stock market started mattering more than the economy
  6. no kidding by croddy · · Score: 5, Interesting
    the student government at my college switched to computer voting a couple of years ago. every semester it's the same story; some terrible problem with the system means we have to do it all over again, usually twice.

    I've written to the voting committee, written editorials, but no one cares. they claim that it's better than paper voting because machines don't make mistakes.

    once I voted 12 times. but that was because they were relying on cookies. that was fixed in the revote. once they used checkboxes instead of radio buttons, and I voted for everyone. but that was fixed in the next one.

    people are lazy, and even if it's got problems, they prefer clicking on some web form to actually going and voting in person. I say if you're too lazy to get up and vote, then you probably shouldn't be voting anyway.

    but nobody cares, machines don't make mistakes... yeah? well, I've got a 20 page study of georgia voting technology that disagrees.

    it's high time we had an election server h4x0red to make people think twice about it.

  7. For those who haven't heard of Condorcet by Magic+Thread · · Score: 5, Informative

    The Condorcet method of voting requires that each voter rank the candidates from best to worst. It's generally a good system, but has been criticised for being hard to understand (maybe not for those of us on /., but for the stupid voters). Another interesting voting method is range voting, which assigns a number value to each candidate based on that candidate's desirability.

    Rated voting, which is a special case of range voting, was generally the best method (i.e., it maximised voter happiness) in a test of various voting systems. Also see ElectionMethods.org.

    An improved voting system would certainly make lots of things better (though due to Arrow's paradox, a perfect system is impossible). I think we also need to improve the voters. The most heard criticism of Condorcet's method is that it's hard to understand, and it's really not all that complex at all.

  8. Lefty and proud of it by flicken · · Score: 4, Funny
    Are you left eyed?

    Of course i am. Why do you ask? (-;

    ...oh...righ^H^H^H^Hleft. (-; (-; (-;

    I am left-handed, -footed, -eared, -toed, -kneed, -minded and -(*censored*)ed. And, like most /.ers, i often feel left out.

    --
    20 mil and I will! Learn Esperanto with 20M others.
  9. Minor bit of reality check here boys... by ComputerSlicer23 · · Score: 5, Informative
    I've done contract work for ES&S (actually most of the work I did for them was when they we're know as AIS). I've seen what they get to do for verification. Trust me, somebody reads every single line of code there is. They have specific rules, and very rigorus tests the machines get put thru. I worked for the guy who did most of the original coding for the E100. I helped to start the port for the E500, which turned into the E600 model. Actually I started to finish the port. It was originally in Z80 assembly, they completely ported it to C, and they lost the machine, and all the backups from about 6 weeks before it finished. I was the first guy to start finishing the port.

    The company I worked for did all of the original design assembly of the PCB boards.

    Everything is done on paper (on those models, I hear they have other electronic only models). So it is completely auditable via a recount. The Federal Election Commision certifies the software and the hardware as fit for use. Once certified, no changes can take place without a re-certification, and justification for all changes made.

    They use QNX as their base operating system, and use essentially fax based technology inside the system. They scan it using the fax scanner, using timing bars to tell where the bubbles are. They then read the black/white values using an A/D converter (at some point, they switched to infrared technology instead of fax technology). Each machine gets fed test sets of thousands of ballots ( I want to say over 100,000 ballots go thru the system during the final testing phase). Which the exception of a mis-feed, or jam (which has to be detected), there can't be any mistakes.

    They are pretty serious about it. At one point I knew every guy who did the day to day coding on the systems. They are plenty trustworthy. Maybe not coding gods, but naferious evil plots just won't happen. Sorry, take your conspiracy theories and go home.

    Oh, and no one in their right mind would want to read the code. For a variety of reasons. First it's boring as hell. Second, the rules make it nearly impossible to write interesting code. All function can have on and only one return. No function can be over 200 lines long. No matter how clear the function is, it can't be longer then 200 lines. Why 200, got me, but it's the rule. There are rules against using macros, and rules about function pointers, and rules about recursion, rules about how data structures have to be stored. Rules about lots of different things. Rules about election layouts. Rules about ballot layouts. All kinds of mind numbing rules.

    Open sourcing them, or making them available under NDA for a third party audit, sure seems like a good idea. However, there are plenty of safety measures in place to assure that the right things go on.

    Christ the machines run while being hit by a giant as static electricity gun. (Vandigraph generator, I believe it was called).

    Kirby

  10. Good reliable voting solutions by einhverfr · · Score: 5, Interesting

    Here are the guidelines I came up for a fraud-resistant electronic voting system:

    1: The traffic with the database server should be properly secured (ipsec, ssl w/client certs, etc.)

    2: The data should be stored in an accountable way. For example, if the data is altered, there should be a way to determine this.

    3: The system should allow manual verification of results.

    So here was the system I designed:

    1: Database server communicates with clients using ESP/IPSec protected communications.

    2: Voting machines use touch-screens. At the end, the voting machine displays a list of candidates you voted for and asks you to confirm. Then when you do, it submits your data to the database and prints a ballot. The database also stores information relating to the ballot regarding which voting station you were at. You deposite the ballot in the ballot box.

    The ballot contains: 1: An easy-to-scan bar code
    2: A human readable ballot listing for manual verification. 3: The ballot serial number.

    This gives you almost everything you get with the paper system as well as everything you get with the electronic system.

    --

    LedgerSMB: Open source Accounting/ERP
    1. Re:Good reliable voting solutions by cyril3 · · Score: 4, Insightful
      The ballot serial number

      Numbered Ballot Papers. I wonder why they didn't think of that before.

      Oh, I remember. The greatest advance in democracy since, well democracy really ,SECRET BALLOTS.

      I have enough nightmares about electronic voting already. You go into the polling station at 08.30am and they tick your name off against the roll. At 8.32am a vote is cast for Candidate X (as certified by the audit trail in the system.) Guess who voted for whom.