Slashdot Mirror

← Back to Stories (view on slashdot.org)

E-Voting Done Right - In Australia

Posted by simoniker on from the approved-by-kangaroo-jack dept.

tehanu writes "After all the furor over e-voting in America, Wired News has an article about e-voting done right in Australia. An important factor is that all of the software is open-source. The company responsible actually seems to have given consideration to the integrity of the democratic process, too - from the lead engineer: 'Why on earth should (voters) have to trust me -- someone with a vested interest in the project's success? A voter-verified audit trail is the only way to 'prove' the system's integrity to the vast majority of electors, who after all, own the democracy.' They also have scathing words for Diebold: 'The only possible motive I can see for disabling some of the security mechanisms and features in their system is to be able to rig elections. It is, at best, bad programming; at worst, the system has been designed to rig an election.' In general they are 'gob-smacked' by the whole situation with electronic voting machines in the US right now."

29 of 485 comments (clear)

  1. Open source? by s20451 · · Score: 4, Insightful

    Don't kid yourself: open source is nice, but it doesn't guarantee a fault-proof or secure voting system (suppose somebody installs wrong or malicious software on one of the machines?). The only way to do that is to provide voting receipts which can be counted independently, by hand -- and that does not exclude closed-source solutions.

    --
    Toronto-area transit rider? Rate your ride.
    1. Re:Open source? by KD5YPT · · Score: 5, Insightful

      Sure it doesn't guarantee a fault-proof or secure voting system, anyone can install wrong or malicious software on machines, even a closed system one. The point here is that we eliminated or reduced the possibility of having holes in the software intended to be in the machine. Hey, it's better to have hundreds and thousands of people to look at it, then to have a handful of stressed out employee with vested interest in the company to examine the code.

      In another note, voting receipts is nice, no question about that.

      --
      In US, you can easily buy enough major firearms to wipe out your neighbourhood but a few little fireworks are banned.
    2. Re:Open source? by extrarice · · Score: 3, Insightful

      [quote]
      Don't kid yourself: open source is nice, but it doesn't guarantee a fault-proof or secure voting system (suppose somebody installs wrong or malicious software on one of the machines?).
      [/quote]

      True, but with an open system, anyone can see what is going on. If the process is completely open, there is a greater likelyhood that any funny-business will be seen and dealt with before it is too late (*ahem* Florida).

      --
      "Jesus saves, but everyone else in a 10 foot radius takes full damage from the fireball."
    3. Re:Open source? by FreeBSD+Goddess · · Score: 3, Insightful

      The problem, then, is verifying the integrity of a paper trail. If someone is going to rig an election by tampering with electronic voting machines, they're also more than capable of forging the paper trail. There's also stories from the last presidential election about ballots being lost and destroyed. Even the paper trail is subject to tampering. The only certain way of making a voting process accurate and not subject to fraud is if you do away with the secret ballot. And I don't think that's worth it.

      --

      SEARCHING FOR SIG
      SIG NOT FOUND ERROR
      READY.
    4. Re:Open source? by molarmass192 · · Score: 4, Insightful

      I agree with you but I'm curious, why would a public voting system be based on closed-source software? Is it to obscure the code to prevent fraud? We know for a fact that security through obscurity doesn't work. Is it to protect the copyright of the software author? No, that's what copyright law is for. So, that leaves only as a means to hide the underlying process. Not exactly something desirable for public elections. I believe there's a place for closed source solutions and a place for open source solutions. A building security system is a place for closed source solutions since few have a vested interest in the underlying mechanisms. On the other hand, a voting both is a place for open source solutions since we all have a vested interest in the underlying mechansim.

      --

      Good people do not need laws to tell them to act responsibly, while bad people will find a way around the laws-Plato
    5. Re:Open source? by Pakaran2 · · Score: 3, Insightful

      I think the easiest way to do this would be something as simple as a long band of thermal print paper (like a cash register, only behind a transparent window). The voter sees his vote on a screen, and confirms it, and watches it be printed on the paper.

      If you alternate through 3 spools of paper at random, or skip back and forth on the paper, there's no way to connect a voter with a vote after the fact. However, it IS impossible for software (closed source, open source, or polkadotted source) to change the "receipt" after the fact.

      I think thermal printers are under fifty bucks (probably well under) and I don't see why this couldn't be added to any voting system.

    6. Re:Open source? by isaac · · Score: 4, Insightful
      If someone is going to rig an election by tampering with electronic voting machines, they're also more than capable of forging the paper trail.

      I'm sorry, that's not insightful - it's total bollocks. Of course it's possible to tamper with paper ballots, but to do so on a large scale (e.g. large enough to affect statewide or national elections) would inevitably attract attention because one would need to gain access to, and modify or destroy, literally tons of paper.

      Electronic voting systems may be tampered with without any heavy lifting, by few people, and the only access problem is electronic, not physical - do you trust that the home or office PC of the supervisor of elections in your county is secure? Having done computer work for municipal governments in the past, I certainly do not.

      -Isaac

      --
      I am not a lawyer, and this is not legal advice. For Entertainment Purposes Only.
    7. Re:Open source? by GaelenBurns · · Score: 5, Insightful

      We all need to send copies of the internal Diebold memos to all of the mainstream news sources and our congressmen. If we just push for this, and educate our officials and the populace, this blight will be removed. All we need to do is, as a community, get off our asses and fight.

      I'm not one for playing the mindless patriotism card, but I really do feel that (for the Americans out there) it is our duty to do something about this.

    8. Re:Open source? by Blue+Stone · · Score: 4, Insightful

      Florida's debacle was not about hanging chads. It was about what went on behind the scenes[PDF!!] before anyone got to the voting booths.

      --
      Corporation, n. An ingenious device for obtaining individual profit without individual responsibility. - Ambrose Bierce
    9. Re:Open source? by cduffy · · Score: 3, Insightful

      This can only be done if the receipt the voter takes home can't be used to determine who they voted for -- otherwise vote-selling and related fraud is enabled.

      Now, if the receipt the voter takes home contains a *signature* of the data on receipt they dropped in the box (such that it can't be used to determine who they voted for but can be used to determine that their vote hasn't been tampered with), that's a different story.

      Personally, though, I think that's overkill -- putting a chain-signed receipt into a lockbox is Good Enough For Me.

      (chaining digital signatures, fyi, is a way to make it very hard to modify just one -- because the next receipt also happens to contain a signature of the previous one).

    10. Re:Open source? by CmdrTHAC0 · · Score: 3, Insightful

      And how do you know the compiler is trusted in the first place? I recall hearing a story once about Ken Thompson backdooring a compiler that would compile backdoored compilers and login programs from clean source...

      --
      __CmdrTHAC0__
      In Soviet Russia, Spanish Inquisition doesn't expect YOU!!
    11. Re:Open source? by poot_rootbeer · · Score: 4, Insightful

      The point here is that we eliminated or reduced the possibility of having holes in the software intended to be in the machine.

      Only if the binary that runs on the machine is compiled from the same copy of the source that you've analyzed just before you cast your vote. Oh, and you'll need to analyze the source code for the compiler that the voting machine's binaries is compiled on, to make sure that hasn't been compromised. And then you'll need to check the source of the program used to view the source code of the other programs...

    12. Re:Open source? by WuphonsReach · · Score: 3, Insightful

      The problem with giving a voter a receipt that they can leave with (or show to others) is that you've now enabled corruption.

      If the voter can show someone else proof of how they voted, 2 things can happen:

      - voter gets paid if they can show they voted for a particular line item
      - voter can be threatened to vote for a particular line item or have bad things happen

      --
      Wolde you bothe eate your cake, and have your cake?
  2. Enginnering ethics... by KD5YPT · · Score: 3, Insightful

    Now that's what I call engineering ethics, letting people know the truth about what you're doing. Fine, maybe a computer should at least keep the software code to themselves (patent it so no one else could use it, I do believe in some intellectual property rights), but Diebold should have at least let us see the code so we can tell them how holey it is.

    --
    In US, you can easily buy enough major firearms to wipe out your neighbourhood but a few little fireworks are banned.
  3. I'm not sure why the Diebold source isn't availabl by jaymz666 · · Score: 3, Insightful

    Isn't the voting system run by the state? Shouldn't the source code be available by the Freedom of Information Act or something?

  4. My goodness! by cK-Gunslinger · · Score: 4, Insightful

    "If a voting system precludes any notion of a meaningful recount, is cloaked in secrecy and controlled by individuals with conflicts of interest, why would anyone buy it?," Quinn said. "At the very least give citizens the right to choose whether they want to use paper ballots ... thus allowing each elector to be personally satisfied as to the integrity of the process in which they are participating."

    That just makes... sense.

  5. In other words. . . by Fritz+Benwalla · · Score: 3, Insightful

    The company responsible (namely Software Improvements) is clearly pushing to pick up a contract for machine development in the U.S., and saying All The Right Things (tm) to get it.

    Don't blame them really, Diebold left themselves wide open - should be easy pickins.

    ---

    --

    Believe me, I'm as surprised by my comment as you are.
  6. In the US the voters no longer own the democracy.. by ajm · · Score: 3, Insightful

    so his comments don't apply here. An electronic system in the US that statisfies the owners of the democracy in the US needs to staisfy the Republican party and its big money supporters. The Diebold system is perfect for this and hence is the choice in the US. Why bother how people vote when you can control how the votes are counted? So long as the difference between the opinion polls and exit polls and the official "results" aren't too large you can get away with stealing elections for as long as you want.

    --
    development.lombardi.com
  7. It's so true it's not even a troll by ianscot · · Score: 4, Insightful
    You'll get modded as a troll for that, maybe, but it's a shade of one step from the truth. Diebold's CEO being a big Republican donor who's sworn to "deliver" Ohio's electoral votes for Bush next year, that isn't the message I'm reading in the Mpls. Star Tribune. Here it reads like "Techies are concerned about sloppiness in voting systems" instead. That's just the first step in this story.

    Election Systems and Software, the other major electronic voting company, is also, coincidentally, run by a big Repub' contributor. Senator Chuck Hagel of Nebraska has a stake in that company. Can you imagine that? A sitting senator with financial interests in a company responsible for counting votes? Unbelievable.

    Sort of makes me think about how incredibly brazen Halliburton's role is in Iraq now. These people don't even attempt to maintain the illusion of impartiality. So, see, you're right -- this Australian company's ideas about the proper way to ensure confidence, they just don't apply. As long as our Repubs can fly under the radar, they don't care whether it's right or not.

    --
    "Fundamentalism" isn't about divine morality. It's about human authority.
  8. Open Source by Anonymous Coward · · Score: 4, Insightful

    Nobody says open source is better because it's open source. It has to be open source because is MUST be open source by principle.

    Get that in your damn head. Every citizen (who cares) should have the right to get a deep insight into how his vote is eletronically processed. If you're not allowed to know how your vote is processed you have no democrazy.

  9. Re:real democracy by stratjakt · · Score: 5, Insightful

    Think of the implications of a true democracy.

    Think of the masses voting on each and every topic.

    How much does your average citizen know about foreign policy? Health care? Criminal and civil law?

    A true democracy would be the worst form of government I could think of, unless you happen to have the exact same opinions as >50% of the population, you're fucked.

    Realize that around 70% of Americans are christian. Now, lets vote on whether or not to allow that mosque or synagogue (sp) to open its doors on the corner, or whether gays should be allowed to parade, etc..

    --
    I don't need no instructions to know how to rock!!!!
  10. Trouble is ... by Rudisaurus · · Score: 4, Insightful

    ... the fact that you can read "the" source code doesn't guarantee that's the version of the software -- or even the software itself -- actually being run on the machine. Is there some audit procedure for the compile/link/install process?

    --
    licet differant, aequabitur
  11. Re:e-voting is not secure by gladbach · · Score: 4, Insightful

    ... I dont think anyone thinks its a good idea that people can vote from anywhere other than a standard voting center, like schools and fire stations like you do now....

    --
    "Computer games don't affect kids; I mean if Pac-Man affected us as kids, we'd all be running around in darkened rooms,
  12. Obstacles to US adoption of SI system by quacking+duck · · Score: 5, Insightful

    Aside from the double-meaning of my title (e.g. SI = metric system, something the US is also adverse to adopting), I see a couple obstacles facing the Aussie company if they want to break into the US market.

    1) Imagine the outcry from Americans when they learn they're contracting a foreign company to handle their voting system. Oddly enough they won't have cared that Diebold's being all secretive and evasive about their own flaws while SI is open and honest and better suited to uphold the fair democratic system the US claims to cherish. To them I'd say ditch the NIH (not invented here) syndrome--if it works better than what you have, either make a competing product that's truly better or shut up about it.

    2) Diebold will use MS' tactics, calling SI's system "un-American". Again, double meaning, but this time I mean because it's open source.

    3) Watch Diebold play points 1 and 2 to the hilt, calling on its political ties to ensure SI never gets a foothold in the US. In so doing they pull a two-fer, by simultaneously kicking out a leg from under the democratic underpinnings of the US, as well as another leg from the "capitalist" system the US also claims to be, e.g. where companies compete based on the merits of the product and marketing, without political interference.

    Incidentally, the Australian system requires you by law to vote. Maybe that's something the US ought to consider importing too. Argue if you want about being free to NOT vote, but voting is a duty, not just a right, and you should be compelled to do it. Just like you are to report to training if you get drafted, or filing a tax return--you're not free to refuse either of those without legal consequences, right?

    What's sad about my writing this is that I have no influence in US politics, being a Canadian, but I seem to have more interest in your politics than the majority of voting Americans, who don't even bother to go to the polls.

  13. Why not pencil and paper? by cruachan · · Score: 3, Insightful

    Could someone explain to me why you can't just write an X on a bit of paper with a pencil, put it in a sealed box, and count up the totals at the end like we do here in the UK?

    I just don't see why you need to use any more technology. What is the point?

  14. Correct by IthnkImParanoid · · Score: 3, Insightful

    I'm not one for playing the mindless patriotism card, but I really do feel that (for the Americans out there) it is our duty to do something about this.

    Mindless patriots support the government, while real patriots support the people, and challenge the government to do what's right for everyone. The implementation Diebold has come up with is not good for any of us, and is not right.

    --
    It's nothing but crumpled porno and Ayn Rand.
  15. E-Voting is simply a bad idea by KojakBang · · Score: 3, Insightful
    The important thing in democracy is not the voting, it's the counting.

    Any technology introduced to improve the act of voting cannot make the act of counting less transparent or democracy suffers.

    It is apparent that Diebold's systems (not to mention Diebold's paranoia for secrecy) render the act of counting less accountable and less transparent. Ergo, democracy suffers.

    If used in a close election - where exit polling and other secondary measurements are unable to confirm the results of the counting - the wrong person might actually get elected President of the United States of America.

    With no sense of responsibility to the coutry at large, this illegitimate President might launch a series of Napoleonic wars to to compensate for his own feelings of inadequacy.

    I digress into fantasy... the little blue ones I washed down with all those adult beverages must be kicking in.

    --
    "There are two major products that come out of Berkeley: LSD and UNIX. We don't believe this to be a coincidence."
  16. Re:florida by WuphonsReach · · Score: 3, Insightful

    At least with a paper audit trail there can be physical evidence of vote disposal. A group in a room behind closed doors might manage to dispose of a handful, or even in an open-forum if they're good magicians.

    Disposing of hundreds / thousands / tends of thousands of paper votes is a bit trickier if you don't want to be discovered.

    Paper is good because we have centuries of experience in knowing how to secure a paper audit trail. Experience that probably shouldn't be thrown out (baby with the bathwater) just to implement some new cool digital voting technology.

    --
    Wolde you bothe eate your cake, and have your cake?
  17. Not just americans... by quinkin · · Score: 3, Insightful
    I would love to be able to say that America can sort out it's own voting troubles, but that is not a realistic analysis of current world politics.

    In australia (and the rest of the world) we are extremely sensitive to the american political decisions, especially those relating to foreign trade and policy.

    The concept of a closed source system, developed by people who openly pledge to "deliver votes to the president" (you don't need references, it's all over the /. front page), can covertly apply patches and allegedly have back-doors, seems pure insanity to me.

    Just my AU$0.02...

    Q.

    --
    Insert Signature Here