E-Voting Glitch: 19,000 Voters, 144,000 Votes

nick_davison writes "The Indianapolis Star is reporting the latest case of 'interesting' E-voting results. Tuesday's Boone County election, using MicroVote software returned 144,000 votes from 19,000 registered voters. After much panicking and tracking down the bug, the actual number of votes turned out as 5,352. With yet another mistake, does anyone still trust closed-source electronic voting?"

What is wrong with an "X"??

[Mantrid]

I remember at our last national election, the voting was simple - make an X on a ballot and put it in the voting box.

I have to wonder, with all these punch cards, evote, and other problems - why don't they just stick to plain old pen & paper ballots? I mean if you can't figure those out, chances are you'll end up just stuffing your ballot into the funny "circular" ballot box anyways!

Re:What is wrong with an "X"??

[EricWright]

Two reasons:

1) We don't want to have to pay someone to tally all the votes. If its not computerized, someone has to count them all up. When there's around 100 million votes for president, that's a lot of minimum wage hours right there!

2) The US has turned into a nation full of people with a) no patience and b) a very short attention span. We want what we want, and we want it now! And dammit, if other countries can have computerized voting systems, so should we.

My thought is that we should all vote on those bubble sheets that are used for every standardized test given throughout our public school system. Everyone who came through the public schools will be familiar with them, and those that didn't are most likely products of private schools/home schooling and thus smart enough to figure it out!

(Tongue only partially planted in cheek)...

Re:What is wrong with an "X"??

[gunga]

1) We don't want to have to pay someone to tally all the votes. If its not computerized, someone has to count them all up. When there's around 100 million votes for president, that's a lot of minimum wage hours right there!

Are you serious? Are the people who count the votes not volunteers in the US?

Re:What is wrong with an "X"??

[CaptainZapp]

1) We don't want to have to pay someone to tally all the votes. If its not computerized, someone has to count them all up. When there's around 100 million votes for president, that's a lot of minimum wage hours right there!

So you rather pay voting machine companies some 5'000$ per unit for a glorified Windows CE computer with an Access database that can be hacked by any pimply faced teenager with 100$ worth of computer equipment?

What a bargain

Re:What is wrong with an "X"??

[Detritus]

It doesn't scale to typical American ballots, which can include a huge number of races and questions. You have federal, state, county and city offices. Everything from the President to the dog catcher, plus judges, bond issues, constitutional amendments, referenda, school boards, etc.

Re:What is wrong with an "X"??

[Wudbaer]

Your objections are certainly justified; on the other hand Germany where I am living is doing all of its voting the traditionall pen-and-paper-ballot way, and we get first projections minutes after the voting closes, more and more reliable projections shortly after and very accurate (usually 0,x % to the official final results) inofficial final results the same evening (usually our voting booths close at 6 pm). The official results are available IIRC about 2-3 days after the vote.

The people staffing the voting booths and counting the votes are usually volunteers who get a small payment for their troubles. All in all our systems
seems to work quite well.

And even if Germany is far smaller than the US it has still a not too small voting population.

Re:What is wrong with an "X"??

I used to be a hard core political junky.

There is a extremely large amount of vote fraud going on now with the paper ballots, mostly for local elections. (nobody in the big parties talk about it because it would cause too much trouble)

One of the big ideas of computer voting is you remove the ability to add, replace or destroy ballots in the time gap between voting and being tallied.

Re:What is wrong with an "X"??

[hey!]

2) The US has turned into a nation full of people with a) no patience and b) a very short attention span. We want what we want, and we want it now! And dammit, if other countries can have computerized voting systems, so should we.

Not to rain on your cynicism parade, but quick tallying isn't just a form of political entertainment. The quicker the tally is done, the less opportunity for vote manipulation. In tightly contested elections, it reduces the problem of people forming immovable opinions about who won, and subsequently never accepting the legitimacy of the outcome (e.g. "Not My President").

Of course, speeding up the process of tallying at the expense of clear auditability is to cure the disease by killing the patient.

The answer, then, is optically scannable ballots: tallying as fast as any "voting machine" and auditability as good as any paper ballot.

Personally, if I were to design the system, it would look like this:

(1)Manually filled in ballot, optically scanned;
(2)Tallying machines running off of read only media, recording results to write-once media;
(3) Tallying media, original paper ballots securely stored for a period of several years;
(4)Voters could optionally tear off a bar coded tag from their ballot. They could then go to a specially set up election facility, present their tag and positive ID, then see how their vote was tallied on a secure, private terminal.

This last point will raise some paranoid objections; however I think paranoia cuts both ways in this instance.

Re:What is wrong with an "X"??

[JediTrainer]

When you're done voting, you give your ballot with sleeve to the attendant, and you watch (you have to watch, they make you stay) as it goes into something resembling a giant laser printer

Maybe it was just me, but I thought it looked more like a gigantic shredder.

Re:What is wrong with an "X"??

[AbbyNormal]

Sir I take particular offense to your statement

b) a very short attention span.

I am very well capable of keeping my attention fixated on a point that is well worth my....Hey! Another article on Microsoft doing something bad!

Re:What is wrong with an "X"??

[swdunlop]

Right. You simply do it by tweaking the database; much more efficient, and harder to trace with the opaque voting process provided by Diebold, MicroVote and others. One must admire progress, even when it simplifies fraud.

Re:What is wrong with an "X"??

[Washizu]

"(4)Voters could optionally tear off a bar coded tag from their ballot. They could then go to a specially set up election facility, present their tag and positive ID, then see how their vote was tallied on a secure, private terminal."

I don't agree with #4, because it allows someone to verify they voted a certain way. This would allow the mob or some other coercive organization to pay for your vote, you give them your slip, and then they check the result. Currently, it's pointless to try and influence voters this way since you can't proove you voted with the mob.

Blackadder

[Walterk]

Vincent Hanna: One voter; 16,472 votes. A slight anomaly...?

Edmund: Not really, Mr. Hanna -- you see, Baldrick may look like a monkey who's been put in a suit and then strategically shaved, but he is a brilliant politician. The number of votes I cast is simply a reflection of how firmly I believe in his policies.

True politics

Reminds me of Office Space...

[donnyspi]

"I probably just put a decimal point in the wrong spot. I always forget some mundane detail..." lol

check out BlackBoxVoting

[phooka.de]

Check out BlackBoxVoting. They even have the entire book for free as PDF. Very interesting read.

Personally I like the bit about vote-counting in France. Sounds a lot more advanced (read: secure) than the US way of doing it.

So ...

[cablepokerface]

Is this how Bush was elected?

Accounting

[lgeezer]

A lengthy collaboration between the county's information technology director and advisers from the MicroVote software producer ... showed just 5,352 ballots
So an IT director and a number of flunkies have rewritten the results of an election.
How do the good people of Boone County know that the new answer is correct? Because it's less than the number of actual voters? How can they trust the result of that election at all? And why should those too young to vote until next time bother to vote when next time comes around?

Actually, their software *IS* open source

[femto]

Here it is:

#include <stdlib.h>

int main()
{
printf( "%i\n", rand() );

return(0);
}

Don't Worry, Be Happy

[Detritus]

The new Indianapolis Mayor, Richard Daley Jr., said there is nothing to be concerned about. Indiana Governor Martha Daley called to congratulate him on his victory.

Do we also have close source laws? I think not

[dyfet]

When software is used to impliment a matter of law, the public must have an absolute right and need to review such software, even before one speaks of issues of software freedom. We don't make closed source or "secret" laws in this country, ie, laws that effect the public in general, and that the public is not permitted to know or examine, but yet will be held accountable to. We don't have anonymous or secret agencies enforcing laws and arresting people, ie, a secret police force. Yet, for reasons I cannot fathom, we now permit machinary with no public means of review to impliment laws, such as voting. No democracy can exist where voting is a secret or unaccountable process to the public that participates in it.

Closed source?

[Mr_Silver]

With yet another mistake, does anyone still trust closed-source electronic voting?

Sod that.

With yet another mistake, does anyone trust electronic voting full stop?

(I think that Open Source might be better, but to the majority of voters, electronic voting is the same thing irrespective of how visible the code is - and quite frankly, even with peer review on open coude this sort of bug might still happen)

Ok....

[cybermace5]

So 19,000 voters produced 144,000 votes. That's obviously an error, and was caught and corrected. What you really need to worry about are the little errors; if the votes are off by 500 or 1000 how are you going to know?

At least it wasn't 250 extra votes...

[mev]

Having an extra 100,000+ votes clearly stands out as an error. I would have been more concerned if it was a small enough number not to be detected, but a big enough number to affect close races.

This sucks

[Ripplet]

I mean really, how difficult can this be. Lots of people vote, you add up the totals, we're not talking rocket science here. When was the last time your local ATM machine gave you $1500 instead of the $50 that you asked for. Doesn't happen too often right? Maybe it's because the banks are damned sure they're not going to give their money away. It's a pity the people in charge don't take democracy that seriously.

Found the bug

[AVee]

The Amount_paid variable was used where it should have been Vote_Count...

Re:Let's just hope...

[LordBodak]

Yeah, the IT director and the software provider "fixing" the problem is a little bit disconcerting.

Open Source isn't a cure all

[m00nun1t]

"With yet another mistake, does anyone still trust closed-source electronic voting?"

This infers that open source == no mistakes. That's simply not true. It just means that there *may* be less mistakes as theoretically more people look at it. Think SendMail... that's open source, widely used, but that sure has had plenty of "mistakes".

Re:Open Source isn't a cure all

[vidarh]

No, it infers that with open source anyone who wants to CAN look at it. The number of errors in and in itself is irellevant in the case of a voting application: If there are serious errors, a new election can be held. But with a closed source voting application it is very hard for people who are suspicious about a result independently review the process.

When the results are blatantly wrong, like in this case, we can be sure that an error will be detected and corrected. However what security do we have that the "corrected" number is truly correct? And what if the result had just been skewed a few percent instead of blown out of all proportion?

Your argument is like saying that public access to government documents is inferring that public access == no mistakes. As with oversight of voting, access to public documents are important not because we're guaranteed that it will result in fewer mistakes being made, but because more people, including those not in power, are given opportunities to try to verify that people stick to the rules should they choose to.

Open source cures cancer! Film at 11!

[Call+Me+Black+Cloud]

Ok, not really.

With yet another mistake, does anyone still trust closed-source electronic voting?

Open source, closed source, it does not matter. Open source is not a cure for solid software development practices, and open source is not a synonym for solid software development practices. Likewise "closed-source" does not equate to poor practices.

One of the strengths of open source is the price. Free software probably means more people are using it than would otherwise, so the software is being tested more, and the pool of people available to fix bugs is also larger. This works for software that is generally useful, but consider voting software. Who is going to install the full voting suite (voting software is much more than a voting terminal) and then hold mock elections in their home? Granted, the importance of such software may bring out more people willing to try the software but you are still relying on people to do this in their leisure time.

The "many eyes" argument is merely a shotgun approach to quality control. What is needed is strong leadership implemeting a plan which includes rigorous and ongoing testing. Open source does not guarantee this any more than closed source guarantees its absence.

The software was released before it was ready. That's obvious. It seems to me that a closed source shop would be theoretically better positioned to meet an immutable deadline (such as an election date). At least when you own your employees you can mandate overtime and crack the whip harder. When the software is open source you cannot enter "crunch mode" and make the scattered developers put in long hours.

The fault was not in the development model but in the failure of the project leadership.

Glitch = pathetic euphemism

[handy_vandal]

E-Voting Glitch: 19,000 Voters, 144,000 Votes

I hate the word "glitch", I really do.

It's an evasion, a pathetic euphemism.

What it really means is "bad programming", "fucked up", "profoundly fucked up", etc.

-kgj

Over complicated

[PurpleWizard]

How difficult is it to write a system that takes a input selection, submits it to the count and resets ready to take the next vote?

What is the ridiculuous complexity making these things so easy to fcuk up?

Combine it perhaps with a bar code scanner so that every individual can have a street bar code. Add a few simple checks like no more bar codes are counted for a paricular street than were issued.

I still don't see where this becomes a complex task compared to existing systems. Most of the components needed to build a system already existing.

Some one please tell me what I am missing.

As for the open source/free software issue. Perhaps the solution is that the requirements for the system should be published so that anyone can right something to conform. (Oh that's like having open standards).

Don't trust any of it

[gr8_phk]

"With yet another mistake, does anyone still trust closed-source electronic voting?".

Get off the open/closed source debate already. If you use electronic voting, you open the door to electronic voting fraud. Open source is helpful in this regard, but not as effective as keeping to paper voting. Think about it. You can pay people to commit fraud anyway, but the cost goes up with number of votes altered/subtituted/whatever. With electronic voting, one guy can automate the fraud process with much greater effect. You raise the efficiency of the fraud as well as the voting.

People will argue the supposed cost and efficiency advantages of e-voting. Think about the cost of counting YOUR ONE VOTE and compare that to what YOU PAY IN TAXES each year - then tell me it's expensive. It's been working fine for over 200 years, there is little to gain from changing and everything to lose.

Put down the OSS Kool-Aid for a second, people...

[Chris+Burke]

There's a point to be made here.

The fact of the matter is that open source software will do very little to help the issue of the untrustworthiness of electronic voting.

Simply put, being able to read the source code does you no good if you can't be sure that the binary that the voting machine is running was compiled from that code.

With a Linux distro, if I for some reason suspect Red Hat may be compiling back doors into xdm or login, I can go somewhere else. If I don't trust anybody, I can compile the damn thing myself and put it on my computer.

These machines, open source or not, are going to be provided by a company like Diebold. Do you trust them, even if they have to give you a copy of some source code which may or may not be the source code that they used in their voting machines? Are you going to be able to browse the source code on the very voting machine you're using? Are you going to be given the compiler flags used to create the binary so you can re-create it yourself, and access to the voting machine's disk so you can compare them?

It is necessary that any electronic voting system be open source, as a matter of duty to the public. It is not, however, sufficient.

As an Indiana voter...

[Yekrats]

I'm an Indiana voter, and the most recent elections in my county (Tippecanoe County, encompassing Purdue University) were a complete disaster. Yes, we can thank our good pal Diebold.

I went to vote at 7:00 am after the polls had been open for an hour and was turned away because of "computer problems." Apparently one of the "pick X candidates for city council" votes was not allowing a voter to pick multiple candidates. Our election board had to print up paper ballots at the last minute, delaying the opening of the polls for about two hours. When I finally got a chance to vote, it was the good-old-fashioned way: checking off candidates pen and paper, and counted by hand.

Okay, shame on us for not having a backup in place in case the computer screwed up. But the computer shouldn't have screwed up in the first place. Testing, people?

Elsewhere in our county, first the machine neglected to tally absentee ballots in a very close race. Then it was discovered that one of the voting stations put the wrong candidates on the ballot, which may lead to a special run-off election.
http://www.lafayettejc.com/news20031111/20031111 1l ocal_news1068529632.shtml