Slashdot Mirror
Pentagon Cancels Internet Voting System
Ben B writes "The Pentagon won't use an Internet voting system for overseas U.S. citizens this fall because of concerns about its security, an official said Thursday. The official, who requested anonymity, said Deputy Defense Secretary Paul Wolfowitz made the decision to scrap the system because Pentagon officials were not certain they could 'assure the legitimacy of votes that would be cast.' Computer security experts who last month reviewed the Secure Electronic Registration and Voting Experiment, or SERVE, had urged the Pentagon to scrap the system, saying it was too vulnerable."
I question the whole premise of using the internet in the voting process. The flaws are unsolvable because they are fundamental to the architecture of the internet. Using a voting system based upon the internet poses a serious and unacceptable risk for election fraud. It is simply not secure enough for something as serious as the election of a government official. The report recommends that the Serve project be shut down and nothing like it be tried until "both the internet and the world's home computer infrastructure have been fundamentally redesigned, or some other unforeseen security breakthroughs appear." With which I wholeheartedly agree
It's bad enough that the internet was going to be used to count votes outside the country. How much worse would it be with all those illegals voting online here inside the U.S. borders?
I have been pwned because my
If this 'internet' is so insecure , why are the big corps. trusting it to transfer billions of dollars around.
I must be missing something - this is technically feasible, they are just doing it the wrong way.
You can't expect to wield supreme executive power, just because some watery tart threw a sword at you
Couldn't they just require every voter to encrypt and sign their vote with a unique PGP key? Or are they assuming voters are too stupid to do this?
"Freedom means freedom for everybody" -- Dick Cheney
But my "Internet Vote Accelerator" spyware would've made me trillions richer!
I'm not a security expert, but voting on the internet strikes me as being about as secure as locking up your bicycle with twist-ties.
I'm glad they've dropped this idea.
You are in error. No-one is screaming. Thank you for your cooperation.
This more complete article has a quote that suggests this issue really isn't closed after all:
Wolfowitz's memo, written to David Chu, under secretary of defense for personnel and readiness, allows the Pentagon to continue work already in progress to look into "other technical applications for voting on the Internet or electronically," the defense official said.
"The door is still open to other methods. It's just that the SERVE we have decided not to use," he said.
Aren't you just the tiniest bit curious to see how cool a Sharpton presidency would be?
Just imagine all the quotes he'll leave for posterior.
I have been pwned because my
The projects home page states that it "will let eligible U.S. citizens vote from any Windows-based computer with Internet access" WHAT? Making it harder for linux users to vote? (and as a result having less of them represented) Supporting Microsoft?
I don't see how this got so far already.
Today I drop my ballot in the mailbox (I live in a mail-in ballot state) and just have to trust everything is on the up and up from there.
What I would like instead is to have every voter to get a receipt when they vote, that uniquely identifies their precinct and vote, and shows a unique number for that vote/voter combo. Something like:
Vote #: 54353654354 Precinct: 58 Voted for: Mickey Mouse (or whoever)
Then I'd like those all those numbers published somewhere after every election so that anybody can download it. Note that my vote is still anonymous, nobody knows who vote 54353654354 is because of the nature of one way functions.
Any voter could go look at the published list to see that their vote was counted correctly. If it was counted incorrectly (I.e. the count showed my vote to be for Dopey instead of Mickey Mouse), then I could step forward with my biometric data to prove it. If enough people step forward, the election was clearly bogus and needs to be redone.
Any voter could download the entire list and count the votes for themselves, at least minimizing the chances of large #s of votes appearing out of thin air in any particular precinct, and making counting of votes very clear and open to all to verify.
Is it foolproof? Nope, but it is a lot more transparent process than we have today, where I have no visibility whatsoever into my vote being counted, what the real totals where, etc.
well i never thought I would see this happen.
Considering all the snafu surrounding the Diebold screwups, I think it's a good thing that the pentagon is finally listening to common sense instead of possibly covering up another voting screwup.
I'm from florida and the whole previous presidential election never sat well with me because of the morons we have down in south florida and the fact that we never really knew the truth about the actual voting results.
Those who trade in their freedom for security, deserve neither.
SERVE another acronym brount to us by the people who concocted such obcenities as: US VISIT and US PATRIOT ACT. Who is this wonderful group you ask? why the Federal Acronym Reasearch Team (who mysteriously doesn't go by their acronym)
Sig (appended to the end of comments you post, 120 chars)
Internet voting presents far too many opportunities for hackers or even terrorists to interfere with fair and accurate voting, potentially in ways impossible to detect
Not just hackers/terrorists but I am sure some tech savvy candidate might even go the length and 'hire' someone to do it for him/her. That would give a whole new meaning to the term *booth capturing*.
I am glad Pentagon got it right before getting the system in place. Voting is not like the weather forecast. There is an 80% chance that we counted the votes right. No. We want to know the right tally. I can wait for the paper trail to be counted instead of electronic voting giving me the result instantly without 100% reliability.
Free XBox, PS2
If any computer can be used to vote, how are the ballots kept secret? If someone's vote is observed (and they might be pressured into this by husband/wife/friend etc...) I can easily see people avoiding voting for controversial canidates, or somebody who their friends oppose.
What the heck is with all Internet-this and internet-that. Why don't they just deploy closed LANs pre-configured with nothing more to configure that attaching cables and plugging them in.
There is little to be gained by it anyway. Apathetic and lethargic Americans will still come up with some excuse not to vote.
The money could better be spent berating these pinheads, or funding voter vans, or introducing legislation to take away privelliges from non-voters.
I think most of us feel that online CC transactions are usually safe, but we take the chance because most of the time we don't get burned (save eBay). Our CCs usually have a loss-limit protection of $50.00. My vote is more precious than $50.00.
Besides, if it was Internet-wired some politician would enact some crap legislation for last-minute pop-up adds that looked like OS dialog-boxes, thereby tricking hasty and myopic people into voting for the wrong candidate.
Stuff that matters.
Not everyone in the US government is a nimrod or a thief. There are plenty of shady goings on, but no over-arching nefarious conspiracies. Certainly, it looks bad when most electronic voting companies donate to Republicans, get contracts from same, and then leave holes in their software, but I think the conspiracy ends at graft and cronyism, not deliberate vote fraud. The companies donate to the Republicans knowing they will get lucrative contracts. The security issues are a seperate problem.
Electronic voting at polling places could be implemented securely, but it would be VERY difficult to make a secure voting system that meets all of our (US) requirements and runs over the Internet.
- None can love freedom heartily, but good men; the rest love not freedom, but license. -- John Milton
I'm from Sweden and the idea to let the armed forces have anything to do with overseeing voting seems both ridiculous and dangerous. Thats how it used to work in Spain, Portugal and Greece (not to mention eastern Europe) not so long ago.
...military intelligence is not an oxymoron!
To the making of books there is no end, so let's get started
Now if only we can get rid of the idea of spending taxpayer money domestically for fancy touch screens and computers, and return to good old foolproof (well, except maybe for the most foolish) making holes in paper or pulling a lever, we'll be all set, and maybe we can trust the voting system. Oh wait - you don't need to prove who you are when you register to vote. Never mind.
There are going to be more stories and issues related to Internet voting - here, in the US, and abroad, ranging from small club functions being voted on, through governmental matters from local - to - larger levels...
My concern is that any system be appropriately thought out, formally and precisely defined, using rigidly designed systems (not necessarily off-the-shelf), made to precisely and verifiably conduct voting tansactions, without being able to disclose, leak, or bleed any information that is not supposed to escape the system.
The Johns Hopkins study is an excellent reference and resource on the issues that have to be addressed.
I am personally interested in setting up a panel in New York in Mid-July (not much - just about an hour), but at an interesting venue. I am not offering funding, but there could be some visibility.
I would welcome hearing from anyone who is doing interesting work in this area - in the US or overseas, that would be interested in participating on such a panel, to include related topics on technology-and-democracy.
Sam Nitzberg
sam@iamsam.com
http://www.iamsam.com
How do banks manage with ATM cards and pin numbers?
Not secure?
Ever tried to hack into a bank?
I believe that the internet could be used to send the results from overseas military voting places. It would have to be encrypted and verifiable that no tapering took place, and there would be paper audit trail at the voting site that could be sent later. This would get the results in quicker.
I guess they will just have to go back to the old method of giving your absentee ballot to your local alderman.
Manipulate the moderator system! Mod someone as "overrated" today.
Internet voting system cancels YOU!
It's bad enough that the internet was going to be used to count votes outside the country. How much worse would it be with all those illegals voting online here inside the U.S. borders?
They do that already.
With motor-voter you can crank out as many registrations as you want. (There's an illegal immigrant on my street who brags about how he goes from precinct to precinct on election day and shows off his >20 registrations. His reaction to questions about whether this is right: "They don't care. If they cared they'd do something to check.")
Don't expect any respect for law from people who grew up in a country where the government is totally corrupt (let alone the subset that then broke OUR laws to even BE here, rather than going through proper channels.) It's not their fault they grew up in that environment. But now that their opinions are formed you'll need to do more than set an example, if you want to get their attention and change their behavior. And you're not going to do that while it's ILLEGAL to review their elegibility, or even check their ID.
(Now think about how the "drug war" and the 55 MPH speed limit have similarly affected the Boomer generation's respect for law and established institutions.)
Think it's hard? Think they do any checking? Heck. *I*ve been double-registered twice in the last few years. (Changed my party affiliation - which is done on the same form - and had my name typoed and the form misprocessed as a new registration. I STILL get double jury-duty notices from the last instance.)
To motor-voter add no-excuse absentee ballots. Now anyone can:
- pick up a stack of forms in any government office,
- crank out fake voters as fast as he can fill them out and drop them in a mailbox,
- file for absentee voting as fast as he can check a box on the registration notice postcards and drop THOSE in a mailbox, and
- never have to show his face at a polling place.
There was one address in Berkeley that had over 4,000 absentee ballots in a recent election. (Tried to claim that they were a mail drop for some street people. 4,000 of em? Yeah, right!)
Then there are the ballot boxes that are found floating in the San Francisco Bay when there's an election in San Francisco.
And cheating on mechanical and electronic vote-counting, without audit trails, is nothing new. You've all heard about Diebold's touchscreens. But the vote counting a few decades back was done on minicomputers, by proprietary software, where you could pause the program and tweak a register from the front panel switches (and election officials were sometimes seen to do that).
Even mechanical voting machines had opportunities for cheating: It was common to find little stickers in the bottom with "0000" on them - the trace of a voting scam. The wheels would be set to a non-zero value and covered with a sticker. Lock the machine, let the official certify it's zeroed, put it into service. One vote for the stickered candidates knocks the stickers off.
Internet voting isn't necessary for election corruption. It just simplifies automating it.
Bantam Dominique roosters crow a four-note song. Once you've heard it as "Happy BIRTHday" you can't NOT hear it that way
I already voted 96,000 times...for NOTHING?!?
the idea to let the armed forces have anything to do with overseeing voting seems both ridiculous and dangerous.
The Pentagon has an interest in this because these votes are the overseas ballots for the men and women of the U.S. Armed Forces. The Pentagon's job is to make sure there is a reasonable way for their people to get a say in the government back home. They are not involved in the vote tally itself. This is just the Pentagon saying that this method is not acceptable to them. A legitimate and sane response, given the known security risks.
-Tom
There is an analysis on the Unlimited Freedom blog of how Trusted Computing (aka TCPA/Palladium) could solve the problems with Internet voting. The idea is that the voting application could be protected from tampering from other software or the user himself. The secure I/O and sealed storage help as well. Once Trusted Computing technology is widespread then it may be time to take another look at voting on the net.
I'm sure many of you have seen this before, but in case you haven't, I like Cringely's take on how to fix the voting system. Then again, since I'm a Canadian, my opinion is not without bias. But it certainly is nice to know who your new Prime Minister is the same day the ballots were cast! And hardly a computer involved, imagine that...
Back in the day people were ignorant and there were far fewer voters to persuade in order to determing an election by a) buying votes or b) forcibly compelling them.
In the present day there are millions of voters and we have very good methods of criminal science and investigation to deter lawbreakers. (Now this may not be relevant to regional elections as the number of voters as well as imperative to dissuade criminal activities are lessened.)
SO if someone did want to buy off an election how much would they have to spend to get even 2% of the vote? The CIA factboook says there are a little over 290 million people in the USA, around 60% of whom are of voting age... minus inelligibles, lets say 45% just to be safe, that's a little over 130 million people, lets say that 10% actually vote.. 13 million. 2% of that is 260,000 people for a presidential election. I don't know anyone who'd sell their vote for $10 but just for the hell of it... that would cost 2.6 million dollars to buy 2% of current voters. Now if you brought in all the non-voting but elligibles... the chances are greater that more people would sell their votes but the percent of total voters would change accordingly, meaning that the more voters there are, the less an individual vote counts, so it would take even more money to buy 2%.
Granted that 2.6 million isn't a lot compared to how much the candidates or their parties spend already... but it is illegal, so they would have to somehow pay off that number of people for that large sum of money AND hide it all from the government, the people, the media, etc.
This assumes that people would be willing to commit fraud a federal crime for $10 and risk going to federal prison for any number of years (I don't know the penalties).
As far as extortion goes, extortion is a crime. How many lackeys are really willing to put pressure on people for this? Knowing that they personally can't possibly convince enough people to make a difference.
The question is... do we really need an anonymous vote in the present day? SO what if your friend give you a hard time, you probably already tell them who you voted for anyways and already suffer the ridicule or whatever. We have anti-descrimination laws already on the books that could be extended to cover this as far as your job or any other official relationship is concerned.
Why not have your vote tied to you? The biggest drawback I can see is that you'll open yourself up to election related spam and direct mail campaigns every 4 years.
I'd like to hear about other real concerns and why we still need anonmous voting. bring it.
A fool throws a stone into a well and a thousand sages can not remove it.
Interesting to see how much effort they make in getting overseas soldiers vote, who are much more likely to vote for Bush
Peace
It's all about whos responsible if it fails in some way. No one can come and take you away if you're in Australia let's say and you cheat on the American vote. You can't use the Internet to vote plain and simple because there is no liability to do so.
To have a succesfull electronic means of voting, you'd have to have some kind of Intranet. Then you'd be able to make legitimate accusations against people. My work can fire me for misusing the internet but what i do at home is pretty much the hell i want to be. It's pretty easy to track the blame to me at work but think about how you'd have to track people through the globe, it's impossible.
Internet voting is dead even before being born.
Trolls dont like to be Flamebait, because they burn so well. Protect our Troll heritage!
1) Constitutional amendment banning all taxes.
2) Fund all Govt programs via voting fees.
3) Each vote costs one dollar [serial number verification posted]
4) buy as many votes as you like, but only in your district.
Basically you vote for representatives to spend the money they have. Not the system now, where you vote for representatives to spend money they don't have and take from wherever they can.
I could be wrong, but I still think it would be hard to "buy" enough representatives to, say "drop all pollution laws" or whatever you think "rich evil corporations" would buy votes for. At the same time, I imagine it would greatly limit the "feature creep" of benefits that government has become. If "people" really want all this stuff why do I (and others who are net payers) feel so screwed at our (high) tax situation?
I could blather on... this is a ridculous idea, but logically, what is so wrong about the idea that those who are paying for govt programs shouldn't have a bit more say in what they will be?
The opposite point of view is that 6 guys in a dark alley "out vote" you when they say you need to pay "taxes" to support their next McDonald's run...
This issue is a bit more complicated than you think.
While the Pentagon claims it "won't use an Internet voting system for overseas U.S. citizens this fall because of concerns about its security", its more like they don't want US citizen's who haven't been brain-washed by the US media expressing their informed opinions in the voting both.
;-]
Who knows what someone who has been exposed to non-US media might think about any given topic? There's no way any right thinking politician would try to guess the voting habits of the well informed.
I presume that the pentagon was researching this to allow soldiers, DOD civilians, and contractors who are overseas to vote. All US soldiers, DOD Civilians, and DOD Contractors now have an ID card that contains a smart chip with a PKI key on it. You're telling me that the Pentagon could not come up with a secure, anonymous, yet auditable method of voting using that?? What a shame. I guess the DOD needs more geeks, or maybe just some geeks with real skills and not an MBA.
One fundamental flaw with Internet voting is that there is no way to verify that the voter does not have a gun held to his head while voting, or is subject to some other pressure.
Only by having the voter go in alone in a booth to vote out of sight of everyone else can that be assured.
After ruling readable punch card ballots illegal and ruling in favor of Blacks with Misdemeanor convictions can't vote in spite of what the election law and constitution say, the Judges announced today that "all your votes are belong to us" - presumably Dubya agreed.
...
Uh... I think my US Visa just got cancelled
NO CARRIER
- - - Non Caffeine Drink or Drink Error
I've begun a political party here in Australia:
www.neteffect.org.au
with the intent of using the internet to allow members to vote on policy formation etc.
I want to do this using open source software, whether we build it ourselves or not. Surely there exists a group of programmers out there who together can craft such a system?
I think it could be one of the most important examples of how open source benefits the greater good if we could pull it off, and the flow on effects could be enormous since it would be open for anyone to use across the globe. I'm more than willing to make our political party site the home of it if you are interested.
Come on Slashdot, if we as a group of geeks can't solve this problem, what hope is there that anyone else will?
You are welcome to post in our forum about such a system, and download our Constitution which lays out the rules we plan for online voting, so please have a look at what we're hoping to accomplish and see if it can indeed be done successfully.
Visceral Psyche Films
Well, the current administration can't even get electronic voting to work using custom hardware, let alone using a public infrastructure. The original post isn't as absurd as you say. He's not blaming the internet's lack of intrinsic security on the bush administration, just their lack of commitment to secure (or even truthful) voting.
You said:
With motor-voter you can crank out as many registrations as you want. (There's an illegal immigrant on my street who brags about how he goes from precinct to precinct on election day and shows off his >20 registrations. His reaction to questions about whether this is right: "They don't care. If they cared they'd do something to check.")
This sounds like some Rush Limbaugh FOAF. It doesn't make sense. An illegal immigrant got twenty licenses? From your state DMV? With 20 different addresses? Paid all the license fees 20 times? And each time he took the trouble to register to vote? Man, that's a guy who really wants to screw up the system!
Sorry, it just doesn't pass the BS test.