Slashdot Mirror


Chimp Can Hack Diebold Electronic Voting System

rbuysse writes "A million monkeys can write Shakespeare, but it only takes one to mess up an election. Scoop here." Blackboxvoting is behind this demonstration; there's also a lengthy thread on the Bugtraq mailing list.

2 of 402 comments (clear)

  1. What I don't understand is why... by MarcoAtWork · · Score: 5, Interesting

    rather than going 'all electronic' there are not more efforts to have a hybrid paper-computer model, off the top of my head:

    - the voter comes to the poll, is identified and is given a paper token with a barcode that contains the polling ID station ID and a sequential number (note that the ID is not humanly readable, important for privacy)

    - the voter goes in the box, which has a touch screen and an 'easy' UI, voter inserts the paper token in the box which scans it

    - voter votes on the touch screen (make it really easy, BIG buttons, BIG text, whatever)

    - machine prints out a ballot with the voter's vote in humanly readable form (say, prints out a 'real' ballot with blackened out rectangles on the relevant candidate(s)) and a 2D barcode at the bottom with the vote in machine readable form including the ID on the 'paper token'

    - voter looks at the ballot to make sure it's ok, folds it, comes out, puts the ballot in one box and the paper token in the other. If the ballot is not ok there is a shredder right there inside the poll station and the voter votes again.

    ========= election over ===========

    the paper token are shipped to the central office, scanned (should be very fast via the 2d barcodes) and votes tabulated accordingly; for an additional level of security you can always count the votes via the 'human readable' part of the ballot before shipping them.

    If a recount or anything is necessary there are several safeguards with this system:

    - you can't have ballot box stuffing, because 1 'token' = 1 vote and if those ID are generated 'well' you could even double check that all IDs make sense, sort of like a 'there are only so many valid serial numbers' there. Multiple votes with the same 'ID' will be discarded.

    - you can't have doubts on the voter intent, they'll vote on the screen *AND* look at the paper copy before putting it in the ballot box later on

    - if there is really no trust in the computers no problem, you can just look at the 'human readable' portion of the ballot as many times as you want: no nonsense about hanging chads or anything.

    this (or something like it) would cover all the bases in terms of fast results (via scanning ballots, ship them all to a central location and do it), paper trail and so on. I really can't understand who in their right mind would consider putting the fate of the election in the hands of MS Access, for crying out loud!

    --
    -- the cake is a lie
  2. Re:No kiddin' - FOR REAL... by neil.pearce · · Score: 5, Interesting

    A million monkeys can write Shakespeare...

    Perhaps you'd like to visit The Monkey Shakespeare Simulator, which randomly attempts to duplicate Shakespeare's work (don't worry about legal aspects, you can generally assume it's out of copyright).

    The current record is 20 letters from "Coriolanus" after 462,060,000,000 billion billion monkey-years. Sent in by Jens Ulrik Jacobsen from Denmark on 31 Aug 2004.
    "1. Citizen. Before w ZgJ 8GPxwFnwvG&iX4tKfo("2ny!3Pp..."
    matched
    "1. Citizen. Before w e proceed any further, heare me speake All. Speake, speake 1.Cit. You are all resolu'd rather to dy then to famish? All. Resolu'd, resolu'd..."