Open Source Program Reveals Diebold Bug

← Back to Stories (view on slashdot.org)

Open Source Program Reveals Diebold Bug

Posted by timothy on Sunday December 14, 2008 @12:23AM from the rabble-rousin'-ne'er-do-well dept.

Mitch Trachtenberg writes "Ballot Browser, an open source Python program developed by Mitch Trachtenberg (yours truly) as part of the all-volunteer Humboldt County Election Transparency Project, was instrumental in revealing that Diebold counting software had dropped 197 ballots from Humboldt County, California's official election results. Despite a top-to-bottom review by the California Secretary of State's office, it appears that Diebold had not informed that office of the four-year-old bug. The Transparency Project has sites at humetp.org and http://www.humtp.com." Trachtenberg also points to his blog for the Transparency Project, and his own essay about the discovery and the process that led to it.

21 of 175 comments (clear)

Min score:

Reason:

Sort:

First Post by Anonymous Coward · 2008-12-14 00:27 · Score: 5, Funny

Hey, Trachtenberg do you have a sister? And was she somehow the key to all of this?
Is Hanlon's Razor sharp enough to cut this? by sapphire+wyvern · 2008-12-14 00:41 · Score: 5, Interesting

It's usually correct to not blame on malice what can be explained by incompetence. But I do find it hard to understand how a seemingly-simple requirement (essentially, count the number of times a button has been pressed) can be so badly botched by a company whose other "secure terminal" products (eg, ATMs) seem trustworthy and reliable, without the implication of a sinister motive.
1. Re:Is Hanlon's Razor sharp enough to cut this? by shaitand · 2008-12-14 00:51 · Score: 5, Insightful
  
  Someone with 30 minutes of quickbasic experience can write an application that accurately counts button presses.
  The fact that we are being asked to swallow this is disgusting.
2. Re:Is Hanlon's Razor sharp enough to cut this? by eebra82 · 2008-12-14 01:14 · Score: 4, Insightful
  
  It's usually correct to not blame on malice what can be explained by incompetence. But I do find it hard to understand how a seemingly-simple requirement (essentially, count the number of times a button has been pressed) can be so badly botched by a company whose other "secure terminal" products (eg, ATMs) seem trustworthy and reliable, without the implication of a sinister motive.
  That's because money is heavily monitored and tracked wherever it goes. Votes are registered and received, but not monitored and traced on two ends.
  
  --
  Full Tilt
3. Re:Is Hanlon's Razor sharp enough to cut this? by Anonymous Coward · 2008-12-14 01:24 · Score: 5, Insightful
  
  Don't be a retard. No one with 30 minutes of Quickbasic experience can write an application scanning paper ballots and perform optical recognition on them with any degree of accuracy.
4. Re:Is Hanlon's Razor sharp enough to cut this? by theaveng · 2008-12-14 01:24 · Score: 4, Informative
  
  If you read the article, they were Not pressing buttons. This was a paper-and-pen method followed by a scanning machine. The scanning machine was dropping ballots for some unknown reason.
  
  --
  FOX NEWS.com should be BANNED from television and internet. Have the Congress take it over and give us Truespeak.
5. Re:Is Hanlon's Razor sharp enough to cut this? by nabsltd · 2008-12-14 01:39 · Score: 4, Informative
  
  The point is that the machine failed at identifying the ballots, not just identifying votes.
  I can see that optical scanning might have issues, but then the counting machine needs to spit out the "bad" ballot into a different pile so that it can be manually checked. The machine failed to do this.
6. Re:Is Hanlon's Razor sharp enough to cut this? by Elder+Lane+Hour · 2008-12-14 02:46 · Score: 4, Interesting
  
  The fact that we are being asked to swallow this is disgusting.
  The fact that we're being asked to swallow electronic voting is disgusting. Some things electronics simply don't do well, and one such thing is accountability. We should be demanding accountability. Not just in angry letters to congress-critters, but outside voting booths, to the people who mindlessly register their vote, without any real clue if their vote will count or not.
7. Re:Is Hanlon's Razor sharp enough to cut this? by the+eric+conspiracy · 2008-12-14 02:57 · Score: 4, Informative
  
  The fact that we are being asked to swallow this is disgusting.
  Thats what my ex used to say.
8. Re:Is Hanlon's Razor sharp enough to cut this? by SleepingWaterBear · 2008-12-14 03:08 · Score: 5, Insightful
  
  This is a bit of an overreaction. There's no reason that a properly designed electronic voting system can't achieve greater speed and accuracy while producing a paper trail which allows full accountability. Just have the machine produce a printout which the individual voter can verify, then in case of doubt you can always resort to a manual count. Ultimately electronic voting systems should save time and increase accuracy, and we're going to switch to them.
  The problem here is that the politicians have no idea what a properly designed electronic voting system looks like, and so they just leave it all up to Diebold and the like, who have no real incentive to do things right. What we really need here is a detailed set of specifications for how voting machines ought to perform, and laws that prevent machines which don't meet those specifications from being used in an election.
9. Re:Is Hanlon's Razor sharp enough to cut this? by db32 · 2008-12-14 04:52 · Score: 4, Insightful
  
  Your right. They would say "that's a fucking stupid idea to scan ballots and use OCR to read them and then just rely on the machine when it promises that it got the answer right, at the very least we should be counting button presses".
  
  Do you hold your ATM pin number up to the screen waiting for it to be scanned or do you punch the buttons...
  
  --
  The only change I can believe in is what I find in my couch cushions.
10. Re:Is Hanlon's Razor sharp enough to cut this? by scribblej · 2008-12-14 05:36 · Score: 4, Insightful
  
  I program banking systems for a living.
  It's cute that you think "electronics simply don't do [...] accountability." Believe me, I'd be out a job real fast if they didn't.
  The bottom line is, this was handled really, really poorly.
11. Re:Is Hanlon's Razor sharp enough to cut this? by whoever57 · 2008-12-14 05:43 · Score: 4, Informative
  
  The point is that the machine failed at identifying the ballots, not just identifying votes.
  Not true. The machine counted the ballots and then later, the software deleted them along with any record that they ever existed.
  
  --
  The real "Libtards" are the Libertarians!
12. Re:Is Hanlon's Razor sharp enough to cut this? by mrmeval · 2008-12-14 06:12 · Score: 4, Insightful
  
  That's shit. I'll take the ballot I handle and allow it to be scanned. If the count is suspect then the ballots exist outside of some computer generated fantasy and real humans can count them.
  
  --
  I'd go on a Vegan diet but the delivery time from Vega is too long. --brownkitty
13. Re:Is Hanlon's Razor sharp enough to cut this? by SleepingWaterBear · 2008-12-14 07:50 · Score: 4, Interesting
  
  That's shit. I'll take the ballot I handle and allow it to be scanned. If the count is suspect then the ballots exist outside of some computer generated fantasy and real humans can count them.
  Well, that's why you have a printout which the voter verifies and essentially acts as your 'ballot'. Then you make sure that in the case of any remotely reasonable doubt you do a hand recount. I know I'm repeating myself, but your response suggests I wasn't clear enough.
DIEBOLD: We vote so you don't have to ... by Rockin'Robert · 2008-12-14 00:51 · Score: 5, Insightful

Stalin told us: "It's not who votes. It's who counts the votes," but we NEVER listen to anybody - huh? (Not that I am a fan.)
One area where open source will definitely win by Raleel · 2008-12-14 00:57 · Score: 5, Interesting

In testing. You need to be able to verify the testing mechanism. Open Source will win there because of the ability to view and modify the code. Just verify that you are testing with the same stuff that you reviewed.

--
-- Who is the bigger fool? The fool or the fool who follows him? --
1. Re:One area where open source will definitely win by Hal_Porter · 2008-12-14 01:02 · Score: 5, Funny
  
  In testing. You need to be able to verify the testing mechanism. Open Source will win there because of the ability to view and modify the code. Just verify that you are testing with the same stuff that you reviewed.
  Live Free or Diebold!
  
  --
  echo -e 'global _start\n _start:\n mov eax, 2\n int 80h\n jmp _start' > a.asm; nasm a.asm -f elf; ld a.o -o a;
Comment removed by account_deleted · 2008-12-14 01:28 · Score: 4, Informative

Comment removed based on user account deletion
you are talking rubbish .. by rs232 · 2008-12-14 04:43 · Score: 4, Insightful

"There are a few differences between ATMs and voting machines. First of all, ATMs are used daily, and if there was a bug in an ATM, it would be caught very quickly. Second of all, ATMs can be reflashed using the same connection that they use to contact the bank"

Firstly, voting machines should be subject to a full stress test before being deployed in a live election. Secondly ATMs can not be remotely 'reflashed', To upgrade required the replacement of the ATM module and the use of an external hand-held unit (plugged into the ATM) and the presence of two bank officials and the use of two unique PINS.

--
davecb5620@gmail.com
Are you sure your vote counted? by whoever57 · 2008-12-14 05:54 · Score: 4, Interesting

Mine too. After the OCR machine acknowledged my ballot was readable, they gave me a sticker that said "I voted".
It may well have been readable, but the first articles I saw on this make it clear that being readable is not a guarantee of your vote actually being included in the result.

The first articles make it clear that votes were counted and then, in some circumstances, From that article:

The ballots even showed up in preliminary tallies counted on election night on November 4 and in a report printed out on November 23. But some time after this point, the tabulation software inexplicably deleted the ballots without election officials ever knowing.

Still sure your vote counted?

--
The real "Libtards" are the Libertarians!