Diebold Admits Flaw In Voting Software

NewYorkCountryLawyer writes "At a public hearing in California, Diebold's western region manager has admitted that the audit log system on current versions of Premier Election Solutions' (formerly Diebold's) electronic voting and tabulating systems — used in some 34 states across the nation — fails to record the wholesale deletion of ballots, even when ballots are deleted on the same day as an election. An election system's audit logs are meant to record all activity during the system's actual counting of ballots, so that later examiners may determine, with certainty, whether any fraudulent or mistaken activity had occurred during the count. Diebold's software fails to do that, as has recently been discovered by Election Integrity advocates in Humboldt County, CA, and then confirmed by the CA Secretary of State. The flaws, built into the system for more than a decade, are in serious violation of federal voting system certification standards."

and who's going to CARE?

[v1]

The flaws, built into the system for more than a decade, are in serious violation of federal voting system certification standards.

Sure, you and I care, but who's the them that's going to DO anything?

Besides the obvious "toss them out on their arse", I'd like to see them heavily fined. And I mean like "we want a refund"

Re:and who's going to CARE?

[Moblaster]

The "them" will "do" what they can to steal an election here and there. And no refunds shall be due to you -- since of course you didn't get a receipt now, did ya?

Re:and who's going to CARE?

[iminplaya]

And I mean like "we want a refund"

Yeah! I want my eight years back!

Nader 2000

Re:and who's going to CARE?

[BSAtHome]

"we want a refund"

But the problem is that they probably have a EULA which excludes any damages in whatever form whatsoever (limited warranty). This would then require the invalidation of that clause, which then could be a devastating result for the software business as a whole. No software company wants to pay for any damage ever...

Re:and who's going to CARE?

[afidel]

Well at least here in Cuyahoga County, Ohio we threw out the massively expensive and even more massively flawed Diebold systems and went with proven, reliable optical scan machines. I haven't heard anything about the board of elections trying to recoup some of the millions we spent on those things but I agree that they definitely should have sought compensation.

Re:and who's going to CARE?

I want my eight years and 3 months back.

Browne 2000
Badnarik 2004
Baldwin 2008

Re:and who's going to CARE?

[pjt33]

It's a shame your constitution defines treason so narrowly.

Re:and who's going to CARE?

[ocularDeathRay]

Sure, you and I care, but who's the them that's going to DO anything?

I know, lets take a vote!....

ok, ok, everyone who wants to vote, open internet explorer and make sure that little padlock looking thing is showing...

Re:and who's going to CARE?

[HTH+NE1]

There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.

And if your goal is the opposite, what is the order in which one removes these boxes from use?

Re:and who's going to CARE?

Sure, you and I care, but who's the them that's going to DO anything?

The metagovernment. Governance through open source. And no voting machines at all.

Re:and who's going to CARE?

[jo42]

Declare all elections held using Diebold equipment null and void. See what happens then.

Re:and who's going to CARE?

Bush wins the popular vote in 2000?

Re:and who's going to CARE?

[RudeIota]

While probably true, I would like to believe that this is more of some company not playing by government regulations than the government not playing by some company's rules.

Re:and who's going to CARE?

there is consumer software and there is software for critical applications like
1. medical equipment
2. power plants
3. space missions
4. defense operations

which require very high standards. and even if they cost 10 times as much, you just can't use lower grade replacement there.

Re:and who's going to CARE?

[broken_chaos]

I have thirty miles of paper and a thousand pens. Lets do this thing.

Re:and who's going to CARE?

[WNight]

Soap, ammo, jury, and leave ballot because it doesn't change anything anyways.

Re:and who's going to CARE?

[drinkypoo]

Well at least here in Cuyahoga County, Ohio we threw out the massively expensive and even more massively flawed Diebold systems and went with proven, reliable optical scan machines.

In Florida they were switching optical scan machines to "silently ignore" mismarked ballots in contested locations, e.g. predominantly black precincts, and to "reject" mismarked ballots in precincts which could be counted on to come in Republican. I don't know if you've got the same kind, but that technology can be used against you as well.

Re:and who's going to CARE?

[iminplaya]

No it isn't, believe me. This is bullshit. We walked into this on our own, staring right at it, refusing to see because it might jeopardize their favorite lizard's chances. Now, after doing nothing about it, the "victims" want revenge. Diebold, or whatever they call themselves, should lose their corporate charter, and the offenders fined from their personal accounts, and possibly future profits garnished also. Sweet and simple

Re:and who's going to CARE?

Wait, you mean Obama isn't our real president?

Re:and who's going to CARE?

[c41rn]

I don't know if you were going for sarcasm or missed it in the article, but the machines in question (the flawed machines in Humboldt County) ARE optical scan machines. They are made by Diebold and they have software flaws that cause errors in how the votes are tabulated. For example, their software was in some cases dropping the entire first batch of scanned ballots (batch 0).

However, it is precisely because they are optical scan ballots - with a paper trail - that led to the flaw being found. Mitch Trachtenberg, a volunteer AFAIK, was able to scan all of the ballots post-election and tabulate them using his own open-source software. The discrepancy between his results and the official results is what led to the discovery of the flaw in Diebold's software.

I'm glad that they were using optical-scan ballots and that they saved the paper copies (and made them accessible), but it's still vulnerable to software flaws, "errors", etc., even if it is optical scan.

Re:and who's going to CARE?

[Joce640k]

Refund or not, the Diebold saga is now five or six years beyond being funny. They should have lost whatever contract they have *years* ago.

Re:and who's going to CARE?

[TapeCutter]

Yes, use a machine print the ballots, use people to count them.

Re:and who's going to CARE?

[Jah-Wren+Ryel]

But the problem is that they probably have a EULA which excludes any damages in whatever form whatsoever (limited warranty). This would then require the invalidation of that clause, which then could be a devastating result for the software business as a whole. No software company wants to pay for any damage ever...

I don't know about Diebold specificaly, but the licenses I've seen, including those from MS, usually specify that the maximum liability is the cost of the product, in other words, "a full refund" but no more.

Re:and who's going to CARE?

[Jah-Wren+Ryel]

Mitch Trachtenberg, a volunteer AFAIK, was able to scan all of the ballots post-election and tabulate them using his own open-source software. The discrepancy between his results and the official results is what led to the discovery of the flaw in Diebold's software.

Whether Diebold is a villian here or not is clearly debateable. But the hero is Mitch and anyone working with him to independently verify the results. In this case, he is the check in checks and balances.

Re:and who's going to CARE?

[gd2shoe]

"contracts"

There fixed that for ya. This distinction makes it all the less funny. it's not just a single idiotic/corrupt bureaucracy that has bought into this, it's a great many of them.

Re:and who's going to CARE?

I think they'll still get away with it, but they ought not. This isn't a "failure" or a "mistake", this is "fraud". That's outside the scope of mere civil law and crosses the threshold into criminal law.

Re:and who's going to CARE?

[WalksOnDirt]

Whether Diebold is a villain here or not is clearly debatable.

If we're going to debate, I want you to take the 'Diebold is not a villain' side.

Re:and who's going to CARE?

[relguj9]

They're not.

Re:and who's going to CARE?

Yep, Bush getting elected didn't change a thing.

Re:and who's going to CARE?

[relguj9]

Did anyone here actually RTFA without going off on a rampage?

In this case a "clear" button appears to have been REQUESTED by the customer for testing purposes and was removed in a later version of the software when someone making the systems realized the ramifications, the offending users just didn't upgrade their damn software. I mean, everything I read seems to indicate that they are trying their asses off to make it work right and for the most part succeeding. There's just so much momentum against them since many people still want someone to blame for Bush, and the makers of the new voting machines are a prime target. I believe it doesn't even matter what company it is that makes the new electronic voting machines, they'll still be vilified. Guess what kids... Florida wasn't using electronic voting and they still fucked up. This has nothing to do with Diebold or electronic voting.

From TFA:

The "clear" button was removed from a later version of the GEMS software, but Finley said three counties in California still used the 1.18.19 version containing the button, as do jurisdictions in Texas and Florida.

Bales explained that the "clear" button was installed in the software to aid a few counties that used the GEMS database as a template "for creating subsequent elections." The clear button was included to allow them to erase a log after copying the template.

"With the benefit of hindsight, we saw that as definitely not the best avenue to do," he said. "It was in there with no malicious intent."

Bowen's office is evaluating whether it will de-certify GEMS version 1.18.19. Bales said Premier/Diebold fully supported de-certifying this version in California. He did not address whether his company would make the same recommendation to other states using the software.

I swear, people just want something to hate, you need a villain. And you can easily fashion one by skimming articles and taking quotes out of context. Lets all fuck over, hate and hang an American company (that PRODUCES) surviving through the recession, without bailout money, in one of the top declining cities in the nation.

Re:and who's going to CARE?

[relguj9]

And let me stress this quote:

Bowen's office is evaluating whether it will de-certify GEMS version 1.18.19. Bales said Premier/Diebold fully supported de-certifying this version in California.

Re:and who's going to CARE?

[Foobar+of+Borg]

Well at least here in Cuyahoga County, Ohio we threw out the massively expensive and even more massively flawed Diebold systems and went with proven, reliable optical scan machines

They did the same thing in Virginia, and I imagine in many other states. At the voting places in Virginia, you would vote on paper in a booth, but they still had the old Diebold machines staged and unused in a separate area. I guess they had to settle for that since they couldn't have the Diebold CEO stocked so random passers-by could pelt him with fruit and excoriate themselves upon him.

Re:and who's going to CARE?

[Dutchmaan]

There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.

And if your goal is the opposite, what is the order in which one removes these boxes from use?

I think our corporations/government are doing a fine job of just removing them all about the same time.

Re:and who's going to CARE?

[Yvanhoe]

That, and the people who tested and certified the machines were usable in an election.

Re:and who's going to CARE?

[Haeleth]

There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.

And if your goal is the opposite, what is the order in which one removes these boxes from use?

One doesn't.

There's no need to remove the soap box. It's easier just to force your opponents to take even more extreme positions against you, so that people just stop taking them seriously.

There's no need to remove the ballot box. Half the country would still vote for your party even if its leader publicly killed a kitten at every campaign appearance, and the other half would still vote against you even if you were running against Hitler.

There's no need to remove the jury box. You just need to make sure you select the right juries.

And there's no need to remove the ammo box. A bunch of ragtag militias with peashooters can't pose any realistic threat to your rule. (You might, however, beneficially threaten to restrict gun ownership, because that guarantees that all the gun nuts will concentrate exclusively on protecting their precious gun rights, and won't notice anything else you do.)

Re:and who's going to CARE?

[rbanffy]

"refund"!

"refund"?!

The people responsible for this, from the lowest negligent intern up to the board, as well as every government official who vouched for the system, should be in jail.

How do you refund the people for corrupt government elected through electronic vote manipulation?

Re:and who's going to CARE?

[rbanffy]

Jury first, because it's a subtle one and not too many people will ever notice.

Ammo second, because you can always say it makes the world a safer place for children.

Then you are free to pick soap or ballot. Take one away and the other will take care of itself.

Re:and who's going to CARE?

[rbanffy]

Just curious (non-US here)... How exactly it is defined?

Re:and who's going to CARE?

[Richard_at_work]

No, it isn't - you really do not want broad definitions on that sort of thing.

Re:and who's going to CARE?

[pjt33]

"Treason against the United States, shall consist only in levying War against them, or in adhering to their Enemies, giving them Aid and Comfort." (Ref).

Re:and who's going to CARE?

[geminidomino]

You make GPs point nicely.

More people who voted did so AGAINST Bush.

Re:and who's going to CARE?

[uncle+slacky]

Except he wasn't *actually* elected - twice...

Re:and who's going to CARE?

[AioKits]

It's a shame your constitution defines treason so narrowly.

And that's the way I like it.

Re:and who's going to CARE?

[relguj9]

Or maybe we just see an article on Slashdot every once in a while and blow it way out of proportion.

After actually reading the article, this isn't even referring to a bug, it's design oversight that is already fixed in later software versions.

People just need something to hate when it comes to politics. What better target than the voting machine vendors? Especially ones that *used* to have a majorly republican CEO.

Re:and who's going to CARE?

[fugue]

Yes, fine them! For TREASON!! That's, um, what, $100 minimum?

Re:and who's going to CARE?

[mcgrew]

People complain about the military spending $500 on a hammer, etc, but I'm still wearing the field jacket they issued me in basic training in 1971. Its only damage so far is thet the velcro on the sleeves has come unstitched.

Re:and who's going to CARE?

[HTH+NE1]

Good thoughts all.

Here it felt like ballot first (President Select by SCOTUS, bring in Diebold mechines), soapbox was second (free speech zones), then jury (unlawful combatants extraordinarily renditioned to Guantánamo Bay, get no trials, possibly dissidents next), and ammo was going to be last.

I was thinking more like gaming the defenders' strategy: take ballot box first, people take to their soapboxes; ammo next because since people can't go to the ballot box, some may skip to the next available box and you don't want it to be ammo; take jury box next, they can only go back to the soapbox; take soapbox last.

Re:and who's going to CARE?

[MickLinux]

That's it!!! We have all the excuse we need to nationalize La-Z-Boy. Osama, you hear that? We're going after your Comfy Chair!

Re:and who's going to CARE?

[jamstar7]

Whether Diebold is a villian here or not is clearly debateable. But the hero is Mitch and anyone working with him to independently verify the results. In this case, he is the check in checks and balances.

Funny, I thought the check clearly stated 'Pay To The Order of Diebold Co'...

Re:and who's going to CARE?

[Psychochild]

One could argue that they've pretty much already taken the jury box from us; what's the popular conception of jury duty? Something that you complain about disrupting your precious time. Something that you use any trick in the book to get out of. Something that isn't respected at all.

I had the opportunity to be on a jury a few years ago, and I was glad for it. Not only did I do my civic duty, but I also got to see a bit more about how insurance companies work (the case was dealing with an insurance company trying to recoup from the city government a settlement paid out). I had jury duty this week, even, but wasn't called in, much to my disappointment.

But, my feeling is that there has been an attempt to make jury duty unattractive to many people. You can argue if that's a good or bad thing, or if it's been intentional and coordinated or not, though.

Umm, duh?

[girlintraining]

These flaws have been reported in many mainstream press outlets, investigated by a half-dozen independent groups, and yet it was still cleared for use in state, county, and federal elections. Let's ignore Diebold for a minute -- I know plenty of other people here will (rightfully) hang them. This points to a major systemic flaw in our certification programs for voting machines. Period. End of discussion.

This isn't just Diebold. This is dozens of state, local, and federal agencies that abjectly failed in their duties to their constituents to protect the voting system. This is huge. Epic. I cannot stress enough the damage this has caused to the confidence in the system. Again, let's ignore Diebold and ask the really hard question -- Where do we go from here? Can e-voting systems be trusted? What changes need to be made to the system (and they better be major)? What do we do to restore voter confidence in a system that just got skinned, gutted, and mounted?

Re:Umm, duh?

[geekoid]

e-voting can not be trusted. Not at all.

Hell I can give you code that looks perfect, but then have the compiler put a backdoor in for me.

Computer science is not ready for this type of system to be used on a scale the size of a state.

Re:Umm, duh?

[Hatta]

What do we do to restore voter confidence in a system that just got skinned, gutted, and mounted?

Skinning, gutting, and mounting those responsible for certifying these machines would be a good start.

Re:Umm, duh?

Why aren't they prosecuted yet? There's evidence, witnesses, and a HUGE crime committed. Figure it out Mr. AG.

Re:Umm, duh?

[TubeSteak]

Again, let's ignore Diebold and ask the really hard question -- Where do we go from here?

Why is that a hard question?
Electronic voting is imminently desirable.
The only real problem is that the software is crap
and the people certifying the crap software have been doing a crap job.

The hard question is determining whether the certification process was marred by incompetence or willful/malicious blindness.
Either way, reforming the process isn't all that hard if you're willing to buck the mfgs.

Re:Umm, duh?

The old system (ballot boxes) could easily be gamed (stuffing, anyone?). Any system is subject to gaming at some level or another (from voter coercion or inducement all the way to crooked supervisors of election).

This is much ado about nothing -- well, it's about something: Slashdot longstanding hatred (and NY Country Lawyer's newfound hatred) of Diebold.

So why all of a sudden is NY Country Bumpkin so anti-Diebold. Has he perhaps found a pulpit here and a bunch of rabble-rabble-rabble sycophants to preach to? Yes he has.

Mod me down, but you know I'm onto something and the metamods will agree we me as well.

Re:Umm, duh?

[corsec67]

Hell I can give you code that looks perfect, but then have the compiler put a backdoor in for me.

And then I could give you a processor that has a backdoor in it.

Re:Umm, duh?

[Kaboom13]

This points to a major systemic flaw in our certification programs for voting machines.

Our certification programs involve a supervisor of elections, some Diebold salesmen, and some "scholarship money" at the local strip club.

Re:Umm, duh?

abjectly failed in their duties

It's called, in one form or another, a waver. Critical systems have flaws. The flaws are acknowledged and handwaved by the powers that be with the understanding that while the flaw is significant and needs to be fixed, life must go on. Every non-trivial critical system in the history of our species has some notion of this, including every aircraft you've ever flown in, every power planet, every space launch of humans, most of the food you've ever eaten, etc. Grown-ups evaluate the risks, mitigate exposure and make a call.

The only difference is that election systems have been become, since 2000, the center of a conspiracy theory regime, and every discovery of a flaw in an election system has become an excuse to engage in hysteria. The grown-ups know this and have ceased paying much attention. So you go right ahead and enjoy your little drama. If you have any mod points you should note that this is anonymous so the best you can do is bury this deep; my karma is immune to your conniption fit.

Re:Umm, duh?

[Kral_Blbec]

Can they be trusted anymore than paper ballots? With those, all the loosing side has to do is keep pushing for more "recounts" until they win, ie Washington governorship a few years back.

Re:Umm, duh?

[InlawBiker]

Since paper voting -- given enough effort -- can also always be corrupted, we may as well go with the new, efficient tech. Where before people had to collude, hide, counterfeit or use some other elaborate scheme to throw an election, now all they have to do is:

DELETE * FROM VOTES WHERE CANDIDATE = 'OPPONENT';

Think of all the man-hours being saved.

Re:Umm, duh?

[Compholio]

What do we do to restore voter confidence in a system that just got skinned, gutted, and mounted?

Skinning, gutting, and mounting those responsible for certifying these machines would be a good start.

We could probably get away with that if we convict them of treason.

Re:Umm, duh?

[MightyMartian]

Canada uses paper ballots. Care to name the last time there was any evidence of ballot stuffing?

This claim of some major flaw in paper ballots is a load of horsecrap. It's been the line of inept goons like Diebold, and it's just plain false.

Re:Umm, duh?

Hell I can give you code that looks perfect, but then have the compiler put a backdoor in for me.

And then I could give you a processor that has a backdoor in it.

And then I could give you a election observer that has a backdoor in him/her.

Re:Umm, duh?

[arth1]

Skinning, gutting, and mounting those responsible for certifying these machines would be a good start.

The problem, as I see it, is that the certification process is a farce. The vendors who sell something sign that they meet the requirements. If "independent" testing is required, the vendor pays for that too, hiring "independent" testers to sign papers.

I.e. it's all based on trust. No, sir mayor, I can assure you that there's NO offal in our sausages!

Until the government people who make the requirement actually do QA testing themselves, without "assistance" from the vendors, the public is going to get scammed. And this will continue as long as we here in the US have a deep distrust for government, and rather would hire companies and corporations to do the job instead of hiring government workers at a decent pay. There are neither people nor funds for the local governments to do the job themselves, so they HAVE TO trust the vendors or their cronies.

Re:Umm, duh?

[Obfuscant]

Why is that a hard question? Electronic voting is imminently desirable.

Why? I have no desire for electronic voting.

I much prefer a simple, paper ballot. It is a physical object that can be counted and recounted. If there is a question of ballots being lost, simply count all the ballots and see if the number matches the number of ballots that were turned in. If there is a need to recount, you can go back to the original ballot and count it again.

AND I prefer elections to be run using polling places, where a voter goes to identify himself prior to voting, thus proving that he exists and has a right to vote. Where he casts a secret ballot with nobody looking over his shoulder. Where absentee ballots are provided to ONLY those who can prove they will be away and can't make it to the poll.

AND where the polling takes place during the same time everywhere the polls are open. For obvious reasons.

The only real problem is that the software is crap and the people certifying the crap software have been doing a crap job.

Crap job? Wasn't there a story not long ago about some precincts using OBSOLETE electronic voting software (Diebold, as I recall) with known problems? And that somehow this was Diebold's problem and fault? I remember it because I immediately thought "what would someone who reported a bug in gcc version 1.0 be told?" Would the gcc authors accept responsibility for fixing it, or would they laugh and say "dude, gcc 4 is out, update your ass."

Re:Umm, duh?

[geekoid]

And then I could use my software backdoor to change the results and blame it on your processor.

MUAHAhahaha...hum

Re:Umm, duh?

[Locke2005]

E-voting backed up by an auditable paper trail can be designed to be trusted. I agree that E-voting with no physical audit trail cannot be trusted at all. Your reference to the compiler backdoor scenario pointed out by Ken Thompson 25 years ago is also correct; thorough review of the source code is not sufficient to guarantee security.

Re:Umm, duh?

[AK+Marc]

e-voting can not be trusted. Not at all.
Hell I can give you code that looks perfect, but then have the compiler put a backdoor in for me.

Really? No voting machine can be trusted? So you fill them with disappearing ink so that the printed ballot from the electronic system will also get wiped?

Re:Umm, duh?

[vadim_t]

Possible solution:

Invent your own language and write a compiler for it in-house. Do not explain what it'll be used for. Doesn't matter if it's a crappy version of BASIC. Before getting any developers, choose a development environment and stick to it. A particular version of GCC for instance, and make sure to keep all that well checksummed to be sure there can't be any changes to the environment.

Once the compiler is built, hire programmers to make your vote counting application.

Explanation: It's very unlikely that a compiler you chose before starting development could effectively patch a compiler for a language that didn't exist when it was released. It's also very unlikely that this new compiler could patch an application that isn't written yet.

Re:Umm, duh?

[Kral_Blbec]

lol. We have some retarded mods today. First point given is a "overrated". How is that possible when it hasnt even been rated?

Re:Umm, duh?

[sirsnork]

Hasn't this whole Diebold thing proven your last statement completely false?

Re:Umm, duh?

[Scrameustache]

Canada uses paper ballots.

But down south they vote on like 80 different things at once.

Re:Umm, duh?

[Amazing+Quantum+Man]

Ha! My preferred candidate is named 'NEMESIS'!!!! My votes stay!!!!

Re:Umm, duh?

[RudeIota]

... And I could give you a corrupt poll official that seems honest, but isn't. Since votes seem to mostly not be recounted for accuracy, it isn't too hard to imagine a ballot counter with an agenda.

I get your point though - the potential damage is far greater by compromising an automated system. My point is though, that almost nothing can be fully trusted.

Re:Umm, duh?

[jd]

First, I disagree. E-voting as implemented cannot be trusted at all, but that does not mean E-voting in general cannot be.

Let us take the simple case where every transaction is placed in a transaction journal. It is never erased from that journal, no matter what. You can "delete" as many times as you like, each delete is itself just a transaction that is logged. You now have a fix for the above problem, and indeed for any other problem to do with summing things up, as each vote is independently stored in the log, NEVER a total. Totals are calculated by replaying the transaction journal, they are never what the machine directly uses or processes.

Ok, but what about vote injection? That can be done via the backdoor you mention. Easy fix for that. PKI. Each voter has a registration card, right? So store a public key on it and have a dictionary of private keys on a remote machine. The compiler can insert all the backdoors it likes, if there's no private key on the remote vote tally system, the vote cannot be decrypted and therefore cannot affect the total.

Ok, what about backdoors which allow a hacker to directly delete data from main memory? Easy fix for that too. Never rely on the voting machine to be a file store. Each time a vote is cast, have it transmitted. In fact, if you really want, have it multicast. Anyone who wants to count the number of cast votes can then join the multicast group and count votes. They can't see who voted, they can't see who was voted for (it's still encrypted), but they CAN tell if the total number of votes sent to the multicast group is equal to the number of votes counted plus the number of votes rejected.

So far, so good. Now, what about making sure that votes aren't fraudulantly rejected? Easy. The private keys, when generated, can be duplicated and a spare set placed in a neutral archive. If there is a legal challenge, the duplicate keys can be removed from the archive and (a) compared with the keys used by the tally computer, and (b) used to decrypt the votes gathered. It doesn't matter who gathers the encrypted votes, so you can use the encrypted votes gathered by UN monitors if you really insist. The UN can't tamper with them any more than anyone else. The most they can do is randomly delete them, but since everyone has a copy of the encrypted votes (including all parties), this would be instantly open to legal challenge itself.

What about privacy in voting? Well, when the key pair is generated, simply split the pair. If there is no connection in any part of the system, after generation, to link the public key to the private key, nobody at all can tell who cast which vote.

(Well, technically the voter can tell, as they have their public key and know what vote they cast, so can re-generate the vote, re-encrypt it, and look to see if a vote posted over the network matches the vote that was re-calculated. But nobody else could do this, and given the time overheads, this could never be used to check up on voters to see who they voted for. It could only be used by voters themselves to ensure their vote was in the system.)

You don't have a "perfect" system after doing all that, but it's damn close to perfect, in that it meets the paper trail requirements, it is virtually impossible to add or remove votes without detection, retains anonymity, and yet is completely open to audit by anyone who feels like putting in the time and effort. There isn't a paper ballot system on the planet that can compare with that degree of integrity checking, and the basic paper ballot is one of the best systems ever devised.

Re:Umm, duh?

[jcgf]

We don't need to stuff ballots very often due to coalition governments http://www.mapleleafweb.com/features/coalition-governments-canada

This doesn't really work in the case of a majority government. So in that case, we would have to resort to the US solution. I know a bunch of farmers with Enfields and 22s they got from SEARS 40 years ago don't seem like anything that could take over a government but keep in mind that this would be the Canadian government and that L'Arme Secrète is only useful in the case of US or Russian invasion.

Re:Umm, duh?

[drinkypoo]

Since paper voting -- given enough effort -- can also always be corrupted

What good is a ballot, Mister Anderson, if you are not permitted to perform a recount?

Re:Umm, duh?

[dkleinsc]

Eeww, even dead I wouldn't want to mount those guys.

Re:Umm, duh?

That was Rangel's rationale when he introduced a draft proposal. So as not to invoke hypocrisy, I propose a compromise: reinstate the draft so you can provoke citizens to take interest in the affairs of their country, but send the congressmen who vote for it over first, in the same capacity that an average draftee would be expected to serve, as exemplars of the "patriotism" they're hoping to instill.

Reciprocity dictates that we don't frivolously throw away the lives and liberty of Americans. A draft is a violation of both.

Re:Umm, duh?

[Obfuscant]

So you fill them with disappearing ink so that the printed ballot from the electronic system will also get wiped?

If the only action of the electronic voting system is to print a paper ballot, then it is not truly an electronic voting system.

If the system is going to print a paper ballot anyway, you might as well just use paper ballots. Not this butterfly crap that is confusing, but good old "blacken in the circle" optically-scanable paper forms. They are simple, rugged, and can be recounted a dozen times if necessary, BY HAND if necessary.

Yes, it's old technology. Funny how pencils are still being sold in the stores, huh? Paper, too.

Re:Umm, duh?

[bluesatin]

I use it because when the post isn't a troll or flamebait, the only option left to reduce someone's karma is to use overrated.

Makes sense to me!

Re:Umm, duh?

[cduffy]

(Well, technically the voter can tell, as they have their public key and know what vote they cast, so can re-generate the vote, re-encrypt it, and look to see if a vote posted over the network matches the vote that was re-calculated. But nobody else could do this, and given the time overheads, this could never be used to check up on voters to see who they voted for. It could only be used by voters themselves to ensure their vote was in the system.)

One of the massive historical problems folks need to solve is "vote selling", which is enabled whenever a voter can prove how they voted to someone else. This gives the mob the ability to enforce threats against anyone who votes John Law ("prove to me you voted for ${CORRUPT_BASTARD} or I'll ..."), corrupt employers the ability to fire employees who don't prove that they voted the way the employer requested, removes effective privacy in the voting booth between husbands and wives (and I do know folks whose votes in the most recent US presidential election would have been viewed in an extremely unkind light by immediate family members), and otherwise allows undue influence.

There are systems which address this; look into how Punchscan is implemented, or any other Vocomp finalist.

Re:Umm, duh?

There might be job openings for you guys at this one company...

Re:Umm, duh?

[tixxit]

Of course, the cheaper solution would be to require the code to be open source. Then you'd get thousands of reviewers, free!

Re:Umm, duh?

[rts008]

This points to a major systemic flaw in our certification programs for voting machines. Period. End of discussion.

This point has not been addressed at all, it seems.

I would love to wear out a crotch-bat on Diebold's[or whomever they are calling themselves now to escape the negative publicity from past problems being made public] upper management; you raise an important point.

This isn't just Diebold. This is dozens of state, local, and federal agencies that abjectly failed in their duties to their constituents to protect the voting system. This is huge. Epic.

I have often wondered what excuse[those in charge of the voting system] was used to justify continuing to use this buggy, flawed, and unaccountable POS 'e-voting' solution?
I'm sure I'm not the first, or only one to wonder about this, but it always comes into my mind every time an article comes up about the e-voting schemes used here in the USA.
I just never understood why we keep using this shite...over, and over, and over again!?!?!?

You are right about needing to hold 'their feet to the fire' of those responsible for this circus to circumvent the stated and layed out spec's.
We are at the 'training a toddler the meaning of no', what's so hard to understand?

Where do we go from here?

Just search back on any /. discussion of e-voting for more good ideas than you can shake a stick at.(and many bad ideas!)

As long as human beings are involved, there will be no system that is 100% un-game-able/foolproof. Just our nature to seek advantage selfishly for our own benefit.
Maybe Bender has it right:"Kill all humans."

*Offtopic*
I never know quite how to take/assess you here on /. ...sometimes I can't make up my mind whether to mark you as friend or foe. I consider that a 'Good Thing(tm)', it makes me think!
Whatever, it's a 'meat' thing. Keep on striding Molly/Razor Girl!; and for those that mark you foe: spit in their eye, and keep on keeping on! [including me if I ever make up my mind!-but, who cares except me anyway?...really.] You only get one chance in our short lives...

Re:Umm, duh?

[jd]

You are correct. The proposal I'm putting forward (where a voter needs to serially scan perhaps millions of votes) is - at least in principle - just too expensive for vote selling. At least with computers as they stand. The compute cycles required for any large-scale checking would require a significant piece of big iron, which means it won't be portable. To go round and check, using portable computers, would need an army of vote-checkers of a size comparable to the number of voters.

Adding random data would, of course, make any kind of inspection impossible, but it would also make auditing much harder and would make distributed monitoring by the electorate impossible.

Some would say that this is a good thing, but I'm of the mind that you have vote fraud on a large scale in every election because accountability is impossible. Any replacement system must, to be credible, produce a net gain in trust and that means increasing the ability to detect both vote injection and vote deletion. You cannot do that with 100% anonymity guarantee. What you CAN do is take a leaf from the book of encryption. Encryption doesn't make it impossible to decrypt, but it does make it too expensive to be worth it.

Re:Umm, duh?

[Jah-Wren+Ryel]

and I do know folks whose votes in the most recent US presidential election would have been viewed in an extremely unkind light by immediate family members

Not to belittle your main point, but people in that situation that have far more pressing problems than something as abstract and distant from daily life as who gets elected to office, even a local office.

Re:Umm, duh?

[internettoughguy]

the software must run on top of a virtual machine, and both the software and virtual machine must be written in machine code by hand!

Re:Umm, duh?

[B4D+BE4T]

This, to me, doesn't show that e-voting can't work. This simply means that all e-voting hardware and software needs to be completely open. If anyone can pick up the specs to the hardware, build their own, and verify that the actual e-voting hardware works exactly the same or pick up the source code, compile it, and test it, it would be very difficult to hide any bugs (deliberately placed or not).

Sure, it isn't perfect. But I don't think that it would be any less secure than the paper-only voting system.

Re:Umm, duh?

[Gandalf_the_Beardy]

I don't know about any other system but in the UK you would find it very difficult to stuff a ballot box and get away with it. We rely on the party faithful keeping a very beady and possessive eye on all the ballot boxes and watching the entire count very cloesly - as long as all the parties have people watching it's effectivly impossible to stuff ballot boxes, tamper with votes etc at the point of voting or afterwards. Now creating extra voters from people who are conveniently dead or from filling in peoples postal votes is easy and that's where almost all of the fraud in UK voting takes place. I must confess I've never seen the desire for electronic voting in any form - the UK can count accuratly the entire countries vote in one night for 650+ candidates and have it on the news the next morning unless the result is going to eb very close. And if anyone complains, we can count it again. And again... and again........ http://en.wikipedia.org/wiki/Winchester_by-election,_1997 We still have the lawyers to sniff about though!

Re:Umm, duh?

[mi]

Let's ignore Diebold for a minute -- I know plenty of other people here will (rightfully) hang them. This points to a major systemic flaw in our certification programs for voting machines. Period. End of discussion.

The problem was, all criticism of Diebold — however legitimate — was coming from people with "Bush was appointed" and "Elections Stolen" on their T-shirts. This discounted their opinions down to zero, because they were viewed as partisan hacks.

Now that the opposite side has won the elections (despite dire predictions of Diebold-enabled vote-stealing), these same people have calmed down and are able to present their case properly — without sliding into Impeach Now!!! hysteria.

Re:Umm, duh?

[FiloEleven]

Wow, that's...one of the most convoluted solutions I have ever heard. Why not just get used to the fact that software on its own is as unacceptable for handling elections as it is for building houses?

Re:Umm, duh?

[vadim_t]

That's of course the most practical solution. But that's not very fun to think about.

Re:Umm, duh?

[ThunderThor53]

And then I could give you a election observer that has a backdoor in him/her.

Kinky.

Re:Umm, duh?

[hairyfeet]

I think you just hit the nail on the head, as well as showing us how to easily fix the paper ballot problem without needing to go electronic: those damned recounts. If it is literally too close to call(say, within 1% of each other vote wise) then there should be ONE recount done at THAT moment with officials from both sides as well as a neutral party in attendance(I'm sure some greens or libertarians would do it) and that is it. If after the recount it is still close you give to whomever has the most, I don't care if it is 50 votes. No more multi recounts, no more whining, get your loser ass home.

I mean, honestly, how many damned times did they have to recount those "votes", which kept just "being found" to give the election to Franklin in Michigan? Something like 7 wasn't it? Those kinds of blatant election riggings is what kills a lot of folks belief in elections. My oldest is soon to be voting age and both he and his brother have made it clear they have NO intention of ever voting. They say that even if you manage to get your vote counted that if it is something a politician doesn't want they'll just ignore you anyway, and sadly I can't defeat their logic.

Here we have voted 4 times for a lotto so our kids can get free college educations. And each times the gaming commissions from the neighboring states have bribed our politicians and churches to come out against the measure(so as to ensure we have to spend our money in THEIR states on THEIR kids instead of our own) and yet each and every time we have voted more than 80% for a lotto. So why don't we have a lotto? Because our crooked politicians have said that the first two times the measure was "Too Vague" and the third was "badly worded" and now it looks like they are going to use the "badly worded" excuse again even though we copied the measure this time word for word off another states lotto ballot.

I have to admit that after this I doubt that I will vote ever again either. I mean what's the point? You can vote for "spoiled rich elitist corporate ass kissing" choice A or B, and anything you try to do that isn't approved of by our crooked as hell politicians will just be ignored anyway. How can I convince my boys that voting is worth the effort when even I think it has turned into another scam? Might as well just grab as much as you can before the corporate raiders burn the whole thing down for the insurance. Because it is never going to get any better. The system is broke and those in power will never let it be fixed. Is it any wonder that nobody has any pride in America anymore? They are ripping us off so bad now they don't even try to hide the payoffs. These broken easy to rig machines are just a symptom of a much more deadly disease, and that is the greed and obvious corruption of our elected officials. And sadly I don't see any way to fix it.

Re:Umm, duh?

[nsheppar]

This points to a major systemic flaw in our certification programs for voting machines. Period. End of discussion.

Go deeper. This points to a major systemic flaw in a large portion (>50%?) of humanity, in that on the whole humanity would rather have ${whatever_it_is_they_want} rather than have less but more quality stuff. Not everyone has as much attention to detail of computer scientists, engineers, mathematicians, scientists in general, etc.

Re:Umm, duh?

[quickOnTheUptake]

why must dba's always shout?

Re:Umm, duh?

Ah-ha! But I have foiled you! I will run under the name:

'; delete * from votes where candidate is not like '\'; delete * from votes where candidate is not like

Re:Umm, duh?

You can use a flawed compiler to build a known safe compiler. GCC does it by default.

Re:Umm, duh?

[Antique+Geekmeister]

You obviously know little about gcc. You're _supposed_ to be able to compile the latest gcc with much older versions of gcc and not-very-ANSI-compliant compilers. The bootstrap process it uses is fascinating. And yes, I've written patches for software with ancient versions of gcc to inter-operate with much more recent components, and vice versa.

Re:Umm, duh?

[ps2os2]

Easier than that just accuse them of being terrorist. The DHS will wipe them from the face of the earth and do the vote counting themselves:)

Re:Umm, duh?

[vadim_t]

This has nothing to do with GCC.

The idea I'm proposing, is that for instance, the latest version of GCC, or any other compiler, released today, can't possibly include code to patch a compiler that doesn't exist yet. And that this new compiler can't patch a program that didn't exist when the compiler was made.

The idea is that Ken Thompson's trick relied on that the compiler already existed, so it was easy to figure out what to patch in it. The login program also existed and the precise place that needed patching was also known. But what if you take those things away?

And yes, I'm aware that gcc compiles itself several times with different versions of itself and compares to attempt to detect the trickery described by Ken Thompson.

Re:Umm, duh?

[AK+Marc]

If the system is going to print a paper ballot anyway, you might as well just use paper ballots.

And why is that? Electronic voting started because handicapped people were supposed to be able to vote without the help of a poll worker. They would print out ballots that would go in with the others. And eliminating electronic voting that prints paper is bad for people that like the flexibility of an electronic system that can help overcome some handicaps.

Not this butterfly crap that is confusing, but good old "blacken in the circle" optically-scanable paper forms. They are simple, rugged, and can be recounted a dozen times if necessary, BY HAND if necessary.

And they have a number of failures as well. What do do do if someone tries to erase? Marks two? Doesn't mark completely? Marks incorrectly? There is an expected error rate with those that I find unacceptable. Electronic voting can eliminate many of those errors. It may introduce more, but it will get rid of some. To pretend that one is always better than the other (from either side) is a sign that impartiality isn't a goal...

Yes, it's old technology. Funny how pencils are still being sold in the stores, huh? Paper, too.

And elections are still being contested because all the paper ballots are confusing and rarely do two recounts come to the same numbers. If it was as simple and exact as you say, then Florida wouldn't have happened. If it was as easy and simple as you pretend it to be, then recounts wouldn't be necessary because it would have been right the first time. It isn't. And an electronic interface generating the ballot will help with many identified problems.

Re:Umm, duh?

[jamstar7]

They'd only get a few years in a Club Fed if they stole money. These are elections they stole.

Re:Umm, duh?

[jamstar7]

Any system is subject to gaming at some level or another (from voter coercion or inducement all the way to crooked supervisors of election).

True, but to game the paper ballot system to generate a landslide condition for your New Hero, you'll have to get quite a number of people involved. Figure 3 or 4 at every precinct at least. How many precincts would you need to game to steal a Presidency? And keep in mind that the more people involved in the conspiracy, the more likely it is that the conspiracy will be revealed, unless you intend to kill the rest of the conspirators.

E-voting, on the other tentacle, can be gamed easily by a single person.

Re:Umm, duh?

[dryeo]

There were a few stories floating around about the last separatist referendum.

Re:Umm, duh?

[dryeo]

What are you talking about? Democracy is that most people did not want Harper and his reform buddies leading us, especially acting like he had a strong mandate.
This is the idiot who wanted us to go to Iraq because Americans are our friends and if they jump of a cliff we should join them. The same Americans who couldn't be bothered to say thanks when we took in a bunch of them into our households on 9/11 because they were to paranoid to let them land in their own country. They also didn't bother thanking us for all the other help we gave them as well.
Unless you mean that we should just put Harper and friends against the wall?

Re:Umm, duh?

you forgot castration!

Re:Umm, duh?

[n+dot+l]

Think of all the man-hours being saved.

You bastard! Cutting jobs in an economy like this...

Re:Umm, duh?

Ah, but you forget, what if there is a bug in your deletion script ?

Re:Umm, duh?

[ion.simon.c]

One of the massive historical problems folks need to solve is "vote selling", which is enabled whenever a voter can prove how they voted to someone else.

Doesn't any place that permits absentee ballots greatly weaken their resistance to vote selling?

Re:Umm, duh?

[Socguy]

Well about 15 years ago there was this one crazy dude from my riding. Somehow he grabbed a whole box of cast ballots, ran outside screaming about aliens or his underwear or some such nonsense and proceeded to throw the works into the river. Still, someone fished them out and they got counted!

I know that this isn't really applicable to your post, I just thought it was kind of funny.

Re:Umm, duh?

[ThinkTwicePostOnce]

| Here we have voted 4 times for a lotto ... more than 80% for ... So why don't we have a lotto?

That's wild! Which state?

Re:Umm, duh?

[Deanalator]

Compilers are signed.
Code auditors use IDA.

Despite popular belief, the trusting trust paper was not written as an "OMG WERE FUCKED NO MATTER WHAT WE DO" paper, the compiler example was put there to emphasise the importance of having a stable root of trust in any given system you want to be secure.

There are perfectly sane ways to have a stable root of trust with electronic voting, which is not the case with the paper alternatives.

Re:Umm, duh?

[rbanffy]

"This isn't just Diebold. This is dozens of state, local, and federal agencies that abjectly failed in their duties to their constituents to protect the voting system"

Having a lot of people to hang should not deter you from starting. It's a huge undertaking, but it's also a very important one.

You know how it works: the earlier you start, the sooner you finish the job.

Re:Umm, duh?

[rbanffy]

There are ways it can be built that can allow for a reasonable amount of trust.

I worked in the Brazilian e-voting system and I can easily enumerate a couple ideas I had in 2002, during the project.

- There was a printer option that would be attached to the voting machine that would print the vote in human readable form. The paper votes would be deposited in a sealed ballot and random machines would be selected for examination. Since a tampered with software could detect the printer and behave well when it was attached and change votes when not, we could either to put printers in all of them or build "dummy printers" that print nothing but look like printers for the rest of the voting machine.

- A vote file cryptographically signed with the help of a TPM, tying the vote file to a given voting machine and making it really, really hard to inject a forged file in the vote counting process.

- Have the voting crews authorize voters with their own PINs.

And the mechanisms that have been in place since I was a kid:

- Making every citizen vote. This makes it rather easy to point out anyone trying to vote for people they know won't be there: If you go to vote and the machine says you already voted, call the police.

- Assign voters to specific machines - this way they can know how many votes each machine will receive. There are special situations like candidates allowed to vote anywhere, but you can deal with them.

- Having every voting machine assigned to three randomly-selected adults to act as a crew to validate each voter that has to vote there.

- Having police arrest any people campaigning within half a mile from a voting place.

- Mining vote patterns for discrepancies that trigger investigations. One that was detected was a series of votes with less than 30 second intervals between them that happened near closing time.

And a whole lot more measures that help.

It's not that hard. It may not be perfect, but, it is sure good enough.

Re:Umm, duh?

[that+IT+girl]

Yeah, this is kind of what I was going to post, but you said it better than I was planning to anyway. My knee-jerk reaction was something more like, "And in other shocking news, the sky is blue."

Re:Umm, duh?

[geminidomino]

Bobby Tables, is that you?

Re:Umm, duh?

[mattib]

Did you read the link?
The backdoor in question inserts itself into the new "safe" compiler you are compiling with it.

Re:Umm, duh?

[Vampo]

it's a well known performance issue. Pick a table you don't need, and try "delete * from table", then try it again while sounding angry "DELETE * FROM TABLE" and I'm sure you'll find the second returns much faster...

Re:Umm, duh?

[cduffy]

You are correct. The proposal I'm putting forward (where a voter needs to serially scan perhaps millions of votes) is - at least in principle - just too expensive for vote selling. At least with computers as they stand. The compute cycles required for any large-scale checking would require a significant piece of big iron, which means it won't be portable. To go round and check, using portable computers, would need an army of vote-checkers of a size comparable to the number of voters.

There's no reason someone wishing to implement vote-selling couldn't precalculate a hash table of of the ballots cast rather than doing a serial scan each time -- no big iron required. Also, vote-selling is often distributed. There's no need for an army of laptops and people to operate them; just get local employers or unions on-board, and let validation and intimidation and/or retribution take place within the workplace.

I far prefer something akin to the Punchscan solution, where the information available as part of the validation corpus (1) is insufficient to prove how any single individual voted regardless of an adversary's computing resources [short of an outright break in the crypto, which would allow the linkage between ballot serial numbers and votes to be exposed], but (2) is sufficient to make vote alteration statistically infeasible to get away with on any significant scale (50% chance of detection per vote altered where the voter chooses to participate in after-the-fact validation).

Re:Umm, duh?

[rjstanford]

Yes, but combining the two is so easy. Paper ballots are great because of the, well, paper trail. E-Voting is great because of the speed of vote counting and the convenience of vote logging.

So go with one of the proposals that has it separated. You know, into proper network layers.

First, define a reasonable standard for a ballot paper. It should show the election number, a sequence of office/proposition and vote pairs, &c. Totally open, very basic. Counting these provides the "official" results. Could be done by optical scan with hand-counting always available as a double-check (and they should be counted by hand in a small percentage of precincts, chosen randomly and also additionally by the demand of the voters). Simple enough.

Now to avoid the problems with butterfly ballots, smudges, &c, have those papers be printed automatically by a range of voter hardware. Touch screens, traditional lever booths, whatever the interface is. They can also produce tabulated results, but those would be seen as unofficial, purely for convenience when the outcome is far from close.

Even the process is simple - once you are ready to vote and signed in at your precinct, you are handed an official empty ballot. You then use a voting machine to output your desired votes onto the ballot. Then you read it. If you agree with what happened, you put it into the sealed "official ballots" box. If not, you can exchange it for another one, in the process placing the incorrect sheet into a sealed "voided ballots" box, to be disposed of later.

Full paper trail, full disclosure, completely separate machines to print and count the votes, and a complete human-readable official trail to follow later. And its simple.

Re:Umm, duh?

[Agrivane]

Evidence leading to conviction? Google remembers: http://www.cbc.ca/canada/calgary/story/2007/11/01/vuong-guilty.html which resulted in five people being charged under the Elections Act.

(Also some suggestions of impropriety in a NHL All-Stars election, and the scandal of a UBC Jr. Prom Queen election in 1935.)

Canadian elections use a paper ballot that is marked by the voter, folded to keep the choice private, then placed in a ballot box. When the poll closes, these votes are counted by a committee of electoral volunteers. If a ballot is not clearly marked, it is not counted. This process takes from less than one to several hours depending on how active the poll was and how efficient the poll workers are at opening and counting the ballots. Still, the election results are available before the morning papers print their front pages.

The argument against this system in the USA is one of scale, it would take days to tabulate.

I think an appropriate solution to the problem with certification would be to move the process away from the hands of companies like SysTest ( http://www.systest.com/news/97-systest-labs-redefines-voting-systems-testing-protocols-for-the-21st-century ) and into Universities, funded federally.

Re:Umm, duh?

[The+Moof]

This claim of some major flaw in paper ballots is a load of horsecrap. It's been the line of inept goons like Diebold, and it's just plain false.

Chicago and its infamous voter fraud record would like a word with you....

Re:Umm, duh?

[powerlord]

why must dba's always shout?

MAYBE THEIR DEAF FROM STANDING BY THE KVM IN THE SERVER ROOM?
IT MAY HAVE AFFECTED MY HEARING A LITTLE ALSO.

(The irony of it all is that the lameness filter said: "Filter error: Don't use so many cap. It's like YELLING." so, in order to )

Re:Umm, duh?

[Kral_Blbec]

And why go out of your way to attack someones karma when it isn't a troll nor flamebait? Especially when it is pointing out a valid issue.

Re:Umm, duh?

[neomunk]

What you're saying about the trusting-trust attack only hold true as an intellectual exercise. It only works if there is NO KNOWN GOOD COMPILER binary. That just isn't the case. Thompson's attack was brilliant and needed to be exposed, but can you imagine the code necessary to produce a compiler that corrupted every other compiler it ever came across forever (not just versions of it's 'clean' self)? I would wager that that is not humanly possible. Now imagine trying to have built this attack for the purpose of subverting voting software, taking into account THOSE not-yet-implemented variables, and you'll see why what you're talking about is NOT feasible in the slightest. Maybe if the attacker got to supply the compiler after having read the e-voting source code, but that's an implementation problem, not a systemic problem.

Just one "clean" C compiler, not matter how old, crappy or inefficient can give you a brand-spanking-new copy of gcc, optimized and ready to rock.

Re:Umm, duh?

I.e. it's all based on trust. No, sir mayor, I can assure you that there's NO offal in our sausages!

But that's where all the flavor comes from!

Re:Umm, duh?

[FrozenFOXX]

What do we do to restore voter confidence in a system that just got skinned, gutted, and mounted?

Simple, don't tell them it happened.

Re:Umm, duh?

[ELProphet]

Candidate for President:
Barack Obama
John McCain
Stephen Colbert
Write in:
>>Robert'); DROP TABLE Votes;--

Re:Umm, duh?

[jd]

Yeah, I can see that. Ok, I can see the Punchscan method would be safer. I think, though, you'd need to alter the rules a little and require a winner to have sufficient margin to exceed what could reasonably be done via fraud, with a run-off being declared if the margin is smaller than this.

In the end, I guess the two ideas are similar, except that mine shifts the danger spot to the individuals (which, as you point out, increases the vulnerability) whereas Punchscan has a more centralized attack vector which (in principle) is going to be harder to meaningfully attack and you can (as shown above) fix the rules to make such an attack largely ineffective.

I think the practical upshot, no matter what the preference of the individual, is that between the two of us, we have shown that there ARE ways of doing e-voting that is not exposed to fraud by election officials or voting machine officials, and that these are NOT going to be any more costly or difficult to install or maintain than the systems we know don't work.

Of course, the odds of getting the US Government to read Slashdot and actively respond to this thread by revising the rules for electronic voting are slighly under the odds of the atoms in your body spontaneously quantum tunneling to a far-distant planet of geeks who live in a city dedicated to your personal vices.

Re:Umm, duh?

[Obfuscant]

Electronic voting started because handicapped people were supposed to be able to vote without the help of a poll worker.

That's a nice goal, but it is hardly worth making the rest of the system unreliable in such new and marvelous ways. There are ways of solving the handicapped voting problem.

And elections are still being contested because all the paper ballots are confusing ...

No, not all the elections are being contested and not all the paper ballots are confusing. That's a gross overstatement.

They are being contested because one party thinks that changing the rules after the election is over is a standard operating practice, and even though they agreed to the ballot before the election was held, they see an excuse to challenge a loss after the results are announced.

That is exactly what happened in Florida in 2000. That's the infamous "butterfly" ballot, which was approved by democrat election officials prior to the election and then challenged because "it was confusing". One old fart actually stood up and proclaimed to the world that he didn't need to "read no instructions" on how to fill in a ballot because he's been doing it for fifty years. Well, yes, sir, when the format of the ballot changes you might want to read the instructions how to use it or your vote might not be counted the way you want. It's that simple.

Yeah, that's a small detail that seems to get lost every time there is a challenge to a specific ballot as being confusing. It wasn't confusing before the losing party lost, only after. It was approved by both major parties before it was printed. The only thing that changed after the election was the result.

But, that's why I said the simple "fill in the circle" style ballot where to make a black spot on a piece of paper. If this confuses you, maybe you shouldn't be helping decide the fate of the country?

And they have a number of failures as well. What do do do if someone tries to erase? Marks two?

Yes, they do. Well understood and trivially corrected failures. Let's see if we can figure out what to do if someone tries to erase... hmmm, well, maybe we just TAKE HIS SPOILED BALLOT and GIVE HIM ANOTHER ONE? Yes, that seems like a very low-tech solution. No electronic voting machine needed for that.

To pretend that one is always better than the other (from either side) is a sign that impartiality isn't a goal...

Nonsense. Low tech solutions with simple failure mechanisms that can be corrected simply are always better than high tech systems with unknown and usually hidden failure modes, and it is not a sign of a lack of impartiality. Paper ballot fraud is hardly a one-sided affair, even though the majority of such fraud has been connected to one party and one city run by one mayor who is dead. (Chicago, Daly, in case the reference is too obscure.)

If it was as easy and simple as you pretend it to be, then recounts wouldn't be necessary because it would have been right the first time.

Easy and simple aren't synonyms for "error free", simply because it is humans who do the count and they make mistakes. Any system that forgets that latter bit of critical information is going to fail. That's why there are multiple people counting paper ballots, at least when it is done right.

Re:Umm, duh?

[Obfuscant]

E-Voting is great because of the speed of vote counting and the convenience of vote logging.

Speed of vote counting is a specious and counterproductive goal. It is folly to throw away accuracy in the search for speed, although our modern society seems to value the latter more than the former.

Everybody wants to know five seconds after the poll closes who won. What difference does it make if the total isn't known for a week? Other than special elections filling a vacant seat, no election result is enacted until months after the vote. We vote for President in early November, and the electoral college doesn't meet until December to make it official. It's not until January that the new president is installed. Is a week delay in knowing the vote result going to kill us?

Gee, it's swell and exciting and all that to know who won before we go to bed on election night, but damn if the networks haven't gotten their predictions WRONG so many times that you really don't know until the next day or two anyway. And by making those WRONG predictions, they create an atmosphere where any correct data is viewed as corruption. You know, "the CBS exit poll predicted Gore wins the state of X, but the actual vote tally that comes after all the absentees and contested ballots are counted shows the winner was Bush." CORRUPTION! VOTE FRAUD! GORE WON! CBS SAID SO!

First, define a reasonable standard for a ballot paper.

Well, you run into the small problem that we are a union of states, not just one big federal government. Isn't it interesting that not even the Constitution specifies how electors will be determined, it is left up to each state. "Each state shall appoint, in such manner as the Legislature thereof may direct, a number of electors,..." Trying to demand that a specific ballot format be used to vote for electors would be patently unconstitutional since the task is explicitly left up to the state legislatures. (And that clause was prominent in the SCOTUS decision where the Florida Supremes were slapped down for trying to change the process the legislature had directed.) In fact, I think it was Missouri where the Governor appointed the electors up until 1950 or so, because that's what the legislature directed.

... have those papers be printed automatically by a range of voter hardware. Touch screens, traditional lever booths, ...

Increasing the places for failure and fraud. Is someone who can't understand a simple "fill in the circle" ballot going to actually check a machine printed form to make sure every entry is right? Why not just fill it in by hand? It's not that hard. Really. It isn't.

Full paper trail, full disclosure, completely separate machines to print and count the votes, and a complete human-readable official trail to follow later. And its simple.

Yes, fine, have a printer on site so handicapped people can vote more easily, but like I said, this really isn't an electronic voting system, it's paper balloting.

Re:Umm, duh?

[AK+Marc]

There are ways of solving the handicapped voting problem.

Then name them. Having a poll worker actually cast the vote for them? Having a poll worker tell them how to make the mark or whatever so that they can cast their vote? In both cases, it's possible for the poll worker to cast a vote contradictory without the person's knowledge, and even if not, then you have the poll workers knowing their votes (something I'm told repeatedly that anonymity is more important than almost anything else). So feel free to tell me some of these ways you would solve the problem that isn't worse than a handicapped machine off to the side that has capabilities to assist those that would be unable to work a regular ballot.

No, not all the elections are being contested and not all the paper ballots are confusing. That's a gross overstatement.

Yes, you don't state it's untrue, because it isn't. You state it's a gross overstatement because you don't like the implications. Yet it happens. Repeatedly. And with systems that are paper-only.

Nonsense. Low tech solutions with simple failure mechanisms that can be corrected simply are always better than high tech systems with unknown and usually hidden failure modes, and it is not a sign of a lack of impartiality.

So says you. A usable system will have lower input errors than one that's difficult to use. And computers, done right, will always have a better interface than the best paper system.

Easy and simple aren't synonyms for "error free", simply because it is humans who do the count and they make mistakes.

And any attempt to get humans out of the counting to eliminate those errors is met with resistance. So you are saying that you prefer the evil you know than the evil you don't know. I prefer to engineer out the evil.

Re:Umm, duh?

[juancnuno]

I find it funny that we don't trust computers with voting, and yet we trust them with our money. Our rocket launches. Our medical devices.

Re:Umm, duh?

[Ironica]

Ha! My preferred candidate is named 'NEMESIS'!!!! My votes stay!!!!

You voted for Daphne?

Re:Umm, duh?

[jeff4747]

I mean, honestly, how many damned times did they have to recount those "votes", which kept just "being found" to give the election to Franklin in Michigan? Something like 7 wasn't it?

Nope. 1.

There was only 1 recount, and if you'd followed the news closely, you'd know exactly what happened between the election night count and recount that resulted in +500ish Frankin votes.

(Mostly it involved people doing dumb stuff like not running an envelope of ballots through the scanner.

Those kinds of blatant election riggings is what kills a lot of folks belief in elections. My oldest is soon to be voting age and both he and his brother have made it clear they have NO intention of ever voting

This isn't the fault of elections. It's the fault of the parent, and the large quantity of false information drilled into the children.

So why don't we have a lotto? Because our crooked politicians

Easy fix: Vote for other politicians. That's the point of a democracy. Both general election candidates are corrupt bastards? Then stop spending primary election days fishing and vote then.

Re:Umm, duh?

[Ironica]

... And I could give you a corrupt poll official that seems honest, but isn't.

But he's not alone. Ever. The vote-counting procedures are very carefully set up to ensure that. Furthermore, most of that activity (if not all of it) is open to observation by the general public.

Re:Umm, duh?

[Ironica]

You are correct. The proposal I'm putting forward (where a voter needs to serially scan perhaps millions of votes) is - at least in principle - just too expensive for vote selling.

I may be misunderstanding what you proposed, but if it's possible for any individual voter to work back from the key on their registration card and what they know their vote was to identify it in a multicast, couldn't they use that then to prove to their employer/spouse/mob boss "Look, there's my vote, give me my money/protection/nookie"?

Re:Umm, duh?

[Ironica]

One of the massive historical problems folks need to solve is "vote selling", which is enabled whenever a voter can prove how they voted to someone else.

Doesn't any place that permits absentee ballots greatly weaken their resistance to vote selling?

You could sell your vote via absentee, that's true, but the person who you're selling your vote to has to not only see how you marked your ballot, but also watch you place it in the envelope, seal it, and put it in a non-retrievable postal collection point. If they don't do the last step, you can just hang onto your ballot, take it with you to the polls on election day, turn it in as a spoiled ballot, and vote however you want to.

So yes, it's feasible (and there are anecdotal cases especially of spouses requiring their SOs to get an absentee ballot for exactly this reason), but it would be fairly difficult to do on any significant scale.

Re:Umm, duh?

[Ironica]

What are you talking about? Democracy is that most people did not want Harper and his reform buddies leading us, especially acting like he had a strong mandate.
This is the idiot who wanted us to go to Iraq because Americans are our friends and if they jump of a cliff we should join them. The same Americans who couldn't be bothered to say thanks when we took in a bunch of them into our households on 9/11 because they were to paranoid to let them land in their own country. They also didn't bother thanking us for all the other help we gave them as well.
Unless you mean that we should just put Harper and friends against the wall?

Canada is like the US's parents or something... we almost *never* hear you argue in front of us. This is a revelation!

(I'd just be feeding the ignorant American stereotype if I said "BTW who's Harper?" wouldn't I?)

Re:Umm, duh?

[Ironica]

Franklin in Michigan

Is this some recount situation I haven't heard of previously, or did you mean Franken in Minnesota?

Re:Umm, duh?

[hairyfeet]

We only have the Dems run here for most posts, the Reps haven't actually run in years. So we are supposed to vote for.....who exactly? And what false information have I allowed to drill into their heads by letting them read the papers and look up politicians records? I mean honestly, have you seen ANYTHING that has come out of ANY politicians mouth lately that hasn't smelled like a paid shill? You might as well have CSPAN run a banner at the bottom saying "this politician was bought from you by" along with the corporate logos of their owners. I mean, last I checked I didn't see citizens screaming in the streets in support of DMCA, Sonny Bono eternal copyrights, giant bailouts to Wall Street, huge earmarks to lobbyists, two giant money holes in the middle east, propping up el presidente style thugs in the third world, etc.

So believe what you want. I never influenced the boys on religion or politics, if I did they would be atheist instead of one being catholic and the other episcopalian. But lucky for me they both have over 140 IQs. Makes it easy for them to smell the bullshit, even if it is being slung by me. I tried to get them to think they can make it better by voting, but they said the two party thing just isn't working. After this last election I have to say I'm starting to believe them. When all you get over and over is the lesser of two evils, you just have to step back and remember that BOTH are still evil! Even my 67 year old mother who has voted in every election since she was 18 says after all this bailout corruption she has washed her hands of it. And again I'm finding it hard to find a rational reason why she should continue voting.

When all the MSM gives time to is Dems and Repubs and both of them are crooks, who the hell ARE you going to vote for? Kodos?

Re:Umm, duh?

[jcgf]

Yes. I am saying that we should put him up against the wall. By "American solution", I meant use the guns not ask them for help - they'd come; but they wouldn't leave afterward ;)

Calling into question...

[gznork26]

...every election that these machines have been used for in each of those 34 states. If the machines should not have passed certification, and yet they were certified (were they?) then the agency doing the certification ought to be brought up on charges as well, and any OTHER systems that they certified ought to be open to question as well. This could get you dizzy.

---
Read my political short stories at http://klurgsheld.wordpress.com/

Re:Calling into question...

[Jah-Wren+Ryel]

If the machines should not have passed certification, and yet they were certified (were they?) then the agency doing the certification ought to be brought up on charges as well, and any OTHER systems that they certified ought to be open to question as well.

No point. The end result will turn out to be like an ISO9000 system - the certifiers had a process and they followed it to the T. The problem is that the process does jackshit. But everybody followed the rules. And the people responsible for creating the rules? Those will be the politicians that voted for the laws that specified electronic voting systems in the first place.

Funny how they admit flaws

[rackserverdeals]

when they lose the election.

Re:Funny how they admit flaws

[noidentity]

Funny how they admit flaws when they lose the election.

Why would they admit non-existent flaws when the machines correctly ignored the votes cast, and properly logged deletions when the machines were being watched?

Re:Funny how they admit flaws

[neurolux]

The flaw is that they accidentally let Obama win.

Re:Funny how they admit flaws

[Kral_Blbec]

What do you mean? They won.

Re:Funny how they admit flaws

[evolx10]

The flaw is that they accidentally let Obama win.

Only if Obama wasn't a tool from the same box as all the past pres', would it be a "flaw". Is Diebold still owned/run/silent parter- by a Bush family person? And they also have a good line of faulty ATM machines.

Re:Funny how they admit flaws

[rts008]

The flaw is that they accidentally let Obama win.

So, you're saying that your NeoCon masters sold your souls to the Democrats?

Shouldn't you be taking this up with your NeoCon/Republican Overlords, instead of bashing the company that promised votes for your side in 2004?

Silly hypocrite, thinking is for real kids.{my apologies to the Trix Rabbit}

*disclaimer*
I am a registered Republican, and have been since the early 1990's. This past Presidential Election was a choice between a shite casserole, or a turd sandwich. I picked the turd sandwich option[Obama] because the shite casserole from the past 8 years left a bad taste in my mouth.
I've seen the light[1], and am glad we seem to be moving that way.

[1]Opening up FOIA, and more; do your own research, but with an open mind for the facts instead of party hype.

So, take another cheap shot, I've Karma, armor, and agility to burn...take your best shot, you stupid git!
Obama has been in office for less than two months. Having to deal with the past 8 years of heinous rule, how can you expect anyone to straighten this mess out in two months or less?
 

Re:Funny how they admit flaws

[geminidomino]

Obama has been in office for less than two months. Having to deal with the past 8 years of heinous rule, how can you expect anyone to straighten this mess out in two months or less?

At least not making it worse?

Re:Funny how they admit flaws

[neurolux]

I just made a snarky little joke and you're going off on me with such anger. I was just joking that DieBold and ES&S wanted McCain to win, but accidentally let Obama win. My Karma is Zero, be easy on me.

American Idol

[Greyfox]

We can vote with high confidence for American Idol but the guys who make our freaking ATM machines can't get it right? Maybe the American Idol guys should be making our ATM machines instead.

Up until the last election it seems that most Americans thought the election for American Idol was more important. I hope that the last election marked a change in this attitude. It'd be nice if we could avoid electing another idiot to high office... Aaah who am I kidding?

Re:American Idol

[Mike+Buddha]

Actually, we have no idea how fair or to what confidence level American Idol singers are voted on. We have nothing except what we're told by the producers.

Re:American Idol

[BigBuckHunter]

We can vote with high confidence for American Idol but the guys who make our freaking ATM machines can't get it right?

Wait.. You think that they actually count the votes for Idol? I was under the impression that they picked whoever had the highest network ratings and simply charged people $1 to 'feel' like they're voting.

BBH

Re:American Idol

[McGruber]

We can vote with high confidence for American Idol

That's because American Idol voters have a real choice to make.

Re:American Idol

[Blakey+Rat]

Out of curiosity, what makes you think we have high confidence on American Idol votes? I've never seen any kind of investigation of independent review of them, do you know something I don't?

Or are you just trying for some "shocking" example without worrying about if your example is even close to correct, much less relevant.

Re:American Idol

[mrsurb]

A few years ago on the Australian version of "Big Brother" a failure in the vote counting process resulted in them "evicting" the wrong person... the evictee went back in, the votes were recounted and the "right" person was evicted: here. The company involved - Legion - is also responsible for Australian Idol SMS voting.

All this resulted in more hype and publicity and advertising dollars for the show, of course.

Re:American Idol

[stephanruby]

We can vote with high confidence for American Idol but the guys who make our freaking ATM machines can't get it right?

ATM machines have an audit trail. When money disappears, somebody freaks out. When a vote disappears, nobody knows.

Maybe the American Idol guys should be making our ATM machines instead.

You mean Rupert Murdoch?

That's a cool idea. I would love to pay $2 every time I vote in a "Fair and Balanced -- American Idol-like" election, and be able to vote as many times as I want so I can enrich Rupert Murdoch even more, and then still have no freaking idea whether my vote(s) and my corresponding money was counted (or not) in the final tally (by the way, in just one popular night Rupert Murdoch has made up to 160 Million dollars just from voting in American Idol alone). Think of how much profit and good he would be able to generate if he was put in charge of the entire US elections!

I would also love Rupert Murdoch to be the one who selects who we're allowed to vote on, and we're not allowed to vote for, based on what kind of indentured servitude contract those candidates were willing to sign with him and Simon before he would even allow them in the room. That would make democracy so cool, and so much more streamlined. I really doubt that Diebold could outdo Rupert Murdoch in that area.

Re:American Idol

[ps2os2]

Do you really want the blond to win the election?? That is worse than what we had for 8 years (but not by much).

Re:American Idol

[RobBebop]

Maybe the American Idol guys should be making our ATM machines instead.

If you want us to take $20 from your account, text your account at 54932-1, if you want us to deduct $60, text 54932-2, and if you want your account to be completely liquidated, text 54932-3.

Somehow, I don't see this working...

Re:American Idol

[mcgrew]

And in addittion to that, who the hell cares who wind American Idol?? It's a trivial "vote" that will NOT affect your life at all. It's only entertainment.

Those elected to office can really screw your life up.

Re:American Idol

[jamstar7]

Actually, we have no idea how fair or to what confidence level American Idol singers are voted on. We have nothing except what we're told by the producers.

Sounds like American politics, same as always, to me.

Dudes, we're SOOOOOOOOOOO very severely fucked!

One Word: Scantron

[indytx]

We can all agree that punch cards are terrible, but there are other alternatives which are secure and accountable. Scantron ballots are used in Texas, and there's always a paper ballot trail of the actual vote in case of a ballot contest. I'm no Luddite, but I've never understood this rush to replace technology that works with the next big thing just because it's the next big thing.

I don't understand

[RichardJenkins]

I don't understand how this companies electronic ballot boxes can be tolerated. Given the history of Diebold stories this announce doesn't surprise me. I'm sure there are plenty of other folks who aren't surprised. I'm damn near certain if there was public access to the code operating these machines then the faults would have been determined much earlier. Surely something is horribly horribly wrong here.

Does this acknowledgement mean that Diebold machines will be retired from service immediately? And, more importantly does it mean that the process which allowed these Diebold machines to be used in the first place will be reviewed?

Perhaps it will mean that the concept of using a machine where most voters don't understand it's workings will be viewed as unacceptable. I doubt it.

Democracy has become a bad parody of itself.

Rant ends.

Re:I don't understand

[flyingfsck]

Simple - a whole generation of voters have been brought up on Microsoft Windows computers and expect computers to be unreliable and error prone and don't care about it.

Re:One Word: Scantron

I'm a Humboldt County resident (where these machines were investigated). The machines with the flaw are the scantron-style voting machines that are built by Diebold. My understanding is that the flaw isn't in the vote collection, it's in the vote tabulation.

I agree with you though that it's nice that at least there is a paper trail to follow unlike with touchscreen voting.

Ha!

It's funny, now that Bush is out of office it seems like all the old cronies that got him in there in the first place are practically tripping over themselves to admit their guilt all of a sudden.

Re:Ha!

Mod the guy flamebait all you want, you know he's telling the truth.

Seems unlikely

[pembo13]

I know the whole don't attribute to malice what can be attributed to ignorance thing. But Diebold is an ATM maker, I find it hard to believe that they were this ignorant. I would think that an ATM would be a more complex device than a voting machine.

Re:Seems unlikely

Maybe they've been skimming cash in their ATMs, and accidentally transferred the scamware over to the voting machines.

Re:Seems unlikely

Their ATMs suck too.

Re:Seems unlikely

[pavon]

The Voting Machine division was acquired from outside, and shares none of the same engineers, management (apart from the top) or accountability with the rest of the company.

Re:Seems unlikely

A 10-year old NCR ATM crashes way less than a shiny new Diebold ATM. Their hardware is cheap and their software unstable, meaning ATMs have to be cloned every 3 months. I can't even imagine how complicated those voting machines are...

Re:Seems unlikely

I know the whole don't attribute to malice what can be attributed to ignorance thing.

Worst advice ever when taken out of context. It's only a rule for maintaining healthy relationships. There is no upside to maintaining any sort of relationship with Diebold except possibly our jailer to their convict.

Re:Seems unlikely

[Chief+Camel+Breeder]

... I would think that an ATM would be a more complex device than a voting machine.

In a ATM, the crucial work is being done back in a data centre, probably on a mainframe using software signed off by an archangel or higher authority. Much less scope for fuck-ups by the ATM maker. Further, bank presumably own the source to the back-end software, so can inspect it; details of transactions can be verified. Further still, the testing process for the whole system has to involve the bank (or their contractors other than the ATM vendor). It's not just a black box

Re:Seems unlikely

[mcgrew]

I know the whole don't attribute to malice what can be attributed to ignorance thing.

I have my own razor - never attribute to ignorance or incompetence that which can be explained by self-serving greed.

Re:Seems unlikely

[jamstar7]

Sounds like plausible deniability to me.

I've seen it

I used to work as a "Computer Audit Analyst" for the Florida Division of Elections, certifying voting systems for use in the State of Florida. Certification for Premier/Diebold, ES&S, and Sequoia was pretty much a given, no matter the fact that their systems are complete shit and the certification process is a joke. Scan a few thousand ballots, have an independent testing lab review your source code, and you're good to go. Google "sequoia yellow button" to see what I mean.

Not to mention the attitudes of the folks who work there. They call people like me "activists" with a sour tone of voice, grudgingly fill public records requests, and the newly-built [2006] voting-systems lab was the size of a damn closet. Think the types of people who think F/OSS is so high-school students have something to tinker with.

Sadly, most American voters don't even think about the voting backend, and are wholly uninterested in the fact that three corporations have a legally-enforced triopoly in voting equipment, sell overpriced shit to the counties, and take legal action against anyone who finds security flaws in their systems.

Re:I've seen it

[fulldecent]

Good thing you are an AC, fulfilling your civic duty by posting this valuable information on slashdot.

Re:One Word: Scantron

[mathx314]

I realize no one method is going to be perfect for everyone, but Scantron is very bad for people like my father, who has crippling arthritis, and me, who has mild-but-occasionally-awful arthritis.

They've admitted lots of flaws.

[palegray.net]

Many of them have represented material breaches of public trust, and have uncovered dishonest development and business practices throughout their organization. Yet they're still selling voting systems to several states. Unbelievable.

Re:They've admitted lots of flaws.

[weicco]

Thank the Creator, whoever he/it may be or not, that Finnish parliament decided to ditch electronic voting after one catastrophic failure in local elections (couple of hundred or so votes were lost and Finnish election law prohibits re-election in this case). Our Minister of Justice told us that no such failures can never-ever occur; it's just "science-fiction" and fearmongering even to consider such a thing! Well, that "science-fiction" just dropped it's "fiction" part.

Re:They've admitted lots of flaws.

[cparker15]

What I find even more unbelievable is that we don't get paper confirmations--receipts--of our votes. When I voted in last year's big election, it was the first time I'd ever voted (I was denied voting access during the previous voting period). After I handed in my ballot to be scanned, I was expecting a receipt confirming that my vote was properly recorded. I got nothing, and the people staffing the polling facility looked at me like I had five heads when I asked if I was going to get a receipt. One woman I spoke to said she'd never heard anybody ask her a question like that before.

Am I just to assume that the machine properly recorded my votes? Where's the accountability in this process? I should be able to audit the public voting record to find my vote. I'm not a person of faith. I need proof. Perhaps that's why many government officials are so supportive of faith-based initiatives?

Re:They've admitted lots of flaws.

[jeff4747]

You don't get a receipt that shows your vote because that enables vote buying.

Today: ${EVIL_GUY} offers to pay you $100 to vote for candidate X. You say "Sure". You then vote for candidate Y. ${EVIL_GUY} has no proof you screwed him. Thus, votes are rarely 'bought' this way.

If you were given a receipt, ${EVIL_GUY} would demand to see it as proof to get your $100. Now votes are easily bought.

Re:One Word: Scantron

[Peter+Simpson]

Hear, Hear.

Touch screen voting is an overpriced, overly complex solution to a problem that doesn't exist.

Mark original paper ballots, then count them by machine for speed. They remain as original, voter-marked, legal documents in case of a recount.

Banned in Germany

The supreme court of Germany (Bundesverfassungsgericht) recently ruled that electronic voting machines are a violation of the constitutional openness requirement.

Re:One Word: Scantron

[geekoid]

Scantron: More then meets the eye.
I mean: Not anything more then meets the optical eye.

Re:One Word: Scantron

[geekoid]

Can't you get someone there to help you out?
Does it really matter if a person there designated to help people knows who you voted for? sure on a wide scale basis that can be bad.

Re:One Word: Scantron

[mtrachtenberg]

These WERE optical scan ballots! The problems were in the counting system

Re:One Word: Scantron

Scantron machines aren't a panacea for curing the ills of electronic voting. There are physical ballots which can be counted manually which is good for auditing, but most states have laws which specify the rules under which a physical recount can occur: evidence of election tampering, and a too-close-to-call election. With respect to the first scenario, a losing candidate will not get standing to have the courts order a recount unless there is evidence of election tampering. But in order to force the state to investigate election tampering you must first present the evidence of election tampering--Catch-22. In the second scenario of close elections, the actual scanned ballots aren't necessarily counted, but just the totals taken off of each scantron machine's tape are compared with the numbers uploaded to the tabulating servers. A scantron machine can still produce vote totals that do not match what the physical ballots show, and the tabulating servers can still be messed with, especially if the tabulating software has sucky/non-existent auditing capabilities like the Diebold versions.

What needs to happen are random statewide audits of various precincts by the state election board (handled by a neutral third-party accounting firm) to make sure that physical ballots match the machine tapes that match the totals uploaded to the tabulation servers. There's still too many weaknesses in the chain to make electronic voting a reliable alternative to pencil and paper.

This is a joke

[jackspenn]

I am not saying we shouldn't fix this problem, but what about a far greater problems that revolve around the fact that non-citizens are voting in US elections and union workers are voting twice in places like PA? Why don't we address bigger proven problems if we are to fix "potential problems" like this.

Re:This is a joke

[m.ducharme]

Because when a flawed machine counts the ballot, every vote tally is suspect, every vote may have been miscounted. This is a much bigger problem than the traditional methods of ballot-box stuffing, because the scope is so much wider.

Re:This is a joke

[shentino]

The real problem, which is unfixable, is that people want to commit fraud in the first place.

A good interim solution would make fraud unattractive.

Right now, I can see a few good moves

1) Make election tampering in any form a federal offense punishable by mandatory prison time of at least a few years, no matter what level of government the office in question exists within.

2) Require periodic security audits of the machines, run by a company that has no connections to either the manufacturer or the government. Also, make it a crime to attempt to influence their evaluations.

3) Anyone who is a certified auditor of voting machines must at a minimum pass a technical competency test involving strong questions in

4) Don't allow an voting machine to be used unless it has been federally certified.

5) If any machine fails an audit, the model in question's certification needs to be revoked promptly

6) Any company that has X number of certs pulled for audit failures should be barred from ever contracting with a government agency for voting work.

7) Voting machine certification standards themselves need to be written by competent engineers, preferably including some ex-blackhats who would know how to break stuff.

Re:This is a joke

[jeff4747]

1- is already in place.

2- How do you get someone with no connections to actually do the work? Somebody has to pay them.

3-invovling strong questions in complete sentences? [/snark]

4- is already in place. The defective machines passed the federally-mandated certification.

5- is already in place.

7- Why write a standard when you can make much more money breaking the machine?

It's not a bug; it's a feature!

[Locke2005]

I'm much more worried that the Diebold system works exactly as designed, which is much more sinister than a "flaw" unexpectedly creeping into the software. I say the developers should either prove this wasn't intentional or go to jail for conspiracy to commit election fraud.

Re:It's not a bug; it's a feature!

Innocent until proven guilty?

Re:It's not a bug; it's a feature!

Plausible deniability... some big $$$
Rigged elections.... priceless

And these clowns also sold their wares internationally?

Re:It's not a bug; it's a feature!

I say the developers should either prove this wasn't intentional or go to jail for conspiracy to commit election fraud.

Unfortunately, we have that nasty little "innocent until proven guilty" thing.

Re:It's not a bug; it's a feature!

Guilty until proven innocent?

Re:It's not a bug; it's a feature!

[sabt-pestnu]

Fortunately we do have a presumption of innocence in the court system. And I don't feel like tossing that out, just to get at a corporation I don't like.

Feel free to prove their guilt, though. I've got popcorn. AND pompoms.

Congratulations

[meist3r]

Really, everyone involved. Good Job.

It is all zeros and ones

It has been my observation that there is an inverse relationship in having computer knowledge and the desire to have computerized voting.

The Diebold software is crap...

[fruviad]

...but the election officials will fight change tooth-and-nail.

Is it because they find it to be a valuable tool?

Is it because the technology does something that no other product or process can?

Or maybe because they get free stuff (i.e. bribes) from Diebold to stay where they are?

Nope. They just don't want to have to learn anything new.

Any change in the processes & technology will be achieved against the wishes of the election officials who should be working for our interests but instead are seeking the easiest path.

A (thankfully FORMER) elections official.

There is a lot of talk, and little action.

[Futurepower(R)]

'The "them" will "do" what they can to steal an election here and there.'

That seems to be the correct interpretation, that the flaws are deliberate. If there were a few defects and they were corrected immediately, that could be accidental. But we've been discussing Diebold flaws for years. Most Slashdot readers, I'm guessing, would be fired for living with something so buggy.

Diebold changed the name of its unit that sells voting hardware and software to Premier Election Solutions. Don't be confused; it's still Diebold.

Re:There is a lot of talk, and little action.

...it's still Diebold.

And Claria is still spyware

Re:There is a lot of talk, and little action.

What am I missing?

INSERT INTO votes (voterid, votevalue)
VALUES ($voterid, $votevalue);

What the hell is so hard?

Re:There is a lot of talk, and little action.

I swear to god this place is in emergency need of online IQ and mental illness tests. There's just so many of you idiots who are living with such farcical views on things, your voice and I suspect your existence as well are just worthless. Yeah, the flaws are deliberate, because the company wanted to lose money and get their machines banned from use. Dumbass. Here's your very first clue in life, try to hang on to it: Programmers work every day in almost every industry with things so buggy.

Re:There is a lot of talk, and little action.

[Seakip18]

Actually, some states still answer to that name. The did spin off their election division but some states already own the old crap so it all still says Diebold. Hell, our training manuals had that name on half of them.

Re:There is a lot of talk, and little action.

[commodoresloat]

Most Slashdot readers, I'm guessing, would be fired for living with something so buggy.

Not me; I work for the government!

Re:There is a lot of talk, and little action.

[AvitarX]

We like to have anonymous elections in the US.

I should amend that, we used to, and legally should be able too. With pre-voting/Lazy absentee (non absent) balloting the percentage of anonymous votes is going down.

I fear for a time not too far away, where the boss wants proof you voted for their candidate to keep your job. With the ability to have proof of who you voted for (ballots are a matter of public record, and absentee ones are not usually anonymous) the option to be anonymous is worthless.

Re:There is a lot of talk, and little action.

[Foobar+of+Borg]

Here's your very first clue in life, try to hang on to it: Programmers work every day in almost every industry with things so buggy.

And here's your first clue. Diebold is in the business of making ATMs. That's right. Literally billions of financial transactions, with multiple options and screens to go through on the UI, are performed every year using Diebold ATMs. Yet, they can't seem to get a simple voting machine to work as it should. And you think there is nothing fishy about that?

Re:There is a lot of talk, and little action.

[story645]

We like to have anonymous elections in the US.

And some unique random # isn't anonymous? Hell, shift the table entries around at random intervals if you're that paranoid.

At my polling place, you sign your name in a book next to your signature, then vote. Unless one of the little old ladies manning the station keeps track of everyone who comes in, there's no way to tag a # to a person. (Granted, my polling place uses the old school lever machines.)

Re:There is a lot of talk, and little action.

[u.hertlein]

And here's your first clue. Diebold is in the business of making ATMs.

Heise security has a story that there's malware around specifically targetting Diebold ATMs running Windows...
http://www.heise.de/security/Windows-Trojaner-auf-Diebold-Bankautomat--/news/meldung/134794 (in German)
http://www.sophos.com/security/blog/2009/03/3577.html (blog entry the article refers to)

Re:There is a lot of talk, and little action.

[itschy]

Well, they are currently trying to elaborate on that cover story by having trojans on their ATMs:
http://www.sophos.com/security/blog/2009/03/3577.html

So they can believably go for the "yes we are THAT stupid" defense.

Re:There is a lot of talk, and little action.

[modmans2ndcoming]

You might think that is funny, but Government projects have the time and money to do actual testing. The DoD standard is Logic Coverage (the one I prefer).

Most private sector projects have to rush to market with their product so they only testing that is done is unit testing IF the developer is able and willing to do it. Integration testing is almost unheard of in most private sector projects.

My buddy works for a company where the core of the system was written by a guy who use to be their network admin and had no Engineering education. The core of the code is a spigetified lump of garbage that no one else is allowed to touch unless they are fixing a customer problem. There is no testing before pushing an update out to their clients... His boss asks him "how do we keep this from happening again" and he always says the same thing "hire 5 more guys, let me and one other dev fix the core, fire the lead, and institute these policies for testing, etc."

Nothing gets done so he is done.

Re:There is a lot of talk, and little action.

[AvitarX]

Makes perfect sense.

I wasn't thinking database ID, but a voter ID for some reason.

Makes perfect sense. I just jumped because I often see solutions that destroy anonymity as the foolproof vote counting solution.

For example the rural indian portable voting machine, which would on the face of it look like a way to give local leaders (non-political) the ability to control the votes of those beneath them.

Re:There is a lot of talk, and little action.

This is based on the assumption that the ATMs are
properly designed. No one has done a public source code audit on them.

But anyway, Diebold security model has been dire for years. They have/had test boxes with source code on the public internet with anonymous login for ages. And by ages, I mean mid-90s to at least 2004 ish. The last time I checked.

This isn't "omg conspiracy". This is "omg they suck".

Re:There is a lot of talk, and little action.

[mcgrew]

Illinois, with a Democrat Governor, two Democrat Senators, and whose state senators and representatives are mostly Democrat, doesn't use Diebold.

I'd like to see a state by state breakdown of which states use Diebold, and how many of those who use Diebold are "red" states.

Re:There is a lot of talk, and little action.

[techess]

Take a look at :

http://dvice.com/voting/

I think their map is great for letting you know who uses what equipment. I'd need to see a little more documentation and research on their part before I'd trust their rankings though.

Re:There is a lot of talk, and little action.

[Golddess]

We like to have anonymous elections in the US.

We do? Maybe it's the fact that I don't get out much, but every year that there's an election, in the months leading up to said election, nearly every house I see has a sign indicating support for a particular candidate.

Sure, you and I may wish for anonymous voting, but given the above, I cannot believe that the majority of Americans do.

Re:There is a lot of talk, and little action.

[Ironica]

(ballots are a matter of public record, and absentee ones are not usually anonymous)

Really? When I've voted absentee (I was living overseas for six months) the ballot itself had no identifying information, just like a provisional ballot (which I've had to use several times, because it took me THREE TRIES and a call to the Registrar-Recorder to change my registration last time I moved). You request an absentee ballot using the detachable post card on your sample ballot, then they send you an envelope and a ballot. the envelope has your identifying info on it, so they can verify they get exactly one ballot for each person who requested one, and *then* they open it up and count your vote. Once the ballot is separated from the envelope, they no longer have any way of recording who *you* voted for.

There's also several people involved in the process of reconciling your envelope and removing your ballot, and they're required to be from different parties. IIRC, it's a public process, so anyone can go and observe if they want to.

Re:There is a lot of talk, and little action.

Oh yeah... they're terrible. I do pen testing and it's amazing how quickly you can compromise Diebold ATMs... they're just Windows boxes that never get patched.

Draft

[Amazing+Quantum+Man]

Won't work. And I'm not talking about politically.

Current military doctrine relies on a highly trained, highly professional force. It's not just hand-the-guy-a-gun.

Draftees won't be able to fit in properly.

Re:Draft

[Drantin]

draftees didn't go to boot camp/basic training?

Re:Draft

[Kagura]

Sure they did, but most of them went against their will or at least in lieu of whatever plans they had for the next few years of their life.

A 100% volunteer military is vastly different from an any-percent-conscript military.

Re:Draft

[Amazing+Quantum+Man]

Did you miss the part about "Highly Professional" in my post?

This explains everything...

[Grog6]

Bush getting elected makes complete sense now...

With the known remote exploits, having the system not log certain events, like clearing the log or maybe overwriting the earlier log, would allow an election to be stolen easily.

Of course, Obama is a lot more net-friendly...

Maybe he stole it back. :)

The time for action is past!

From the random quote at the bottom of the page when I read this thread:

"The time for action is past! Now is the time for senseless bickering."

Seemed appropriate.

NO!

[Jane+Q.+Public]

Paper voting is not perfect but the flaws are known. Electronic voting machines can be given different kinds of flaws from year to year... the long and short of it is, paper may not be perfect but it's a hell of a lot BETTER than electronic systems.

Re:NO!

[dangitman]

I was going to say *woooosh* but then I decided to ask - did you even bother to read the whole post you were replying to before responding? But then I just decided to say woooosh.

Re:NO!

[Jane+Q.+Public]

Yes I did but I mistook that for a tagline.

slot machines

[ffuunnkkyyjj]

Why is it that the consequences of making and/or tampering with electronic voting machines are non-existent while the consequences for putting unauthorized software on a Las Vegas slot machine are harsh? Is grandma's right to slowly lose money more important than the integrity of our elections?

Re:slot machines

Why is it that the consequences of making and/or tampering with electronic voting machines are non-existent while the consequences for putting unauthorized software on a Las Vegas slot machine are harsh?

Is grandma's right to slowly lose money more important than the integrity of our elections?

The state makes a cut of the money from the gambling machines so of course they're very concerned with the correct operation of the gambling machines. Duh!

open source

[Onymous+Coward]

You know it works.

http://openvoting.org/

Seen on a bumper sticker:

[gillbates]

Ignore your rights and they'll go away

Diebold executives could be charged with:

1. Violating the Civil Rights Act of 1964.
2. Graft.
3. Obstruction of justice.
4. Treason.

And this is just off the top of my head. But sadly, this isn't receiving the outrage it should, and I suspect the reason is because Americans have always been largely apathetic to things which didn't directly affect them.

We needn't worry about things like democratic process and the right to vote; if we ignore the problems long enough, we won't have to worry about election fairness, because there won't be any elections. This is how it starts, folks. For that reason alone, these guys should be charged with crimes.

Re:Seen on a bumper sticker:

[witherstaff]

Anyone else feel like it's all a show nowadays? Remember those millions of missing Bush emails the federal courts wanted? Obama is siding with Bush on getting the suit dismissed. Now that's change I can believe in!

With the two party system being virtually identical, 3rd parties getting no real attention, it gets hard to be upset by who gets elected by a buggy machine. Apathy has set in, people won't get upset until they can't watch the next staged "reality show".

Re:Seen on a bumper sticker:

[TW+Burger]

I design and program database systems for sensitive data that have full auditing. Nothing can be changed without being able to tell who did it, when, from where, and what was changed (before and after images). Any competent programmer can do this. What Diebold has done is inexcusable but may not be criminal, it depends on what the specifications of the software were and if intent can be established. This may be just another case of bad project management and cheap, crappy offshore assigned work by another corporation maximizing profits at any cost. My gut reaction in any case is to hang the bastards.

Please note: If you worked as a programmer or project manager for Diebold leave it off of your resume if you had nothing to do with this. Fill in the work gap with "Voluntary Commitment to a Mental Hospital". It will look better.

Re:One Word: Scantron

[dgatwood]

Most of those scanners will detect pen or pencil. Why not just mark it with a Marks-A-Lot or other similar wide-tip marker?

Re:One Word: Scantron

[mathx314]

It's supposed to be a private ballot, and because of the social circles I'm in I frequently know the people running the voting table. Sometimes I'd rather them not know who I voted for.

Re:One Word: Scantron

[mathx314]

I honestly have no idea if those work or not. If they do it sounds like a great solution.

Works much better here in India...

http://www.slate.com/id/2107388/

"Unlike the machines used in the United States, the Indian machines are not networked. Each one has to be physically carried to a central counting center. This takes more time, of course, but reduces the opportunities for mischief. Someone who wanted to throw the election would have to fiddle with thousands of machines, one at a time.

Tampering with each machine is what some computer scientists call "retail fraud." "Wholesale fraud" is when someone rigs the software from the outset or meddles with hundreds of machines at a central tabulation center. Both types of fraud are troublesome, of course, but to different degrees. The Indian machines are vulnerable to retail fraud but, because of the basic design, are much less subject to wholesale fraud."

I guess you never played chess

[zogger]

What is it worth, in terms of dollars and power, to hijack big elections, to wind up owning the government? Now, what is the worth of the entire total electronic voting machine "industry"? Now subtract the second from the first, notice the result... in other words, the real vote hijackers never cared a bit about the potential of losing some penny ante chump change pawn company down the timeline sometime, especially if they were the ones "in charge" of "insuring the integrity of the vote" in the first place...

flatfoot 101, motive, means, opportunity....

Re:I guess you never played chess

What is it worth, in terms of dollars and power, to hijack big elections, to wind up owning the government?

And this isn't just any government -- we're talking about the largest, most expensive, most powerful government AND world empire (with military bases in some 150 countries) that has ever existed.

Re:I guess you never played chess

Rorschach? Question?

Is that you?

Sorry, you lost me when the Gnomes of Zurich were competing against the Illuminati to gain control of the Big Media with the help of the Orbital Mind Control Lasers.

Would you mind going through the conspiracy theory again?

Re:I guess you never played chess

[neomunk]

It amazes me that people can be so completely ignorant of history as to think that groups of people with money and power coming together to make clandestine plans is fantasy.

Read a history book please! Almost everything we've written down as "history" got started by groups of men (with an occasional woman thrown in, moreso recently) planning to do SOMETHING. Add modern politics and electronic communications into the mix and you end up with... people all of the sudden NOT making shady illicit deals with other people for gain? What are you trying to say exactly?

Utopian naivety isn't realism.
 

Re:I guess you never played chess

Utopian naivety isn't realism.

Neither is Dystopian alarmism.

Re:I guess you never played chess

[jamstar7]

Utopian naivety isn't realism.

Neither is Dystopian alarmism.

But dystopian viewpoints are closer to the reality of things. A lot of people think that if you can just get everybody to sit down and sing Kumbaya, we'll all be in perfect shape. Problem is, I just don't see that happening any time within the lifetimes of my great grand kids.

Oh, come on.

[FiloEleven]

You really think Obama doesn't come certified and approved by the Great Old Ones? Look at what he has done and look at who he has appointed. Lizards, every one.

Re:Oh, come on.

[jamstar7]

You really think Obama doesn't come certified and approved by the Great Old Ones? Look at what he has done and look at who he has appointed. Lizards, every one.

At least we know where to go when we need new aligator shoes. Or wallets. Or luggage.

These guys fucked with elections... hang them

[Walkingshark]

You don't fuck with elections. The reason we have elections is so that we don't have to murder tyrants all the time. Its a courtesy to the people in power that we remove them from office with a ballot instead of a razor sharp blade.

When stupid worthless moronic assholes like the ones working at Diebold, who intentially designed their equipment to make elections more stealable, start fucking with the electoral process for personal gain on such a widespread level, the only answer is to convict them of treason and hang them from the nearest high tree.

Re:These guys fucked with elections... hang them

[Just+Some+Guy]

the only answer is to convict them of treason and hang them from the nearest high tree.

I don't have a good counterargument. These people worked hard to subvert the most fundamental principal of our republic: without trusted elections, we have nothing. Given that the losing party in any Diebold-sponsored mock election now has a pretty legitimate grievance, and that we can't really know who we actually elected or which proposals we truly approved or rejected, what's left?

Given that Diebold might well have installed a government unlikely to punish them through the courts, why shouldn't the people responsible for that state of affairs be dragged out of their offices and dealt with? I'm not advocating that anyone actually do this, but I'm very interested in hearing a valid reason why it shouldn't be done.

Terrorism is Job 2

Corruption is what will destroy America.

What's so hard about pen and paper?

Why is America so obsessed with voting machines?

Paper ballots can always be recounted and re-examined. Harder to steal an election then, yes?

Re:What's so hard about pen and paper?

[justinlee37]

They also make it harder to have an election, and as the population grows larger and larger we will have even more difficulty than we did before.

Furthermore, a huge part of what is wrong with this country is the bipartisan system. A large cause of bipartisanism is the notion that a vote for a third party is a wasted vote. We could dispel this thinking through the use of runoff elections. The problem with runoff elections, however, is that every person ends up casting multiple ballots throughout the election season - as many ballots as there are candidates. While this may not be realistic with our paper system, it could be realized electronically. Perfecting electronic voting could revolutionize the democratic process as we know it.

Re:What's so hard about pen and paper?

[jeff4747]

Easier way: Instant runoff voting

Summary: You rank your choices. Let's say there's 5 candidates, and you really want the "Party of slaughtering kittens and beating children" candidate. So you give him a 1. And you give your 2nd choice a 2, and so on.

Your first choice is eliminated due to receiving 3 total votes. So now your "#2" counts as your vote.

If your #2 gets eliminated, your #3 counts, and so on

You still get runoff-style voting, but do it in a single election.

There are other systems that are better at resolving this issue, but they require more voter education to understand the system. So IRV is probably the best one to implement

Timely

[imelgrat]

It's really interesting to know about this because Diebold's Voting Systems are being considered for the next Presidential Election in Argentina, in 2011. This only adds to the really creepy stuff that's going on these days, such as moving Legislative election's date (which violates Argentina's constitution) just to favor the current president. Using flawed electronic voting systems just adds more uncertainty about how people really cast their votes.

why aren't people on trial about this?

Are they allowed to link to this in Australia?
But seriously, why aren't there people on trial
about this?

In Soviet (Stalinist) Russia...

[lordSaurontheGreat]

There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.

And if your goal is the opposite, what is the order in which one removes these boxes from use?

If you're from Russia, chuck out the first two, then just use the last two ad nauseam.

I fear it's a bit worse than that..

.. the impact of who came to power (or likely have hung on for 4 years longer than voted for) has been felt worldwide - they "presided" over an era marked by unprecedented greed, created by loosening practically all known controls, with it pet poodles in the UK happily playing along.

Don't forget that those who rig elections DO SO FOR A REASON - remember the 'ol rule of capitalism; we're in it for the money.

If you would really want to act on the bigger picture you should play a game of "where are they now" - those that have turned a blind eye to the huge helpings of tax money (or to blatant abuse of quite sensible and clear rules) got well rewarded for that. They either have fat bank accounts, fat retirement pensions or got an executive post with fat salaries. The simplest example is one T Blair in the UK, AFAIK he now works as "advisor" at the one US company that has the cash to buy up everyone else on the cheap and thus stands to make good money - while you and I pay for the bailouts (and bonuses) for generations to come.

However, I don't think you stand a chance of unearthing this - they've covered themselves well. Corruption tends to be self sustainable due to shared interest. Oh, and I agree with you to call it treason - who owns large chunks of the US now? Foreigners..

Re:I fear it's a bit worse than that..

[Walkingshark]

Ultimately this is why democracy in its current form has failed. We should really be working hard to come up with a new form of democracy, with checks and balances that allow sufficiently large groups of concerned citizens to do something like appoint a special prosecutor to investigate corruption in the government.

Of course, something like that would be easily abusable.

I don't know. I guess the one thing that we could do right now with off the shelf technology would be to assign to each congressperson, supreme court justice, and high executive branch member (president, vp, cabinet secretaries, maybe undersecretaries) a team of people who would do nothing but record on video and audio with multiple redundancy everything those people do, including recording every bit of binary data they generate and getting photocopies of anything they generate in hardcopy. It would become part of truly serving the public, for the years you are in office you give up your right to privacy, much like the way that soldiers give up rights when they sign up for military service.

I think it would be well worth the expense if it would help prevent corruption. If these people want trust they can buy a fucking dog, we need to watch them carefully while they wield the kind of power we've given them.

Stalin said

Those who cast the votes decide nothing, those who count the votes decide everything.

Wait one moment ...

[freaker_TuC]

... Give them time to change that ;)

This is just pathetic

[BlueParrot]

Usually when software goes wrong I can see that it may be hard. Internet Explorer may be shit when compared to the competition, but then I guess writing a browser may be difficult, I could see how you could mess that up. Similarly having the implementation of an encryption scheme fail, I can see how you coudl mess that up. That stuff is hard.

However, how the fuck do you mess up counting votes? I can see it fail on the hardware end, optic sensors giving wrongr eadings, inkjet printers not working... but failing to write a program that count votes? This is beyond pathetic. From what I've read about Diebold it sounds as if they were too lazy to actually write and audit the software and simply did the equivalent of sticking the results in some generic spreadsheet program.

Minnesota?

[lwriemen]

Conspiracy theory: Diebold releases this admission in order to support Coleman's call for a special election to overturn Franken's win. The special election uses new Diebold machines with "fixed" software (and still no paper audit trail).

They took long enough

[missvolare]

To admit their malfeasance. We've known about this for how many years? I really hope they get put out of business, and the Carlyle Group too!

There is only one solution!

[raalle]

Bailout money!

Clearly, if Diebold had BILLIONS of taxpayer dollars, they could make this work. I mean, come on, it's the best solution, right?

Re:One Word: Scantron

[that+IT+girl]

Is this true? In school I was told it *only* detected a #2 pencil. (Yeah, it didn't make any sense to me either.)
We've been lied to all these years!

[/sarcasm]

Re:One Word: Scantron

Other systems are also used in Texas. In my area (Austin) those damned eSlate DREs are used. No paper trail at all, not even the stupid toilet-paper rolls. I've sent objections to the Sec of State's office, but never get a response.

B*llSH*T!

[hesaigo999ca]

If you open the code and there is no such validation on a deleted command for a ballot,
to log it, then it is not a flaw or bug, just a proof of concept someone wanted to leave a back door open in case they needed to fix an election. I am a software developer and there are many steps you take for integrity that avoids such things, such as placing a flag in the db as IsDeleted instead of actually deleting the records, and your query would be select * from votes where IsDeleted 1.

End of story, we all knew they were fixing elections, this just proves it.

Re:One Word: Scantron

[Just+Some+Guy]

Scantron ballots are used in Texas, and there's always a paper ballot trail of the actual vote in case of a ballot contest. I'm no Luddite, but I've never understood this rush to replace technology that works with the next big thing just because it's the next big thing.

Or why make the technology so complicated in the first place? My proposal: the electronic voting machine prints out a filled-in ballot. You can look at it to make sure the correct circles are filled in and complain right there on the spot if not. Use the machine totals for preliminary results if your citizens demand such things, but use the paper ballots for the official totals. End result: you get the speedy answers people seem to want with the auditability that free elections require.

So.... Who certified them?

Just a question....

Re:One Word: Scantron

[jknapka]

We can all agree that punch cards are terrible, but there are other alternatives which are secure and accountable. Scantron ballots are used in Texas, and there's always a paper ballot trail of the actual vote in case of a ballot contest.

Not everywhere in Texas. In El Paso County (and possibly elsewhere) they use Diebold machines with no paper trail. It also happens to be the case that EP is one of the few TX counties with a slim Democratic majority. I don't know if Repugs took over the election commission in order to get Diebold sh*t adopted here for convenience of election stealing, or if the Dems brought this on themselves.

Who Cares What Diebold Says Now?

The instant Diebold's president said he'd deliver Ohio's votes to the next Republican president, everybody knew there were "flaws" in their voting machines that weren't so much flaws as deliberately engineered methods of manipulating voting results. Nobody who has been following this is the slightest bit surprised, and nobody cares what Diebold has to say about it any more either. It's like the burglar saying "Okay, I did it" ten years after he was caught with the property, arrested, tried, and convicted.

Re:One Word: Scantron

[Ironica]

I realize no one method is going to be perfect for everyone, but Scantron is very bad for people like my father, who has crippling arthritis, and me, who has mild-but-occasionally-awful arthritis.

Here in LA County we're using the Inkavote system, which involves an optical scanner, but the mechanics of marking your ballot are very similar to punch cards. You don't have to press as hard, though, and the stylus makes a VERY dark mark. Always a perfect circle, too.

Until the last couple elections, we just put our ballots into a collection box, but now they have us put them in the reader ourselves... no one ever touches your ballot except you (unless a recount happens).

Democratic

[Doc+Ruby]

The adjective is "Democratic", as in "Democratic governor". Not "Democrat governor".

Re:Democratic

[mcgrew]

The adjective is "Democratic"

What, you think we live in a democracy?