Bruce Schneier: Our Election Systems Must Be Secured If We Want To Stop Foreign Hackers

Okian Warrior writes: Bruce Schneier notes that state actors are hacking our political system computers, intending to influence the results. For example, U.S. intelligence agencies have concluded that Russia was behind the release of DNC emails before the party convention, and WikiLeaks is promising more leaked dirt on Hillary Clinton. He points out, quite rightly, that the U.S. needs to secure its electronic voting machines, and we need to do it in a hurry lest outside interests hack the results. From the article: "Over the years, more and more states have moved to electronic voting machines and have flirted with internet voting. These systems are insecure and vulnerable to attack. But while computer security experts like me have sounded the alarm for many years, states have largely ignored the threat, and the machine manufacturers have thrown up enough obfuscating babble that election officials are largely mollified. We no longer have time for that. We must ignore the machine manufacturers' spurious claims of security, create tiger teams to test the machines' and systems' resistance to attack, drastically increase their cyber-defenses and take them offline if we can't guarantee their security online."

Better idea

For something as important as voting, how about paper only? And another thing, we should really do vote-by-mail nationwide just like Washington state does it.

Re:Better idea

[Rockoon]

This. Paper ballots. Number 2 pencil. No chads.

Re:Better idea

[Dutch+Gun]

Can't blockchain technology work to validate electronic vote authenticity and integrity? It seems this would be a pretty good application for it here, to ensure electronic voting transactions couldn't be altered. Of course, authentication is the real problem, as we don't yet have an ID systems that allows for good public/private crypto yet. And of course, there are too many forces working against actually making sure voters are properly authenticated as citizens, on both sides, but for different reasons.

So yeah, in the meantime, paper ballots by mail, indelibly marked with ink (not pencil).

Re:Better idea

[StillAnonymous]

Do you realize that there are still many people who do not have a cell phone, mainly the elderly? There are also people without bank accounts.

Re:Better idea

[ihtoit]

there is no reason to prefer ink over pencil. In fact, pencil is safer because of the ever present risk of water ingress - graphite marks are impervious to it. Also, at what point do you think a ballot is going to be adjusted? When it goes into the box, that's it, it doesn't see the light of day again until it reaches the counting hall, in the interim the box itself has at least two pairs of eyes on it at ALL TIMES and the chain of custody is rigorously audited for every single box.

Re:Better idea

[gweihir]

Incidentally, that is how it is done all over Europe. Works well.

Re:Better idea

Paper trails would stop domestic hackers. We only want to stop foreign hackers, the domestic ones help us choose the right candidate.

Re:Better idea

[fustakrakich]

Yeah, ink is more permanent. Otherwise I could fill out my tax forms with a pencil, and the IRS won't complain.

Re:Better idea

[MyFirstNameIsPaul]

You can also use the same ink type used in Fisher Space Pens.

Re:Better idea

[Dread_ed]

Agreed. Bruce gets this completely wrong. The answer to security in this is not greater and more complex levels of security and secrecy. It is the exact opposite that will create the security we need, namely openness, transparency, and simplicity.

I was also thinking that an "opt-in" secret ballot would be and interesting way to reduce the error bars on the problem. Since many are already rabidly dedicated to a certain party, why not give those brainwashed minions the option of grandstanding for their overlords by allowing them to cast a non-secret ballot?

Re:Better idea

[Dread_ed]

Election fraud could hand Trump the presidency and there will be no way to prove it. That is a fact.

So you are only worried if election fraud helps Trump get elected? What is wrong with you??

Re:Better idea

Moving everything to the smartphone is the new method to force people into carrying a tracking device.

Re:Better idea

[fustakrakich]

I'll let you debate that with yourself.

Re:Better idea

[DarkOx]

The secret ballot is the only effective control anyone has come up with to prevent vote selling or exchanging.

If you can't prove how you voted its difficult to sell you vote because nobody will trust you. Similarly its difficult for someone to coerce your vote because they can't control you while you are in the booth, and have only your word you did what you were 'supposed' to.

This is why I am ardently opposed to all these absentee ballot early voting measures. Absentee ballots should be for people who can't be present at the polling place because they are away or infirm only. They should be rejected unless they carry a post mark from at least 20mi from your polling place or are accompanied by a signed statement on pain of prejury that you were physical unable to be present for medical reason (yours or someone you were caring for).

What we should to make sure everyone can vote is split it over two days, and bar exit polling. Additionally make it a holiday and require all employers to make a 1/2 day of vacation available for all employees on one of the two election days, no exceptions.

Re: Better idea

[sirlatrom]

You could do the same with electronic voting, e.g. by breaking the machines or not supplying them on time. Difference is, it's obvious that someone is cheating if when you show up there are not enough ballots, whereas glitches in the software may be either accidental or intentional, this making it much harder to call whether someone is manipulating the result.

Re:Better idea

[Dread_ed]

No need to debate. I am against any and all types and forms of election fraud. This is fundamentally because I believe in freedom, fairness, self determination, and the rule of law. I will not support disenfranchising my American brothers and sisters, regardless of whether or not they agree with my political leanings.

Thank you for your candor in admitting you are fundamentally dishonest and are willing to sacrifice our electoral system in support of whichever candidate you support. You really had me going with the first part of your post and I almost fell for it. I thought you actually were concerned about a fair election and vote counting process.

Re:Better idea

While I basically agree in principle about absentee and early voting; in practice I always only use an absentee ballot (even though my polling place is two blocks away) because I refuse to use the shitty-ass electronic voting machines they switched to after the 2000 election.

Re: Better idea

Bruce is not calling for greater complexity and secrecy. He is calling for better security. And in this case that includes the most transparency.

Re:Better idea

[Megol]

No conspiracies needed - as PEOPLE want to have easy digital votes.

Re:Better idea

[fustakrakich]

*sigh* Take it as you like...

Trump is the fraud, a complete and utter fraud, the best argument against majority rule ever, on display for the whole world to see. Comparing his numbers to Johnson's can only confirm that.

*I know what that comment will get me, but fuck it.*

Re:Better idea

[epyT-R]

Paper is simple, easy to understand, and hard to manipulate on a mass scale. Not so with crypto.

Re:Better idea

[smugfunt]

bar exit polling

Why on Earth would you do that? How will we tell when an election has been stolen?

Re:Better idea

[DarkOx]

Because if you don't it will only make the west coast problem we have now worse. People will simply stay home if they thing their candidate is to far behind.

Re:Better idea

[Dutch+Gun]

Then whoever controls 51% of the mining, controls the election. I dont see how this is a good idea.

Bitcoin != blockchains. There is no "mining" in a generic blockchain, nor any notion of "51% = control". Those are Bitcoin-specific implementation details.

A blockchain is just a digital ledger that's been encrypted in such a way that you can't alter previous entries without invalidating the entire results. Essentially, it's a way of preventing someone from going back in time and "cooking the books". Think of it as a set of data entries sorted by time, each digitally signed, with the results depending on the results both on the current block AND the signed results of all previous blocks. If you try to alter an earlier figure, the digital signature doesn't match.

Although blockchains are decentralized by nature (sort of like Git), you can certainly designate one source as "authoritative" (like a repository on GitHub). So, in the case of elections or banking, there would obviously be an authoritative source that only permitted valid changes to be made, even if the ledgers themselves are decentralized. In the case of Bitcoin, the authoritative source is actually an algorithm, but in the case of an election, it would probably just be encrypted personal information and who you voted for.

Re:Better idea

[smugfunt]

People will simply stay home if they thing their candidate is to far behind.

Ah, you're worried about exit polls being published before the polls close. That shouldn't happen, I agree. But they should be taken, preferably at every polling station.

Re:Better idea

[HiThere]

Sharpies are definitely better. Even better would be Bingo Markers (easier to put a big dot of ink in the right place.)

I *think* the GPs suggestion of No. 2 pencils was a joke. Those are definitely erasable, though there is usually a mark left even if you use an art-gum eraser followed by an India-rubber eraser.

Re:Better idea

[HiThere]

No conspiracies are *needed*. I'll agree with that. But there are existing conspiracies that would quickly take advantage of the increased scope for their exercise. Two of the conspiracies exist within the Democratic and the Republican parties, but I have no reason to believe there aren't others.

Re:Better idea

[HiThere]

But only anonymously, which means you don't allow small numbers of votes to be reported. Only aggregates.

For that matter, I'd be in favor of paper ballots being the official vote, but electronic counts (possibly via a scanner system) being used to collect "exit polls". And interview based exit polls by an independent party being used to validate the official exit polls.

Re:Better idea

[Dutch+Gun]

Yeah, good point. You'd want just a validation hash of someone's identity so it couldn't be reversed.

When I say "invalidates the entire results", I don't mean it destroys the blockchain. Rather, I meant that any illicitly modified blockchain can be easily detected as invalid. A better way of putting it is that the electronic ledger is essentially "tamper-proof". It's impossible for anyone to modify any piece of the ledger without invalidating the entire thing - and because the ledger is widely disseminated (that's the "distributed" part), no one can replace the *entire* ledger without someone noticing such a drastic modification. It's sort of like how changing a single bit in any file, no matter how large that file is, will result in a completely different hash value. A blockchain is just a way of using cryptographic-quality hashes to incrementally validate data as it's entered.

So, to answer your question, no, you don't have to run the election again. :)

Re:Better idea

[Dread_ed]

I don't disagree with you on the subject of Trump. I also don't think the other offering is any better, just a different flavor of ass if you will. I wanted Bernie. Still do.

Regardless, I won't sacrifice my values and I am not a "the ends justify the means" kind of person. That kind of thinking got us our current choice between Tweedledee and Tweedledum, among other things, and put Trump in a good position to actually win.

Re:Better idea

[CastrTroy]

The fear is that someone might swap out the pen for one with disappearing ink. That's why pencil is used.

Re:Better idea

[swillden]

For something as important as voting, how about paper only?

We actually have solutions that are much better than that. This wasn't true a few years ago when the whole voting machine fiasco started, but that discussion provoked a fair amount of research into secure voting systems, and security and cryptography experts have proposed a number of systems that provide verifiable end-to-end integrity. Each voter can verify that his or her vote was actually included correctly in the final count -- but without being able to prove to anyone else how he or she voted (important to mitigate vote buying/coercion). Each candidate/party can fully audit the ballots before the vote and the count after the vote, and audit results are provably correct.

The most thoroughly developed system is Chaum and Rivest's (this is the Rivest who is the "R" in "RSA") "Scantegrity" system. It actually does use paper ballots, slightly modified traditional "Scantron" forms. Rather than just filling in the bubble with a #2 pencil (though you can do that, and that will work, and it will only sacrifice one form of verifiability), instead bubbles are filled with a special marker that reveals a code. That code can be recorded by the voter and used by the voter after the election to verify that the voter's vote was counted correctly. Ballots are counted by normal Scantron scanners, and can easily be verified by hand.

But, thanks to the additional auditing steps (which rely on serial numbers on ballots and some carefully-defined processes) it's not possible to inject additional ballots into the process (no ballot box stuffing), nor to "lose" ballots, without detection. The system does make allowances for absentee and mail-in ballots, and has been used in a real election to verify that it's fully practical.

For more details about Scantegrity, see http://scantegrity.org./

And another thing, we should really do vote-by-mail nationwide just like Washington state does it.

There are signficant risks in that. OTOH, it doesn't seem like Washington is actually seeing them. Still, I'd move very carefully on that one.

Re:Better idea

[fustakrakich]

The fear is that someone might swap out the pen for one with disappearing ink.

Genius!

Re:Better idea

[rtb61]

Pencil is fine. When it comes to counting those paper ballots the security is really easy to set up and pretty fool proof. A paid election official counts the vote and that count is checked and monitored by volunteers of the people seeking to get elected. The process is after all about people and as many people as possible should be involved in the process which is why in most reasonable countries elections are on weekends and are more of a social event. The idea is to put people back into the election process, to get them involved in deciding policy, to get them to pay attention to the initial selection process for representatives and of course to vote.

The reality is that politics should be the number 1 topic of discussion for everyone as everyone's does depend on it, fail to pay attention to politics and it can kill you and can on this world be considered the singular most dangerous threat to human life, not asteroid impacts, not extreme storms, not even volcanoes or even global warming, just ignoring politics until millions upon millions die in the aftermath.

Re:Better idea

[ihtoit]

I'd rather use the Russian method.

Re:Better idea

[DarkOx]

Well okay being able to censor the publishing of exit poll data would do the trick, but there are probably free speech issues, and preventing leaks in the internet age would be nearly impossible.

Its probably easier legally speaking to pass a law that says you can't exit poll than the other options.

Re:Better idea

[ihtoit]

not only did the Russians use graphite pencils prior to 1968, pencils were also used on all Mercury and Gemini flights. They were replaced with the Fisher pen for Apollo and subsequent missions while the Russians used grease pencils for a year before ordering a hundred Fisher pens in 1969. And NASA never spent a dime on space pen development, that was all Fisher's work, paid for out of his own pocket. (sources: Snopes, NASA)

Re:Better idea

[swalve]

Who cares? The other parties can do that too.

Re:Better idea

[swalve]

You obviously know nothing about the united states.

Re: Better idea

[jsh1972]

Graphite pencils tend to break and leave shavings and graphite is conductive. Not something you want floating around a zero g environment with high O2 levels and lots of electronics.

Paper ballots in Canada

[diodeus]

In Canada we use standardized paper ballots across the nation. They're counted manually in each poll.

Re:Paper ballots in Canada

[buck-yar]

How exactly is Al Franken in office again?

Re:Paper ballots in Canada

[PolygamousRanchKid+]

In Canada we use standardized paper ballots across the nation. They're counted manually in each poll.

So what happens with the manually counted votes afterwards . . . ? They get entered into a computer system somewhere.

Back to square one.

Re:Paper ballots in Canada

[ihtoit]

This.

Re:Paper ballots in Canada

[Gojira+Shipi-Taro]

Because it's the Year of Al Franken.

Re:Paper ballots in Canada

[sconeu]

I thought it was the "Al Franken Decade".

Re:Paper ballots in Canada

[LynnwoodRooster]

That usually works. But then you get instances like the Rossi/Gregoire Governor's race in WA in 2004 where ballots "discovered" a month after the election got tossed into the mix and just happened to overturn the first - and second - counts of the votes. So where there's a will, there's a way!

Re:Paper ballots in Canada

[dryeo]

In a case like that, go to court and get the results thrown out and hold a new election. In Canada, the Constitutional requirements for elections is fairly loose, basically there has to be an election after 5 years or so (actually it is 5 Parliaments). Governments can call elections any time though the electorate gets pissed off if there are too many elections so usually every 4 years, and courts can throw out election results forcing a new election.
Elections are also much simpler, for Federal and Provincial elections, which are held at different times, you tick off one name for your representative and which ever party gets the most seats forms the government. Given a majority of seats, they can pass basically any law subject to the courts up holding the Constitution and in a minority position, they have to work with another party to pass laws and the important budget. Can't pass a budget, can't be the government and usually an election is forced.

Re:Paper ballots in Canada

[LynnwoodRooster]

Oh, they did, but the judge tossed the case - not because of the actions, but because "proof of intent" could not be established. The US has devolved to where it doesn't matter if you did something wrong - it only matters if you intended to do wrong. Thoughtcrime is more important than actual crime...

Re:Paper ballots in Canada

[aberglas]

Well, in Australia certainly not because the ballot count is supervised by scrutineers, and they communicate totals back to there candidates independently from the government. There is no way things could not add up.

(The senate is a different issue, nobody really knows how that is supposed to be counted so the result is a mystery to all.)

Re:Paper ballots in Canada

[david_thornley]

Because, when the paper ballots were counted very carefully, under very close supervision by both major parties and the State of Minnesota, it turned out that a few hundred more people voted for Franken than Coleman. Simple.

The preliminary announcements can easily be a thousand or more votes off, for whatever reasons (there are millions cast, so the initial reports are pretty darn accurate). The Franken election was exceedingly close, and so that shift decided the election, with no hanky-panky involved. At the top levels of supervision, more Republicans than Democrats were involved, and I'm pretty sure they would have been able to stop pro-Franken cheating.

Re:Paper ballots in Canada

[david_thornley]

He did win re-election with a significantly improved margin of victory.

Hell, we're not even allowed to verify *WHO* votes

Nope. We're not allowed to require voters to produce identification.

"But there's no vote fraud!!!!"

HOW THE HELL CAN YOU EVEN KNOW IF THERE'S FRAUD WHEN YOU'RE NOT ALLOWED TO VERIFY WHO VOTES?!?!

The lack of positive voter identification means US elections don't meet UN standards for free and fair elections.

"if we want to stop foreign hackers"

So, we won't then.

Trump is Russian money, just as Brexit was. America feels it won the Cold War, but Russia - still ever the dictatorship - played the long game. And well.

No, vague DNC spin, not US intelligence agencies

[raymorris]

> For example, U.S. intelligence agencies have concluded that Russia was behind the release of DNC emails before the party convention

Citation sorely needed. The DNC has suggested it's possible Russia was involved. A small security company called ThreatConnect pointed out that one of the tools used had some Russian language strings, meaning that the attacker used a tool which was written by someone who spoke Russian.

"US intelligence agencies" have announced no conclusions and there is scant evidence that "Russia", the Russian government, was involved.

Really?

[Jack_the_Tripper]

How exactly is some random security researcher "US intelligence services", aside from the standard deflection mechanism?

Lack of anonymity

[Cigaes]

Vote-by-mail, or any system where there is no voting booth with official overseer, lacks anonymity.

Voters need the right of keeping their vote secret, but that is not enough. If voters can show who they voted for, they can be intimidated or otherwise induced into voting for someone in particular. They can of course say who they voted for, but they cannot be allowed to prove it to someone else.

That is what the voting booth is for. With generalized vote-by-mail, we would see much more vote buying and small-scale intimidation such as “vote for my stepbrother if you want to keep your job”.

I am surprised that so few people make that connection when the issue arises.

Re:Lack of anonymity

[PapayaSF]

That is what the voting booth is for. With generalized vote-by-mail, we would see much more vote buying and small-scale intimidation such as “vote for my stepbrother if you want to keep your job”.

Another issue is that the elderly in nursing homes and elsewhere are often "helped" to vote by people who actually mark the ballots according to their own preferences.

Re:Lack of anonymity

[fustakrakich]

That's a red herring. Put your vote inside an a blank envelope, inside an envelope with the address and stamp. And at the destination, dump the blanks into a box. Regardless, electronic voting is evil. Paper is the only way.

Re:Lack of anonymity

[FlyHelicopters]

I am surprised that so few people make that connection when the issue arises.

You're surprised that most people are uninformed morons? What planet have you been living on? We have Clinton and Trump as the major party nominees...

Our society is FULL of uninformed morons... The majority of people I speak with have really no idea what they are talking about most of the time, but thanks to the Internet, everyone thinks they are an expert...

This goes both ways, I hear stuff about Clinton and Trump that is wildly untrue, but people parrot what they hear without any critical thinking whatsoever...

Re:Lack of anonymity

It needs to work well enough to stop vote-buying, and it does.

In this respect it's different from absentee ballots, which the person buying your vote can demand you hand over and then mail in for you. And the problem arises because absentee ballots exist, so making them "optional" doesn't help.

It's also different from a system where names are written on ballots, where party bosses could install "fraud observers" or "recount assistants" to record all the votes.

It does not need to work well enough to stop a Mossad attack on you personally.

The important thing is not to slide backwards from the anonymity the current system delivers, and waving hands and saying it's all equivalent and broken is one way to justify backsliding: a pro of some new proposed system that breaks vote-buying-resistance has according to you no cons to counterbalance it.

Re:Lack of anonymity

[StillAnonymous]

You shouldn't be anonymous for the voting process, otherwise you'll get all kinds of shenanigans occurring. People voting twice, ineligible people voting, using someone else's vote, etc. Who you voted for is all that needs to be anonymous.

Re:Lack of anonymity

[MyFirstNameIsPaul]

Your conclusion is wrong, due several factors:

There is no perfect system (nirvana fallacy) and your discussion does not compare the advantages and disadvantages of each system, and instead arrives at a conclusion based on listing disadvantages.

Voters can already be intimidated and provide proof of their vote with MMS, or any of the myriad photo-sharing apps, many of which are now providing end-to-end encryption.

The elimination of the voter being able to prove how they voted through official documentation removes the voter's ability to perform an audit of their own vote's tabulation. Voters uncovering elections fraud outweighs the very small (non-existent? - provide a link to cases of these claims, ever? Appeal to probability much?) vote-buying instances.

Re:Lack of anonymity

[idji]

In California, as in many other US states, voters need to register their political party choice with the secretary of state before being able to vote. Just imagine these databases being hacked.
I think it's a good thing that Turkey has a secret ballot, otherwise many more could be in jail by now.

Re:Lack of anonymity

[Kjella]

There is no perfect system (nirvana fallacy) and your discussion does not compare the advantages and disadvantages of each system, and instead arrives at a conclusion based on listing disadvantages. Voters can already be intimidated and provide proof of their vote with MMS, or any of the myriad photo-sharing apps, many of which are now providing end-to-end encryption.

Not the way paper ballots are done here in Norway at least. You pick a ballot, fold it double so your vote is on the inside but they all look identical on the outside. Then you go outside the booth to get a stamp, not really sure why and then put it in the ballot box. You can of course film yourself picking up the "right" ballot, but you won't be allowed to film your actual placing of the vote. Nothing can stop you from putting the ballot back and picking another one before stepping outside.

The elimination of the voter being able to prove how they voted through official documentation removes the voter's ability to perform an audit of their own vote's tabulation. Voters uncovering elections fraud outweighs the very small (non-existent? - provide a link to cases of these claims, ever? Appeal to probability much?) vote-buying instances.

Outright buying maybe not, peer pressure hell yeah. In this family we vote [party] or all your friends showing off their [party] votes, if you don't show yours you can bet they'll assume it's for [other party] and you'll get punished/teased/blackmailed for it. I think you forget that leaving people will proof would lead to a lot of people sharing and showing off that proof and making life difficult for those who "have something to hide".

Re:Lack of anonymity

[Sique]

That's why any vote is invalid, which is marked in a way that could identify the voter.

Yes, it is known that you went to the voting place, but it is not possible to connect an individual vote with you. Someone willing to buy a vote would have to buy the whole voting precinct and hand out the bribe according to the final result to everyone, even to those who did vote otherwise, because he can't make a difference between the individual voters (or punish the whole voting precinct after the vote goes not according to his wishes), which considerably rises the bar for vote rigging.

Re:Lack of anonymity

[Sique]

The elimination of the voter being able to prove how they voted through official documentation removes the voter's ability to perform an audit of their own vote's tabulation. Voters uncovering elections fraud outweighs the very small (non-existent? - provide a link to cases of these claims, ever? Appeal to probability much?) vote-buying instances.

In all sane voting systems I have been so far, this is easily countered by public counting. If you want to be sure that your vote is tabulated correctly, watch the count, which is performed in public.

Re:Lack of anonymity

[MyFirstNameIsPaul]

That is all speculative conjecture. You are not providing evidence. Your claim does not align with what what I have experienced. My suggestion in no way requires the tabulation state who has voted how, only a method to allow audit by each voter.

Re:Lack of anonymity

[MyFirstNameIsPaul]

The issue of public counting is the same as "publicly available" information, which is that the information is only available to those who go to witness the counting, which means that the real world effectiveness of the audit method approaches zero. Auditing should be as conveniently available as possible to everyone who casts a vote, and an anonymous verification of each vote cast, plus being able to count all votes cast, would provide an incremental improvement in protecting against election fraud.

(It is also worth nothing that public viewing of the vote count is not possible by all voters, because the audit venue cannot support all voters being present, so in the case that there is concern over vote integrity, perps may intentionally fill the venue and prevent others from viewing the audit.)

Re:What is there to protect?

[Z80a]

If they somehow make a third party candidate win...

Remember when journalists dug for the truth?

[xxxJonBoyxxx]

>> WikiLeaks is promising more leaked dirt on Hillary Clinton

Does anyone else remember when journalists actually did research like this? (In a free society, digging up "dirt" on politicians is a GOOD thing.) Where is the Watergate reporting crew when we need them?

Re:Remember when journalists dug for the truth?

What I find funny is everyone is calling Trump a traitor, but no one is going to investigate the illegal handling of campaign contributions the DNC did?

We live in a world where a DNC candidate can take bribes from Russia, lie under oath in Congressional hearings, and illegaly get campaign donations while using her party to prevent her rival from having a chance of winning. She goes free, but anyone who points it out or releases evidence of her wrong doings is the evil person.

I wonder what Clinton has to actually do to get into trouble at this point.

Re:Remember when journalists dug for the truth?

[Kohath]

Reporters don't care if the government makes mistakes or hurts people. The media is on the left. They want more government control of everyone's life, and they want fellow leftists in charge, regardless of how many people get hurt. Telling people about government wrongdoing is only part of their mission when a Republican is in charge. When Democrats are in charge, the media hides government problems and helps run the defense.

Re:Remember when journalists dug for the truth?

Story explaining how Clinton teamed up with State DNC groups so the limits to an individual wouldn't limit the amounts raised, the aggregated group total became the limit. She then took all but 0.56% of it for herself and the national DNC. Of the $143 million raised this way, to avoid the individual limits using the different state people, she allowed the state people to keep $800,000 total.

She broke campaign finance law, remember this next time she brings it up as an issue.

Re:Remember when journalists dug for the truth?

[phantomfive]

What I find funny is everyone is calling Trump a traitor,

Not everyone, half of them, and the other half is calling Hillary a traitor (and both halves are idiotic nincompoops, who haven't the foggiest idea what treason actually is)

Re:Remember when journalists dug for the truth?

[Kohath]

Sanders is very old, very white, and a bit of a crank. The media is not omnipotent. They tell some stories and hide or censor other stories. They don't actually vote for people.

Re:Remember when journalists dug for the truth?

[LynnwoodRooster]

Where is the Watergate reporting crew when we need them?

Well, the one suffering from the leaks ( Hillary! ) was a junior lawyer in the Watergate scandal, so she knows all too well what it can do - and it's certain she's asking her friends in the media to NOT do what Woodward and Bernstein did.

Re:Remember when journalists dug for the truth?

[LynnwoodRooster]

Enjoy!

Re:Remember when journalists dug for the truth?

[HiThere]

From your explanation is sounds like she carefully didn't break the law, but rather exploited flaws in it. I may not be understanding this correctly, though, and yesterday a less explicit post *did* claim that documents in the Wikileaks release *did* show she broke the law. You have caused me to wonder whether that poster was just confused rather than either accurate or lying.

(I'll admit I didn't follow your link. This isn't something that's going to change either how I vote or how I feel about her, but perhaps you could rethink either your explanation or your opinion.)

Re:Remember when journalists dug for the truth?

[HiThere]

I'm not sure that either counts as a traitor by the definition given in the constitution. Neither, however, seems particularly concerned with honesty, honor, or trustworthiness. Or adhering to their oaths of office.

They have probably both committed major felonies, but neither seems likely to be prosecuted for it. (Clearly inviting a major foreign power to intervene in our elections should be a major crime, but I'm not certain that it is, and, IIUC, it would only be treason if we had declared war against them or they had and invasive army on US ground.)

Re:Remember when journalists dug for the truth?

[HiThere]

You don't understand the degrees of right-wingness. I think of Hillary as right wing, but among US politicians she's rather centrist.

Your point about the, neutrality, of the media is, however, quite valid. What people don't seem to understand is that the reporters tend to be leftists, but the editors tend to be slightly right wing, and *their* policies are controlled by the owners to tend to be much more right wing. This produces a stream of news with a variety of different spins applied to the politics, and every single one of those spins is designed to make the stories more "news worthy".

This compounding of distortions of the news generally makes the news less reliable than a magic eight-ball...but a lot more spectacular and specific.

Re:Remember when journalists dug for the truth?

The reason they allow aggregating the donations is because it is for hundreds of people instead of a single candidate. If you are taking hundreds of donations from this "loophole" (I don't like that word because the law was intended that way) and then apply them to a single person it breaks the intention of the law.

So giving $100,000 donation to an individual is illegal beyond the limits. Giving $100.000 to 100 people is fine, well below the limits. After that $100,000 for all 100 people one person gets $99,400 and the other 99 gets $600, I think you are now breaking the intention of the law, and the spirit of the law. At this point if you believe arguing in court that it should be legal because of the wording of the law, you should probably rethink your ethical standing on issues. You would almost think they passed the law worded this way with the intention of breaking it this way. Remember the people abusing it are the people who wrote it, and they are writing other laws they can benefit from that will screw you over.

If someone breaking election laws, or taking bribes from Russia, or lying under oath to Congress doesn't bother you and you still think she is the best person to run this country, nothing I say will change your mind. Just remember when the problems you have with the NSA breaking laws now gets worse, you helped put in the person who believes laws are for you the citizen, not her and her people in the government.

Re:Remember when journalists dug for the truth?

[HiThere]

But do remember that saying "it breaks the intent of the law" isn't the same as saying "it breaks the law". And the problem with "intent" is that it's no explicitly demonstrable. It like handwaving during a mathematical proof. Perhaps the step is justified and perhaps it isn't. I wasn't there when they passed the law, so for me to claim to know their intent would be inaccurate, but I'm cynical enough to suspect that many who helped write the law were aware of precisely this loophole, and if that were true, would using it really be against the intent?

If you were claiming that doing this was unethical I'd have no problem. Laws, however, *should* be explicit. Of course they should also be readily understandable, and there shouldn't be so many of them that nobody could reasonably be expected to know them all. There are lots of valid criticisms of both the system and of Hillary, but this doesn't sound like one of them...not as a legal point.

Re:What is there to protect?

[myowntrueself]

If they somehow make a third party candidate win...

The whole point of electronic voting is so that its unsecure and the ruling elite can use that unsecurity to ensure they stay in power.

Now that foreign players have entered the fray theres no telling what will happen next. Perhaps the ruling elite in the USA may find themselves unseated in an electronic coup!

false positivity?

[sittingnut]

" U.S. intelligence agencies have concluded that Russia was behind the release of DNC emails "
actually "u.s. intelligence agencies" and nsa director have NOT said anything so positive on the subject, deliberately.

here is clapper himself on hyperventilating media on this.
https://www.youtube.com/watch?...

i would be skeptical of conclusions of people making false statements such as the one quoted,without the qualifications.

Re:false positivity?

[pupsocket]

This may be because they themselves are the actual culprits and have yet to decide whom if anyone to frame.

It has been harder over the years for me to convince myself that I did not build for the Central Intelligence Agency the prototype (or maybe just a mock-up) of the first internally-mounted peripheral that issued an alternate vote count to be used in U. S. elections.

Subsequently there was an attempt to draw me into some project, but that meeting did not last a full minute, because it began with bragging about a recent operation involving the mass electronic surveillance of delegates to national party conventions.

A career in impunity had so deranged them, they thought this little secret would flatter me, then a nineteen year-old politically involved American. Instead it shook me and sent me hiding in the woods for weeks for fear of being murdered for knowing what I should not know.

No one in the succeeding decades has assured me that my fear of assassination was unfounded.

And no one has ever treated the relevelation of the party-surveillance as anything but a personal misfortune for me rather than a national crisis and a mandate for investigation. A forced sympathetic smile has been the deepest response so far. Former or future occupants of such positions as Attorney General of United States, Supreme Court Justice, and Presidential Science Advisor have all heard about it from me, but it's never had any effect on anyone's to-do list.

Re:false positivity?

[Dread_ed]

I can only imagine what you could have accomplished by playing along, amassing proof, and revealing it not to those people in the government that perpetrate and participate in these heinous actions, but to the PEOPLE who, ostensibly, still run this country as stated in the Constitution.

Don't get me wrong, I don't hold it against you in any way and I might have reacted the same as you in the same position. It just reinforces the fact that we need more people like Snowden who understand what a gift this country is and who are willing to put their lives on the line to defend us and the concept of freedom from the psychopaths that are in our own government. We should treasure them, not allow the institutions who transgressed against all of us dictate how they will deal with him and the people like him.

Re:false positivity?

[pupsocket]

Fifteen years later the CIA tried to recruit me again. It wasn't a long conversation. All they talked about was the immense money I would make as an international business operator. Nothing about helping the country.

Re:false positivity?

[Areyoukiddingme]

Fifteen years later the CIA tried to recruit me again. It wasn't a long conversation. All they talked about was the immense money I would make as an international business operator. Nothing about helping the country.

John, is that you?

Re:What is there to protect?

[afgam28]

I agree. The article conflates two separate issues: 1) the hacking of voting machines and 2) the leaking of DNC emails. The first is a real problem that needs to be avoided because it is a direct attack on a democracy.

But the hacking of the DNC servers led to more transparency and a more informed public, who were made aware of corruption within the Democratic Party. These are good things. Hopefully future DNC leaders will think twice before acting this way, and if they continue to do these things, hopefully there will be more leaks. The long-term result is that it makes the Democrats, and the US political system in general, better.

Sure, the DNC leak was a "biased" attack on one party, but so is any news article. Why does it matter if the information came from Russian hackers, an internal whistleblower, or the free press?

DDoS catastrophe?!

[IHTFISP]

Wonder what would happen if the BernOut Bros could somehow stage a DDoS attack on electronic voting machines across the nation? What a beautiful media circus that would be!

Re:Hell, we're not even allowed to verify *WHO* vo

[PolygamousRanchKid+]

HOW THE HELL CAN YOU EVEN KNOW IF THERE'S FRAUD WHEN YOU'RE NOT ALLOWED TO VERIFY WHO VOTES?!?!

In scenic Camden, New Jersey, lots of folks who have been dead for years still vote. I think that is very liberally progressive from Camden, New Jersey, that they let Zombies vote.

Re:No, vague DNC spin, not US intelligence agencie

The identity of the hacker(s) is not very relevant to Schneier's point. There are players out there who are quite interested in either influencing the results of the elections or just making mischief, and the US is not well-protected against these parties.

Time and a place

[ihtoit]

There are situations where technological advances do make life easier, and more accountable, and fairer for all. The democratic process is NOT such a situation. For fuck's sake, can we forget this voting computer bullshit and get back to PAPER ballots and HUMAN counters, which has been time-proven for the last two fucking millennia??

Re:They are not "FOREIGN"

[ihtoit]

if you're going to ask a security question, who better to ask than a security guy?

Or are you planning on asking him for advice on spinal surgery while you're there?

Re:Hell, we're not even allowed to verify *WHO* vo

[ihtoit]

ID not required in England. Just a verbal confirmation of name and address, which is indelibly checked off a list as you are being passed your ballot and directed to the polling booth. You don't need ID for postal ballots either, which IMO is where the process breaks down since postal voting is a relatively new thing, designed to cater for the lazy and the fraudster. Ever worked in a mail office?? Any idea how many envelopes one person can stick and stamp in an hour??

Verifiable/secret E-voting

[NetAlien]

"David Bismark has co-developed an electronic voting system that contains a simple and reliable method of verification." http://www.ted.com/talks/david...

Re:Verifiable/secret E-voting

[david_thornley]

Right now, in my state, we've got a simple and reliable method of verification, since the ballots are paper, and are preserved while the election is in doubt. There are random precinct-level recounts, and mandatory recounts for particularly close elections. The ballots are electronically counted and tabulated for the preliminary results, but can be independently checked later. I consider this a simple and reliable method of verification.

More importantly, I can explain this verification to, say, my cousins and my mother-in-law, and they can understand what's going on and what's keeping the actual voting fair. Any electronic scheme that leaves paper ballots that the voters prepare and deposit into a sealed container is equivalent, but if there's no paper the system is an unreliable black box to most voters.

Come to Britain

[Bruce66423]

We've never abolished paper ballot, and our method of execution - until we stopped doing executions - was hanging. In both cases the USA has abandoned the traditional methods to be 'up to date' and 'modern', and as a result made a pig ear of things; no hanging chads in a British election, and no extended, messed up executions with hanging as long as the rope is long enough when the person drops that their neck is broken by the drop. But no, our rebellious ex-colonists think they know better ;)

Re:What is there to protect?

[MyFirstNameIsPaul]

I didn't read the article this way. He is just pointing out popular, direct evidence of hacking political activities to build support for increasing security of the election infrastructure.

Re:No, vague DNC spin, not US intelligence agencie

[myowntrueself]

The identity of the hacker(s) is not very relevant to Schneier's point. There are players out there who are quite interested in either influencing the results of the elections or just making mischief, and the US is not well-protected against these parties.

Quite probably some of those parties were involved in its creation and deliberately set it up to be unsecure. So then what? They are supposed to put aside their vested interest and allow it to be secured so they can't fuck with it? Hardly likely!

Re:No, vague DNC spin, not US intelligence agencie

[phantomfive]

Sure no evidence, except for the whole stack of damning digital forensics evidence.

What stack of evidence?

Re:What is there to protect?

[Dread_ed]

Hopefully future DNC leaders will think twice before acting this way, and if they continue to do these things, hopefully there will be more leaks.

They will think twice, but not about changing their actions. They will just become more clandestine and untraceable in their actions. They learned from Nixon (why didn't he just burn the tapes?) to cover their tracks well (disappearing hard drives, wiped severs, documents stolen from the national archives, etc. ad nauseum.)

However, as the American people increasingly choose and support partisan-ism as a surrogate for law, order, and justice the need for our leaders to conceal their misdeeds becomes less relevant. What I mean by this is that each time we allow our elected officials to get away with actions that even appear improper (much less that are violations of law) not only do we embolden them to engage in further abuses, but we anesthetize ourselves to the abuse. They become part and parcel of the landscape, eventually we internalize those abuses, and we learn to live with it, accept it. Furthermore, and most horribly, when someone in government does something even more outrageous than the last debacle, it is not compared against an absolute reference point like the law, or decency, or even what is acceptable. Increasingly, bad actors and their misdeeds are compared against the worst actions of past leaders and politicians.

How can a nation continue to improve when the reference points for the future actions of our leaders are the failures of our previous leaders?

Secure Voting Systems?

[kenwd0elq]

The only thing that most electronic voting systems "secure" is funding; lots and LOTS of money. The voting machines are trivially hackable, provide no possible way to do an audit trail, are quirky and failure prone, and HIDEOUSLY expensive.

We need to go back to paper ballots and require positive identification in order to vote. The only thing that the Democrats are trying to accomplish in opposing voter ID requirements is to encourage voter fraud.

Re:Secure Voting Systems?

[aberglas]

Your first paragraph reads like a sales blurb for the machines. It does not imply the second paragraph.

Re:No, vague DNC spin, not US intelligence agencie

[LynnwoodRooster]

You know, all that testimony of the DNC and Hillary! s staff that said it's the Russians. That evidence. And it's digital evidence because you can read their claims on the Internet!

Re: No, vague DNC spin, not US intelligence agenci

[AgNO3]

I like to make facts up in my head also. I know it was a simbonese hacker using russian software to create an escalation. OR not. Unfortunately Russia is a deflection from the racist anti semitic emaIls that do actually exist, as well as the clear intent to undermine Sanders. When your enemy tells the truth, it's still the truth. Russia even if evolved didn't write the emails.

Re: No, vague DNC spin, not US intelligence agenci

[AgNO3]

So the real content of anti semitic racist emails doesn't matter at all? The DNC hasn't even tried to claim them as fake. Truth is truth no matter the messenger.

Re:No, vague DNC spin, not US intelligence agencie

[Fire_Wraith]

Crowdstrike, FireEye, and a few other higher profile security companies have also implicated named Russian APT groups. You are however correct that no US intelligence agency has made any public statement about attribution, nor any private ones that have been made public.

All the government/intelligence community has said officially is that "they're investigating it."

But it wasn't the russians who compromised your

[Punto]

it wasn't the russians who compromised your elections, it was one of the political parties, by sabotaging itself, and "the russians" (yet to be clear if it was actually the government) are the ones who exposed it. This is a pretty bizarre spin on the actual facts. If anything failed you, it was the FEC and the journalists whose job was to investigate and expose this, the foreign actors actually helped you out.

Re:But it wasn't the russians who compromised your

[david_thornley]

The DNC did not sabotage itself. It ran business and politics as normal, and had its internal workings exposed. All political processes are ugly on the inside. If you were to read the RNC's emails, you'd find similar things. Many times you're far better off not knowing a portion of the truth, when you don't know the rest.

The FEC's job is not to regulate how parties select their nominees. Its job is to enforce the laws, and I rather doubt they strictly regulate a party's internal and non-financial practices.

US Intelligence...

[Bartles]

...has said no such thing. James Clapper said. ""I don't think we're quite ready yet to make a call on attribution," Clapper said at the Aspen Security Forum in Colorado. "There are just a few usual suspects out there." Additionally, he said, "We don't know enough to ascribe motivation regardless of who it might have been.""

We need to ELIMINATE electronic voting

[rickb928]

There is no security, only obstacles in excess of the value of the successful assault.

Anything secure will need non electronic verification, which will fail if voters don't confirm their ballot. Which they won't.

Paper can't be compromised so easily. Writing the numbers down in a public process could work. . We just have to adopt transparent elections.

And in the words of a brilliant realist, "yeah, like that's gonna happen".

Hacking the DNC was stage 1

[fgouget]

There is no point hacking electronic voting computers if the result is not plausible. That's why anyone rigging the election will not make their candidate win with 99% of the votes. But even a candidate winning with 50.5% of the votes is implausible if he normally gets 5% of the votes. And implausible results trigger investigations, lawsuits... and reelections. That's no good.

So the first step is to rig the campaign so that the result you want will at least seem plausible. You can do that by helping your candidate, disrupting its opponents, or at least causing enough of a disturbance to make the result seem uncertain.

Hacking the DNC can do all that: discreetly leaking select information to his team can help them optimize their communication without even realizing who is the source ; the gathered information can also been used another team to disrupt the Democrats campaign ; and then making the leak public when it's no longer useful can cause enough of a disturbance to further muddle things up. No well softened, the public will be ready to accept any result.

Of course this is just a conspiracy theory. But today Trump is seen as having a good chance of winning the elections which seemed totally unrealistic not so many months ago. Just saying... So if he wins you'll now stage 2 was successful too ;-)

Secure our voting machines from the commies :)

[tetraverse]

"Bruce Schneier .. points out, quite rightly, that the U.S. needs to secure its electronic voting machines, and we need to do it in a hurry lest outside interests hack the result"

Well then, you shouldn't have handed the contract to Diebold *, who ran the voting machines on Microsoft Windows with no full irrevocable paper audit, so anyone and his dog could delete ballots.

* "I am committed to helping Ohio deliver its electoral votes to the president next year.", Walden O'Dell CEO Diebold

How To Rig An Election In The United States

Obligatory Computerphile link

[hotrodent]

Why Electronic Voting is a BAD Idea

First Things First

[NewYork]

Voting != Democracy
http://m.timesofindia.com/indi...

That link doesn't say what the article says it

[sabbede]

does. The "U.S. intelligence agencies have concluded that Russia was behind the release of DNC emails" links to a story about what the DNC's consultants said, not a "U.S. intelligence agency".

Re:What is there to protect?

[david_thornley]

The DNC hack was a threat to democracy. It is necessary for political organizations to be able to discuss things in secret. Leaks are always going to show the people whose email is hacked in an unfavorable light, since private expressions are less sanitized than public ones. Since the DNC was hacked in this case, that makes the DNC look bad. If the RNC emails had been hacked, the RNC would doubtless look roughly as bad, perhaps better, perhaps worse.

The DNC is a political organization, and it was pretty obvious that they favored the Democrat in the race, as opposed to the Independent, and the more electable of the two. (Clinton has had crap thrown at her for decades, while Sanders hasn't faced the same level of lies, half-truths, and general vituperation, and would be vulnerable to attacks on eeevil soshulists.) Their purpose is to help come up with the best nominee.

There's evidence the DNC hacks came from Russia, and Wikileaks is a foreign organization. It looks to me like there's people outside the US who badly want Trump to win, enough to do dirty tricks, and I'm not happy about it.

Otto von Bismarck said that people who like laws and sausage should watch neither being made. The leaks provided us with very graphic pictures of the sausage factory.

Re:What is there to protect?

[david_thornley]

Are you implying that law, order, and justice are violated by not being strictly neutral in a nomination race?

If you think this sort of thing doesn't go on all over, you're painfully naive. If you think a political organization can function with full transparency, you're overidealistic. If you let crimes and misdeeds committed by foreigners to influence you during the electoral process, you're unpatriotic.

Re: No, vague DNC spin, not US intelligence agenci

[david_thornley]

If I knew more about you, I could no doubt construct a completely true narrative that would make you look like an asshole. You can lie with the truth; it just takes more skill. Goebbels wanted to have truth in his propaganda, because it made it more convincing.

It simply isn't true that we're better off the more true statements we know, if the statements have a systemic bias.