Diebold Voting Machines Vulnerable to Virus Attack

mcgrew writes "PC world is reporting that Diebold's super-popular voting machines are coming under even more scrutiny. A security review has revealed that they are simply 'not secure enough to guarantee a trustworthy election.' This is according to a report from the University of California Berkley, who did a two-month top-to-bottom review of all California e-voting systems. That's a subject we've discussed before, but Diebold's setup is truly unsettling. An attacker with access to a single machine could disrupt or change the outcome of an entire election using viruses. From the article: 'The report warned that a paper trail of votes cast is not sufficient to guarantee the integrity of an election using the machines. "Malicious code might be able to subtly influence close elections, and it could disrupt elections by causing widespread equipment failure on election day," it said. The source-code review went on to warn that commercial antivirus scanners do not offer adequate protection for the voting machines. "They are not designed to detect virally propagating malicious code that targets voting equipment and voting software," it said.' Oddly, my state of Illinois, long known for election fraud, has paper trails (at least in my county) and according to Black Box Voting doesn't use Diebold anywhere."

waht we've all been wondering...

HOW F*CKING HARD is it to make a secure voting machine?!? The thing counts and keeps track of votes! I bet i could write a secure voting machine that could handle state and federal elections securely in a couple of days in any language from assembly to bas

Re:waht we've all been wondering...

HOW F*CKING HARD is it to make a secure voting machine?

Impossible. Simply because the definition of _secure_ in a democratic voting context means that the electorate is able to verify the process of voting. Since voters at large aren't generally known to possess a computer science and electrical/computer engineering degree, access to the voting machines and the source code for them is not available and also no cryptography is in place so that the voters can verify that the machine they assessed is the same one that was in place during an election, then I have to conclude that building a voting machine that is verifiable by the owners of the machines ("The People") is not possible, thus those machines are not TRUSTWORTHY by definition.

Re:

I'd respond by pointing out that we don't yet have electronic voting in Australia. We use pencil and paper, and the results of an election are normally available several hours after the close of voting.

At this year's federal election there will be a tri

Re:

Local Government here in Victoria must have an electronic system. All votes are by mail.

About 10 years ago in the City of Maroondah I received in the mail about five ballot papers addressed to names like "Jon Q Citizen, Jane C Jones", etc at my address. It

Re:

The number of layers needed would be proportional to log2 N, where N =the number of votes

Adding numbers within a layer is a parallelizeable problem. It can certainly be handled in a pyramid such that the height of the pyramid increases no faster than the l

Re:waht we've all been wondering...

As someone who had been contracted by Diebold, the machines are running Windows, the software is written in Visual Basic, and the database is Access. And no, this isn't a troll.

Re:waht we've all been wondering...

As someone who had been contracted by Diebold, the machines are running Windows, the software is written in Visual Basic, and the database is Access. And no, this isn't a troll.

god help the future of democracy.

List of Diebold Vulnerabilities

The follow is a list of attacks or hacks which the Diebold machines are known to be vulerable to:

Sneezing in their vicinity,
Looking at them cross eyed,
Armpit farts,
Dancing counterclockwise around them,
Voting,
Sarcastic comments,
Pixie dust,
My mothe

Re:

Perfect. They decide to code something that people have always tried to hack (voting) with the most insecure operating system on the planet.

And people wonder how in the last election the exit polls somehow didn't agree with the final vote counts.

It's

Re:

I can vouch for that as someone else who works for a company contracted by Diebold. All of their machines (voting and other types) run Windows CE. And no, that is not a good thing.

Holey shiiiittt!

God damn it, I was hoping to sell my vote for a couple of bucks but now, I realize that some script kiddy is going to screw me out of even that little compensation.

Why bother even going.

So they tally way more votes that voters... Hwo gives a fuck?

It would

Re:

Access does use SQL, but it's interpreted in part by the Windows software component: Microsoft Jet.

Programming Visual Basic over Access is first year Windows programming. I took this class, and I just wanted a networking education - worked out however sinc

Re:

HOW F*CKING HARD is it to make a secure voting machine?!?

If one makes the foolish initial decision to use an inherently untrustable device like a computer in the first place, then it comes down to one's choice of an operating system. Diebold chose Windows [zazzle.com]

Re:

I understand your frustration, but in the world of electronic voting, everything that can be tampered with and go undetected is considered insecure. That's basically every computer system I've seen so far. Also, don't forget DoS like attacks, because not b

MisUnderestimate

A corp that makes secure ATM machines designs and builds machines using ZERO of their ATM experience or technology which is on par with a high school student project (I saw the leaked software many years ago; that was totally under reported.)

This is not the typical play stupid situation that sells so well in the USA. This is clear-cut intentional negligence and I shouldn't need to go into the many possible motives for anybody to pull such scams. This isn't even that other large voting machine company who elected their own OWNER!

The difficulty is NOT making a computer COUNT or securing the totals, they distract you with the irrelevant technical details. Its in WHO YOU TRUST to implement, maintain, and secure the system that is the unsolvable difficulty (I for one, will welcome our evolved computer overlords when they take over...)

The ultimate purpose for Rube Goldberg designs is POWER (job security and customer lock in being most common motives.) When you place the power in the hands of a few you always run into trouble. IRONICALLY, the purpose for democratic voting is totally being forgotten in this pseudo debate about how the publicly inaccessible voting system operates!

Canada figured it out; however, I'd like to see a weighted voting system well implemented. Also, I would like to see a new kind of elector system so my friends can just give me their votes; its hard enough to get them to the polls on a WORK DAY... (yes, the pro-"democracy" USA never respected democracy enough to make election day on par with memorial day. Irony has become redundant.) While I'm at it, I'd like senators to go back to state appointment because the intent was to prevent an all powerful federal government.

Re:

See my post higher up the thread. Their ATM's aren't as secure as you think either.

Re:

HOW F*CKING HARD is it to make a secure voting machine?!?

Pretty f*cking hard, I expect. The problem is roughly equivalent to making a secure DRM system, which everyone on Slashdot claims is near-impossible. In both cases, you need to give someone physica

Re:waht we've all been wondering...

I bet i could write a secure voting machine that could handle state and federal elections securely in a couple of days in any language from assembly to bash!

Bonus points if you can write it in INTERCAL [catb.org].

Re:what we've all been wondering...

HOW F*CKING HARD is it to make a secure voting machine?!? The thing counts and keeps track of votes!

I cannot see WHY they feel they have to network them to accumulate the results. Best way to propagate a virus: wire them all together (or, worse, through the internet - however "secure" the connection).

I still can't see anything wrong with using the machines to accumulate the votes and then polling each machine, by hand, to copy the tallies - having enough witnesses from all parties will keep the results accurate and they can still be communicated to the appropriate location as they've always been.

I thought the main purpose of new machines over the older mechanical ones was the reduction of complexity of the machines (hence increasing their reliability), accessibility by the handicapped, and ease of recounting (just run the forms through another scanner and see if they total identically) - at least that's the line parroted by our idiot secretary of state (bysiewicz, Connecticut).

It's obvious that machines wired to each other can be more completely tampered-with than individual machines, SO WHY DO IT?

Re:

HOW F*CKING HARD is it to make a secure voting machine?!?

Not very hard. But such a system would not be based on Windows or any normal version of Linux, or any other such operating system. The underlying code should be programmed as firmware which means

Re:

i'll use a functional programming language and write proofs for my functions. ... and use spell check.

Is it just me

Or is this basically the same story as the one cmdrtaco posted a couple of hours ago (and is still on the front page)?

Re:

No. It's not just you. It's not actually a dupe, but it's a new angle on the same article. Part of the problem of continually producing articles as the news develops, is having to produce dupe articles to add new important details to a previous article.

I w

Re:

"Part of the problem of continually producing articles as the news develops.."

Yup, especially when the eds (hello Zonk...) don't read (see /. ad nauseam) their own site. //end rant

Of course you're right that, as news comes in, new information germane to th

Re:Is it just me

This is true.

However, I think self-redacting/auto-revising article text is a bad idea. Have you ever lurked on (for example) the Associated Press feed and watch an article headline slowly morph from "Bush puts off decision" to "Bush faces tough decision" and finally end up as "Bush makes decision" while the text, in which he clearly puts off the decision, stays static? I have. Or worse yet, both the headline and the body texts change according to an agenda.

There is pressure being brought on news agencies to make those changes, which are becoming commonplace. This is the danger of Internet publication in the information age. It becomes unreliable. It's too easy to change it.

So I prefer a news feed to retain previous revisions so I can get a good idea of the reliability of the news source. If there's an update, I expect it to be published as a separate note, not superseding the article text in place. I expect the act of publication to have permanent consequences, not be an act that you can wash away with something more responsible at a later date.

My expectation, of course, is not realistic. It is borne of growing up with a print media. The only logical expectation is that Internet publication will be abused, and that "print media" is now less reliable, because it is no longer in print. I only ask that you understand the consequences of your demand that Slashdot "clean up" their articles. Your desire for "clean" can rapidly turn into an engine for censorship and yellow journalism.

I can assure you of one thing: that CowboyNeal's article will fall off the bottom of the page soon enough, and you can then feel at ease.

--
Toro

Diebold dupe?

Surely related to this article?

http://it.slashdot.org/article.pl?sid=07/08/04/143 1205 [slashdot.org]

Even worse

The even scarier part is that the Diebold machines have not been decertified [sfgate.com].

it gets worse

it gets worse, the current version still uses at least two hard-coded passwords -- one is "diebold" and another is the eight-byte sequence 1,2,3,4,5,6,7,8 [freedom-to-tinker.com] .

Awesome!

Which are they using, WPA or WEP?

I wonder if UC Berkley would recommend *BSD?

I personally think the University in question should recommend a virus-free system, designed and tested to be very secure... that they wrote.

(Any number of non-windows OSes would fit, but the *BSD family just fits so well here.)

Edison was still wrong

I would like to repeat myself by saying that voting machines should have never been permitted to be used in elections. Edison got his rejected, so why allow Diebold?

If you ask me, it's just pointless. Why can't the state government(s) just get rid of the machines and reinstate the good ol' paper votes like they used to? Do they REALLY want to keep on using Diebold machines and/or voting machines in general?

Re:

Well Edison was so late 19th-early 20th century. We have to "update elections for the computer age" and "build a bridge to the 21st century". Apparently this means loading elections onto a bus and driving them over just as our new bridge collapses.

idea for an absolutely secure voting machine.

Here is my idea for an absolutely secure voting machine. Each person who goes into vote gets a token. Made of radioactive material. This material is heavily controlled, and outside the voting machine you have SWAT teams with geiger counters, and obviously anyone wearing a foot of lead is busted.

Voting consists of dropping the Uranium into one of several lead boxes which contain giant magnets to keep someone from trying to alter votes by moving tokens from one box to another. At the end of the day, you read the results digitally with a geiger counter. Every party can be there with representatives, disagreements can be sorted out on the spot with a manual count in front of a multiparty committee. 100% foolproof.

Basically, I got the idea from Bruce Schnier, who observed that it's not such a bad idea for people to keep their passwords written down on a piece of paper in their wallet. After all, people already know how to keep their wallets secure.

The US Military already knows how to keep weapons-grade plutonium secure. Basically, my idea is to just piggy-back on that, to keep voting secure.

A lot of people like to stick with old, low-tech stuff, don't have the will to try anything new. "What about the radiation poisoning" they would no doubt whine. Well I say progress consists in throwing out what's old and "safe" and being bold. [diebold.com]

Here's mine

Main machine consists of a screen, CPU and printer. It only prints ballots, and doesn't count anything. Ballots are printed in a human and computer readable format, in an easy to OCR font. No barcodes or anything hidden. Perhaps in different ink colors to

As Stalin might say

Those who cast the votes decide nothing; those who choose the isotopes decide everything.

Also how will you stop someone from slipping in a beryllium ballot? It won't trip the Geiger counters on the way in and in the presence of alpha radiation it fissions

And the mushroom cloud goes

up fine.

Where are you planning to have a CRITICAL MASS of voters?

I think I would give your voting booth a wide berth.

I can just imagine the reporters covering the explosion. (Well some of them will be doing it from afar and claiming a victory for Al Queda.

Super-popular?!

'Common' ne 'popular'

Why the hell use a "real" computer?

The purpose of a voting machine is to increment integers and later add them together. There's no excuse to use anything more complex than 74xx logic chips...

Insecure

If we're admitting that those machines are vulnerable to hacks, is there any guarantee they weren't hacked before...say in 2004?

And if so, should this not call into question the legitimacy of the reigning monar^H^H^H^H democratically elected Shrub on Penns

USA geeks please take action

Please, if you are a USA geek and care about the integrity of your democracy, force the public to take notice. You think they are going to care if people say that something is theoretically possible? No, they think it's a conspiracy theorist, or, at best, "The government would never let that happen, would they? I'm sure somebody is taking care of it." The only way to fix this is to make the public realise that this directly affects them. Otherwise they are too apathetic and myopic to do anything about it.

So rig the next election. And I don't mean for Mickey Mouse, that can easily be caught and covered up on the day. It has to be a landslide for a believable candidate. Write an encrypted letter to your local newspapers beforehand that explains what you are going to do and how you are going to do it. Leave a marker on the system to prove that you were there, and mention it in the letter. After the election, send them the key that decrypts the letter, proving that the recent landslide was totally rigged. For bonus points, own up to it instead of doing it anonymously, but only do this if you have an impeccable public persona. Rosa Parks wouldn't have had quite the impact she did if she dealt weed on the side.

If you don't do this, somebody less honest than you will. They may already have done it. The only people who can solve this are honest American geeks.

DUPLICATE

This is a duplicate of the (still front-page Slashdot) story [slashdot.org] posted by CowboyNeal.

Please post a story about the Secretary of State's decision [ca.gov] restricting the use of these machines.

Three systems were reviewed.

There were three source code reports released -- for Diebold [ca.gov], Hart [ca.gov], and Sequoia [ca.gov], not just Diebold. All three systems had serious weaknesses, including viral propagation vectors. All of the reports are worth checking out.

Shhhh, God damn it. There does my bid to get

"Pedro Sanchez" nominated and elected to the Federal Gummint.

Do you realize how many favors he would have owed me?

I would have been able to sleep with ALL of his sisters AND his mother AT THE SAME TIME.

Aw squat...

Re:

At least we wouldn't need to get a slogan beyond "Vote for Pedro".

Dubya's little brother made sure FL has diebold.

FL, not known for election fraud because of creative media hijinks, is rife with election fraud.

in 2000, Volusia County, FL had one precinct count up (er down) -16,000 votes for Al Gore. That's Negative Sixteen Thousand.

It was allowed to pass in the final

New slogan

Maybe Slashdot should have a new political section slogan: "Politics for nerds. Your vote doesn't matter."

On the other hand, with a screwup like this, maybe Ron Paul will get the majority of votes on election day. Or maybe a write-in candidate like Micke

Re:

"If I ever wanted to commit fraud in the election system, I would have. And that would not need to involve hacking a machine"

The catch is, the fraud that you would be committing (registering as a non-citizen) would only affect the election by at most 1 vo

Re:

The danger in using insecure voting machines is that a single fraudster can swing an election by many votes, making it much more likely that their intervention affected the final outcome.

And yet this is just want the GP-post wants — a centralized s

Re:

Until voting is centralized, managed entirely by the government, with better security mechanisms in place, it's very easy for anyone to commit fraud. People just have not thought about it yet.

No, I thought of it when I stole an election last year. I only d

Re:

Actually, they cannot vote for whatever they want. An elector who changes their vote to someone other than who they "pledged" to elect is called a "faithless elector." 24 states have laws on the books to punish faithless electors. See the Wikipedia Artic [wikipedia.org]