CA Proposes Rigorous Voting Machine Testing 172
christian.einfeldt writes "During her successful campaign for California Secretary of State, newly-minted California Elections Czar Debra Bowen spoke repeatedly of the need to use free open source software in voting machines to ensure the integrity of California's elections. Now that Secretary Bowen is acting on that campaign pledge, closed-source voting machine vendor Diebold worries aloud that rejecting its black-box voting machines could snarl California's elections. Diebold's concerns come at the same time that it is suing Massachusetts for declining to purchase those same voting machines." Quoting: "California's elections chief is proposing the toughest standards for voting systems in the country, so tough that they could [have the result of banishing] ATM-like touch-screen voting machines from the state. For the first time, California is demanding the right to try hacking every voting machine with 'red teams' of computer experts and to study the software inside the machines, line-by-line, for security holes."
novel idea (Score:5, Insightful)
One principal of a democracy (Score:4, Insightful)
Now unless you teach everyone how to program I don't see how you can preserve this principal.
Unaccaptable failure rate? (Score:5, Insightful)
Heck, from what I've read, they've had problems with more than 10% of the diebold machines.
At least with an automark type system you still have the paper ballots to fall back on, even if a voter might require assistance to fill it out.
When a diebold type device malfunctions you have the potential for lost and/or erronous vote information, not to mention that NO votes can be taken.
Re:novel idea (Score:5, Insightful)
e-voting must be as strong as paper (Score:5, Insightful)
Any replacement system must preserve the strengths of a paper ballot.
This means
In practice, this means the voting hardware and software must be open to public inspection. The same goes for the procedures used by voting officials.
It also means to the extent possible, the entire process must be observed by interested and neutral parties. Obviously the actual voting must be done in secret but anything that doesn't reveal an individual's vote should be observed. Those things that cannot be easily observed, such as actual electronic count, must be repeatable by another method, such as a hand-count, with the same results.
Funny thing (Score:5, Insightful)
Re:Yet another CA standard... (Score:3, Insightful)
Re:Yet another CA standard... (Score:3, Insightful)
The fact that you bought such a care tells me that you looked at the cars that did not meet the California emissions tests and said "No thank you".
What probably happened is that the majority of the people in the country with needs similar to yours thought that cars should meet California's tests. The few people that did not want the cleaner cars had different needs then you did.
You don't have a beef with California, you have a beef with the majority of AMERICAN citizens. And you personally were still offered a choice to pick another car, but decided not to.
Why don't you stop blaming California, and start taking responsibility for your own actions
Re:Yet another CA standard... (Score:3, Insightful)
Interestingly, I can purchase a car in Connecticut, drive it to California, register it, and pass a smog check.
Vehicles with California emissions and vehicles without are smogged to different specifications, even here in California.
The restriction only requires new cars sold in California to conform to different standards.
I live in a county which has spectacularly good air quality, and it happens to be within California.
The worst air quality that I'm aware of in the US is in Houston.
What we need is a slot machine... (Score:4, Insightful)
A casino would never field a slot machine (even a 1c machine) that was as insecure as a Diebold voting machine.
The security model for a slot machine is rock solid. The hardware and software (source included) must be submitted and approved by each jurisdiction. The security model ensures that if even one bit in the software has been corrupted, the machine ceases to function. The cash-in and payout of each machine is redundantly logged. The machines are completely power tolerant, meaning you can cut the power at any time; when the power is restored the machine will come back up in exactly the same state that it was in before power loss. The machine can print tickets (for a paper trail), as well as talk securely over a network.
Basically, all the requirements we'd like to see in a voting machine are the same that a slot machine already conforms to. There's no reason to re-invent the wheel here, most of the work has already been done.
Re:e-voting must be as strong as paper (Score:3, Insightful)
Re:Yet another CA standard... (Score:2, Insightful)
We'll keep our kooks, you keep yours and we will both be happy. I hope.
Treason (Score:3, Insightful)
I believe that California shouldn't have to demand transparency, I think that we citizens have implicitly expected transparency all along.
Donate to the Open Voting Consortium [openvotingconsortium.org], they've been working with Debra Bowen and many others to fix the system.
Re:As much as I dislike CA.... (Score:2, Insightful)
Your post (to me at least) smacks of bashing those damn hippies without saying so directly. If you're really pissed about the situation, place the blame on the car companies, where it belongs.
And this is again making an assumption, but you seem to be pissed that programmers are gonna be pouring over this code. WTF? Do you really think that this is some big negative inconvenience, or is it just west coast bashing? I just don't see the problem.
Re:Good idea (Score:3, Insightful)
The next step would be to check and make sure that the intention the code works with is the intention the people desire.
-Rick
They'll "study the software inside the machines"? (Score:3, Insightful)
Re:e-voting must be as strong as paper (Score:3, Insightful)
* validation and verification of all equipment and procedures concerning the vote
In practice, this means the voting hardware and software must be open to public inspection. The same goes for the procedures used by voting officials.
Re:Good idea (Score:4, Insightful)
Re:Pre-Hacking (Score:3, Insightful)
Re:They'll "study the software inside the machines (Score:2, Insightful)
This situation is unacceptable in critical systems' embedded software. Not only is the source subject to audit, but the entire compilation and installation process is as well.
That doesn't quite fit my definition of "simple" (Score:3, Insightful)
Perhaps you might not have heard the story of the king and the toaster [netinteraction.com]?
This may not be quite that bad, but the point still stands: Don't use more technology than is needed to solve the problem. In this case, it's much simpler than you suggest:
In fact, if you were clever you could even combine steps 1 and 4, saving a line at the supervisor's table.
Oh, and don't give the voter a copy to take home, unless you want supporters for the "wrong" party to start getting their pillows replaced by severed horse heads. "I've got a very good deal for you, and all it needs from you is one little piece of paper . . ."
Re:Shouldn't this be obvious ? (Score:2, Insightful)
Re:One principal of a democracy (Score:3, Insightful)
We do not now, nor have we ever had, any system to verify votes. We can count them again, certify them, but never verify them. Until I, as a voter, can see how the state counted my vote, no vote is ever verified. They may count my ballot twice, but I can never know who they count it as having voted for. True anonymous verification is a system where I can identify my vote, but no one can determine how I voted.
Re:This should be so simple... (Score:3, Insightful)
Those laws are often struck down as unconstitutional, and for good reason. If you are an American citizen who doesn't have an ID (which you cannot constitutionally be required to own as a direct result of our right to privacy), you should still be able to vote. More practically, from a statistical viewpoint, people with lower incomes and the elderly are surprisingly likely to not have IDs. You might say, "Well, if they want to be able to vote, they need an ID," but if voting laws disenfranchise even one person who has done nothing wrong, they have already gone too far.
Re:novel idea (Score:3, Insightful)