Worst flaw yet in Diebold machines
Experts see new Diebold flaw
They call it worst security glitch to date in state's voting machines and a 'big deal'
By Stephanie Desmon
Baltimore Sun reporter
May 12, 2006
Computer security experts say they have found the worst security flaw yet in the oft-criticized touch-screen machines that Maryland voters will use in this year's elections, leaving one computer scientist to warn that the state should have "stacks of paper ballots" on hand in case of a complete Election Day breakdown.
The machines, made by Diebold Elections Systems, are "much, much easier to attack than anything we've previously said," said Avi Rubin, a Johns Hopkins University computer science professor who first cast doubt on the reliability of the technology in a 2003 report.
"On a scale of one to 10, if the problems we found before were a six, this is a 10. It's a totally different ballgame," he said.
The new problem is being described as an intentional hole left in the system to allow elections workers to update voting software easily. Instead of using pass codes or other security protocols, anyone with access to a voting machine could install new software that could easily disable a precinct full of machines, Rubin said.
Diebold officials say they are aware of the situation and, although they say any problem can be avoided by keeping a close watch on voting machines, they are developing a permanent fix.
Still, said company spokesman David K. Bear, "it's one more what-if scenario. ... It's becoming somewhat ridiculous."
Maryland elections officials said they have known about the latest concerns for two weeks and will have an independent security consultant look into them next week to ensure that the state's Diebold machines are safe.
"We are taking steps," said state elections administrator Linda H. Lamone. She said she is confident that the problem will have little effect in Maryland because of strict rules about who is permitted to handle voting machines in the state. "Everyone that has access to them has to undergo a criminal background check," she said.
Before the Diebold machines were distributed statewide about two years ago, questions arose about whether hackers might be able to get into the automated-teller-like computers and alter their software, allowing multiple votes, vote-switching and other problems.
Computer experts, including Rubin, said security measures were insufficient and poorly designed. Activists pushed to add a paper ballot component to the machines in case a recount was needed.
(The rest is here.)
They call it worst security glitch to date in state's voting machines and a 'big deal'
By Stephanie Desmon
Baltimore Sun reporter
May 12, 2006
Computer security experts say they have found the worst security flaw yet in the oft-criticized touch-screen machines that Maryland voters will use in this year's elections, leaving one computer scientist to warn that the state should have "stacks of paper ballots" on hand in case of a complete Election Day breakdown.
The machines, made by Diebold Elections Systems, are "much, much easier to attack than anything we've previously said," said Avi Rubin, a Johns Hopkins University computer science professor who first cast doubt on the reliability of the technology in a 2003 report.
"On a scale of one to 10, if the problems we found before were a six, this is a 10. It's a totally different ballgame," he said.
The new problem is being described as an intentional hole left in the system to allow elections workers to update voting software easily. Instead of using pass codes or other security protocols, anyone with access to a voting machine could install new software that could easily disable a precinct full of machines, Rubin said.
Diebold officials say they are aware of the situation and, although they say any problem can be avoided by keeping a close watch on voting machines, they are developing a permanent fix.
Still, said company spokesman David K. Bear, "it's one more what-if scenario. ... It's becoming somewhat ridiculous."
Maryland elections officials said they have known about the latest concerns for two weeks and will have an independent security consultant look into them next week to ensure that the state's Diebold machines are safe.
"We are taking steps," said state elections administrator Linda H. Lamone. She said she is confident that the problem will have little effect in Maryland because of strict rules about who is permitted to handle voting machines in the state. "Everyone that has access to them has to undergo a criminal background check," she said.
Before the Diebold machines were distributed statewide about two years ago, questions arose about whether hackers might be able to get into the automated-teller-like computers and alter their software, allowing multiple votes, vote-switching and other problems.
Computer experts, including Rubin, said security measures were insufficient and poorly designed. Activists pushed to add a paper ballot component to the machines in case a recount was needed.
(The rest is here.)
Powered by Blogger
0 Comments:
Post a Comment
<< Home