[Home]  [Headlines]  [Latest Articles]  [Latest Comments]  [Post]  [Sign-in]  [Mail]  [Setup]  [Help] 

Status: Not Logged In; Sign In

The Media Flips Over Tulsi & Matt Gaetz, Biden & Trump Take A Pic, & Famous People Leave Twitter! 4 arrested in California car insurance scam: 'Clearly a human in a bear suit' Silk Road Founder Trusts Trump To 'Honor His Pledge' For Commutation "You DESERVED to LOSE the Senate, the House, and the Presidency!" - Jordan Peterson "Grand Political Theatre"; FBI Raids Home Of Polymarket CEO; Seize Phone, Electronics Schoolhouse Limbo: How Low Will Educators Go To Better Grades? BREAKING: U.S. Army Officers Made a Desperate Attempt To Break Out of The Encirclement in KURSK Trumps team drawing up list of Pentagon officers to fire, sources say Israeli Military Planning To Stay in Gaza Through 2025 Hezbollah attacks Israeli army's Tel Aviv HQ twice in one day People Can't Stop Talking About Elon's Secret Plan For MSNBC And CNN Is Totally Panicking Tucker Carlson UNLOADS on Diddy, Kamala, Walz, Kimmel, Rich Girls, Conspiracy Theories, and the CIA! "We have UFO technology that enables FREE ENERGY" Govt. Whistleblowers They arrested this woman because her son did WHAT? Parody Ad Features Company That Offers to Cryogenically Freeze Liberals for Duration of TrumpÂ’s Presidency Elon and Vivek BEGIN Reforming Government, Media LOSES IT Dear Border Czar: This Nonprofit Boasts A List Of 400 Companies That Employ Migrants US Deficit Explodes: Blowout October Deficit Means 2nd Worst Start To US Fiscal Year On Record Gaetz Resigns 'Effective Immediately' After Trump AG Pick; DC In Full Blown Panic MAHA MEME noone2222 and John Bolton sitting in a tree K I S S I N G Donald Trump To Help Construct The Third Temple? "The Elites Want To ROB Us of Our SOVEREIGNTY!" | Robert F Kennedy Take Your Money OUT of THESE Banks NOW! - Jim Rickards Trump Taps Tulsi Gabbard As Director Of National Intelligence DC In Full Blown Panic After Trump Picks Matt Gaetz For Attorney General Cleveland Clinic Warns Wave of Mass Deaths Will Wipe Out Covid-Vaxxed Within ‘5 Years’ Judah-ism is as Judah-ism does Danger ahead: November 2024, Boston Dynamics introduces a fully autonomous "Atlas" robot. Robot humanoids are here. Trump names [Fox News host] Pete Hegseth as his Defense secretary

Science/Tech
See other Science/Tech Articles

Title: New security glitch found in Diebold system - Officials say machines have 'dangerous' holes
Source: http://insidebayarea.com/search/ci_3805089
URL Source: http://insidebayarea.com
Published: May 10, 2006
Author: Ian Hoffman
Post Date: 2006-05-14 22:56:46 by BTP Holdings
Keywords: None
Views: 29
Comments: 1

New security glitch found in Diebold system

Officials say machines have 'dangerous' holes

by Ian Hoffman, STAFF WRITER

Elections officials in several states are scrambling to understand and limit the risk from a "dangerous" security hole found in Diebold Election Systems Inc.'s ATM-like touch-screen voting machines.

The hole is considered more worrisome than most security problems discovered on modern voting machines, such as weak encryption, easily pickable locks and use of the same, weak password nationwide.

Armed with a little basic knowledge of Diebold voting systems and a standard component available at any computer store, someone with a minute or two of access to a Diebold touch screen could load virtually any software into the machine and disable it, redistribute votes or alter its performance in myriad ways.

"This one is worse than any of the others I've seen. It's more fundamental," said Douglas Jones, a University of Iowa computer scientist and veteran voting-system examiner for the state of Iowa.

"In the other ones, we've been arguing about the security of the locks on the front door," Jones said. "Now we find that there's no back door. This is the kind of thing where if the states don't get out in front of the hackers, there's a real threat."

This newspaper is withholding some details of the vulnerability at the request of several elections officials and scientists, partly because exploiting it is so simple and the tools for doing so are widely available.

A Finnish computer expert working with Black Box Voting, a nonprofit organization critical of electronic voting, found the security hole in March after Emery County, Utah, was forced by state officials to accept Diebold touch screens, and a local elections official let the expert examine the machines.

Black Box Voting was to issue two reports today on the security hole, one of limited distribution that explains the vulnerability fully and one for public release that withholds key technical details.

The computer expert, Harri Hursti, quietly sent word of the vulnerability in March to several computer scientists who advise various states on voting systems. At least two of those scientists verified some or all of Hursti's findings.

Several notified their states and requested meetings with Diebold to understand the problem.

The National Association of State Elections Directors, the nongovernmental group that issues national-level approvals for voting systems, learned of the vulnerability Tuesday and was weighing its response. States are scheduled to hold primaries in May, June and July.

"Our voting systems board is looking at this issue," said NASED Chairman Kevin Kennedy, a Wisconsin elections official. "The states are talking among themselves and looking at plans to mitigate this."

California, Pennsylvania and Iowa are issuing emergency notices to local elections officials, generally telling them to "sequester" their Diebold touch screens and reprogram them with "trusted" software issued by the state capital. Then elections officials are to keep the machines sealed with tamper-resistant tape until Election Day.

In California, three counties ‹ San Joaquin, Butte and Kern ‹ plan to rely exclusively on Diebold touch screens in their polling places for the June primary.

Nine other counties, including Alameda, Los Angeles and San Diego, will use Diebold touch screens for early voting or for limited, handicapped-accessible voting in their polling places.

California elections officials told those counties Friday that the risk from the vulnerability was "low" and that any vote tampering would be revealed to voters on the paper read-out that prints when they cast their ballots, as well as to elections officials when they recount those printouts for 1 percent of their precincts after the election.

"I think the likelihood of this happening is low," said assistant Secretary of State for elections Susan Lapsley. "It assumes access and control for a lengthy period of time."

BUT SCIENTISTS SAY THAT IS NOT NECESSARILY TRUE.

Preparations could be made days or weeks beforehand, and the loading of the software could take only a minute or so once the machines are delivered to the polling places. In some cases, machines are delivered several days before an election to schools, churches, homes and other common polling places.

Scientists said Diebold appeared to have opened the hole by making it as easy as possible to upgrade the software inside its machines. The result, said Iowa's Jones, is a violation of federal voting system rules.

"All of us who have heard the technical details of this are really shocked.

It defies reason that anyone who works with security would tolerate this design," he said.

Contact Ian Hoffman at ihoffman@angnewspapers.com

Post Comment   Private Reply   Ignore Thread  

#1. To: BTP Holdings (#0)

It's not a "hole", it's a feature.

Electronic voting - THE issue.

angle  posted on  2006-05-14   23:04:06 ET  Reply   Trace   Private Reply  

[Home]  [Headlines]  [Latest Articles]  [Latest Comments]  [Post]  [Sign-in]  [Mail]  [Setup]  [Help]