Questions linger in US on high-tech voting
March 11th, 2012
A series of problems with electronic voting machines has raised fresh questions about election technology as newer computerized systems gain ground for the 2012 US election.
As many as 25 percent of Americans are expected to use paperless electronic voting machines in the upcoming November elections, according to the Verified Voting Foundation, but confidence has been eroded by incidents showing vulnerabilities.
The foundation, which seeks more reliable election systems, contends that voting machines in 11 states are all-electronic, with no paper systems for recounts, and that many other jurisdictions have some of these systems in place.
Last year, Microsoft Research published a paper describing vulnerabilities to what had been described as "fully verifiable" direct recording electronic (DRE) systems in which a hacker can "undetectably alter large numbers of votes."
Separately, scientists at Argonne National Laboratory described a way to tamper with certain electronic voting machines by inserting a $10 component along with a $15 radio frequency device to alter vote results.
Pamela Smith of the Verified Voting Foundation said these incidents highlight the fact "that you can have insider challenges as well as outsider hacks. It points out that you have to be able to check the system."
Election security and technology has been an issue in the United States since the 2000 president election marred by "hanging chads" in Florida that muddled the result.
US laws enacted since then encourage the use of new technology including touch-screen ballots. But some critics say these can be vulnerable to hackers and that some lack a "paper trail" which could allow a recount in case of machine failure.
"We still have a number of states which do not have what I call resilient recountable systems," Smith said.
"If they do have problems they may not be able to recover from them. So we would like states to move to recoverable systems where they could do a recount if there were a problem."
Last September, researchers led by Roger Johnston at the Argonne lab were able to change votes on the a ballot machine using about $25 worth of equipment, by inserting a device to manipulate touch screens by remote control
"We believe these 'man in the middle attacks' are possible on a wide variety of voting machines," with little technical expertise, Johnston said.
In October, Microsoft Research released a paper describing a so-called "trash attack" which it said could be "effective against the majority of fully verifiable election systems."
It is known as a trash attack because it would allow a corrupt elections worker, for example, see a voter dumping a receipt on the way out from a polling station, and then modify the vote without detection, and with no way to verify the original vote. Microsoft also offered a technical fix for this weakness.
Dan Wallach, a Rice University computer scientist, said little has changed since reports about vulnerabilities in voting machines began around 2007.
"Happiness can only come from inside of you and is the result of your love. When you are aware that no one else can make you happy, and that happiness is the result of your love, this becomes the greatest mastery of the Toltecs: the Mastery of Love." ~~don Miguel Ruiz~~