Tags for This Article:

Voting Integrity (2490)  Election-Voting Issues (1964)  Voting Technology (1733)  Voting Machines (1322)  Vote Theft (799)  Election- Ballot Access (793)  Election Theft (649) 

Populum Tag Cloud
       Control Panel
Fine tune your search to access content
Articles
Diaries Products
Events All
All time
Last 6 mos
Last month
Last week
Last 24 hrs
From:
Month  Day   Year

To:
Month  Day   Year
Alphabet
Popularity
Count ON
Count OFF
This Level
Sub-levels

 

 

 

Tag(s): ; ; ; ; ; ;
Add to My Group
January 3, 2007 at 08:12:44

Overview of Major Expert Studies on Voting Systems

by Rady Ananda     Page 6 of 7 page(s)

www.opednews.com

 

Tell A Friend

(0.0 from 0 ratings) View Ratings | Rate It

The GEMS server lacks several critical security updates from Microsoft. The team was able to remotely upload, download and execute files with full system administrator privileges.

The server enables the "autorun" feature. Given physical access to the server, one can insert a CD that will automatically upload malicious software, modify or delete elections, or reorder ballot definitions.



The back panel of the GEMS server is not protected. Given physical access to a running device it is possible to insert a USB flash drive and upload malicious software onto the server.

The database files that contain the election definition (and results) are neither encrypted nor authentication protected. By removing the front panel of the server (this is held in place by a small keyed lock), one can insert a CD, power up the server, and have it boot its operating system off the CD. A sophisticated user can automate this procedure requiring only a few minutes access to the server.

Because both the database password and audit logs are stored within the database itself, it is possible to modify the contents without detection. Furthermore, system auditing is not configured to detect access to the database. Given either physical or remote access it is possible to modify the GEMS database.

The procedure by which precincts upload votes to their LBE is vulnerable to a "man-in-the-middle" attack.

The team identified fifteen additional Microsoft patches that have not been installed on the servers. In addition, the servers lack additional measures (all considered best practice) for defense such as the use of firewall antivirus programs as well as the application of least privilege, i.e. turning off the services that are unused or not needed. Each of these represents a potential attack vector for the determined adversary.

*******************

AVIEL RUBIN, National Science Foundation Director of ACCURATE Center, one of the authors with: Tadayoshi Kohno, Adam Stubblefield, and Dan S. Wallach. Analysis of an electronic voting system. In IEEE Symposium on Security and Privacy, May 2004.

Also see www.avirubin.com and "On My Mind: Pull The Plug," Forbes Magazine, 8/2006 http://www.forbes.com/forbes/2006/0904/040.html?partner=alerts&_requestid=2972

Why am I advocating the use of 17th-century technology for voting in the 21st century?

The boot loader controls which operating system, so it is the most security-critical piece of the machine. To (install overwriting software), a night janitor at the polling place would need only a few seconds' worth of access to the computer's memory card slot.

If the defense against the attack is not built into the voting system, the attack will work, and there are virtually limitless ways to attack a(n electronic) system.

*******************

U.S. COMMISSION ON FEDERAL ELECTION REFORM, 2006. See Wall Street Journal article, "Reversing Course on Electronic Voting: Some Former Backers of Technology Seek Return to Paper Ballots, Citing Glitches, Fraud Fears," Wall Street Journal, May 12, 2006.
click here

Former Secretary of State James A. Baker III and former President Jimmy Carter, who were co-chairmen of the bipartisan Commission on Federal Election Reform, warned in their 2005 final report that (fraud) could happen.

 1  |  2  |  3  |  4  |  5  |  6  |  7

 

http://www.re-mediaetc.org/

In 2004, Rady Ananda began contributing to the Web, as part of the growing community of citizen journalists. Focusing mainly on elections, her blogs also address religious, gender, sexual and racial equality, as well as environmental issues; and are sprinkled with book and film reviews on various topics. She currently serves as a senior editor at OpEdNews. All material offered here is the property of Rady Ananda, copyright 2006, 2007, 2008. Permission is granted to repost, with proper attribution including the original link. In a time of universal deceit, telling the truth is a revolutionary act. Tell the truth anyway. Sign this petition: http://www.electiondefensealliance.org/ny_levers_petition

Contact Author
Contact Editor
View Other Articles by Author

 

Bookmark this page: (what's this?)

NETSCAPE      DIGG THIS      Add This Page to Mr Wong!           NEWSVINE      DEl.ICIO.US      Looksmart Furl      My Web      Tag!RawSugar      Blink List     (More...)
Comments: Expand   Shrink   Hide  
4 comments

 

4 comments

 

Tell A Friend

 


Copyright © OpEdNews, 2002-2008

Blog Ads

 

 

 

 

Most Popular Articles
in the Last 2 Days
(by Recommend Emails)

Loserville: Obama Is Channeling Kerry and Gore by Dave Lindorff

Are you ready for nuclear war? by Paul Craig Roberts

Fresh New Discovery - Can You Guess What This Photo Is? by Meryl Ann Butler

"Caroline: Pull a Cheney!" An Open Letter to Caroline Kennedy (head of the Obama VP search team) Posted by Stephen Fox

NSA MAY BE READING WINDOWS SOFTWARE IN YOUR COMPUTER by Sherwood Ross

The REAL John McCain by Mike Kuykendall

Mr. Bill: "OH NO, Fix the coast you broke, Shell Oil!" by Georgianne Nienaber

Brown's Gas ("HHO") : Clean, Cheap, and Suppressed Energy by Steve Windisch (jibbguy)

Russia to US: Checkmate! by William Helbig

New Zogby/Reuters Poll: Obama Down 5, in an Almost Perfect Storm by Rob Kall

Select Time
6 hrs 12 hrs
1 Day 2 Days
3 Days 1 Week
2 Weeks 1 Month
2 Months 3 Months
6 Months Last Year
Select Content
Articles Links
Diaries Members
Polls Events
All  
Select Popularity
Page Views
# of Comments
Recommend Emails