Stories
Slash Boxes
Comments
Search

News for nerds, stuff that matters

Slashdot Log In

Log In

Create Account  |  Retrieve Password

Ask a "Star" of HBO's Voting Machine Documentary

Posted by Roblimo on Fri Nov 03, 2006 01:02 PM
from the paper-ballots-never-have-software-problems dept.
Government Politics
Herbert H. Thompson, PhD ("Hugh" to his friends), is one of the people featured in the HBO documentary, Hacking Democracy, that Diebold tried to keep from airing. Hugh is a long-time Slashdot reader who called me to volunteer for this interview — on his own, not through anyone's PR department. Here's a YouTube excerpt from a CNN Lou Dobbs show with Hugh in it. (Find more articles by and about Hugh here. And perhaps check this brand-new MSNBC story about e-voting, too.) Hugh suggests that you give him "your wildest questions about what went on behind the scenes and how safe the e-voting systems actually are." Let's take him up on that challenge, hopefully while following Slashdot interview rules. Note to Diebold and other voting machine companies: We welcome comments and questions from you, same as we welcome them from everyone else. If you feel you are being vilified unfairly by Slashdot readers, please respond and set the record straight.
+ -
story

Related Stories

[+] News: Brave New Ballot 137 comments
Ben Rothke writes "In an important new book Brave New Ballot: The Battle to Safeguard Democracy in the Age of Electronic Voting, Avi Rubin writes 'too often in American life, when it comes to divisive issues, the facts can be less important than the weight of public opinion'. That basically sums up Rubin's story in this fascinating story of his frustrations in dealing with government and corporate officials in his quest to show that e-voting was not as secure as it was originally made out to be." Read the rest of Ben's review.
[+] News: Diebold Demands That HBO Cancel Documentary 514 comments
Frosty Piss writes "According to the Bloomberg News, Diebold Inc. is insisting that HBO cancel a documentary that questions the integrity of its voting machines, calling the program inaccurate and unfair. The program, 'Hacking Democracy,' is scheduled to debut Thursday, five days before the 2006 U.S. midterm elections. The film claims that Diebold voting machines aren't tamper-proof and can be manipulated to change voting results. 'Hacking Democracy' is 'replete with material examples of inaccurate reporting,' says Diebold. 'We stand by the film," said a spokesman for HBO. 'We have no intention of withdrawing it from our schedule. It appears that the film Diebold is responding to is not the film HBO is airing.'"
[+] Politics: HBO's Hacking Democracy Available Online 350 comments
prostoalex writes "HBO's controversial special 'Hacking Democracy' on issues with Diebold voting machines is now available in full on Google Video." Covered earlier on Slashdot, the documentary seems to have gathered quite a bit of heat from Diebold in addition to the one that didn't air.
[+] Hugh Thompson Answers Voting Machine Security Questions 122 comments
You posted your questions for Herbert H. Thompson, PhD, on November 3rd and 4th. He decided to wait to answer until after the election in case there was a flagrant voting machine problem he could include in his answers -- and there has been at least one, but it is probably not a "security" problem per se, and is a long way from being resolved in any case. So here we go. Good food for thought here.
[+] IT: Crashing an In-Flight Entertainment System 322 comments
rabblerouzer writes "Hugh Thompson, who was interviewed by Slashdot on the dangers of e-voting, now has a cool blog entry on how he was able to bring down the gaming/movie console on an airplane. He calls it one of the most interesting examples of a software 'abuse case' he has ever seen." Fortunately the IFE system is totally disjoint from the avionics.
This discussion has been archived. No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

Ask a "Star" of HBO's Voting Machine Documentary 25 Comments More /

 Full
 Abbreviated
 Hidden
More
Loading... please wait.
  • Other countries are embracing E-voting [smh.com.au] despite the massive concern here in the United States. My simple question is, in your opinion, will E-voting ever reach standards rigorous enough to satisfy the American populace? If not, why?

  • paper trail? (Score:5, Interesting)

    by ummit (248909) <scs@eskimo.com> on Friday November 03 2006, @01:03PM (#16704581) Homepage
    This is a really basic question and it seems I should know an answer, but it never seems to be discussed: Why are the electronic voting machine companies generally so dead-set against emitting verifiable and auditable paper records? It can't just be cost, because they could and would just pass that on to their customers.

    • Re:paper trail? (Score:4, Interesting)

      by Thansal (999464) on Friday November 03 2006, @01:10PM (#16704723)
      It can't just be cost, because they could and would just pass that on to their customers.


      Sort of a follow up, how do the states/districts decide what machine to go with? Is it a standard "go with the lowest bidder", is this why we see such shoddy machines going into action? Do the decision making organizations tend to have specific features they look for? Anything else you would like to share about the decision making processes that you have seen?

      Thanks for doing this also!

    • Re:paper trail? (Score:4, Informative)

      by jj00 (599158) on Friday November 03 2006, @01:42PM (#16705453)
      Pittsburgh (Allegheny country) had a public review of 4-5 voting systems (Unisys, Sequoia, ES&S, and Diebold) that I attended. Of all the systems I saw, ALL of them had an option to produce a paper trail. Some were inherently better at paper trails than others - such as the bubble-fill versions, but they all had some sort of option.

      Most of the salesmen there seemed to steer you away from the bubble-fill devices, stating that they were cheaper up front but would cost more in the long run with paper costs. I still liked them the best. They have multiple ways of recovering from problems - built in paper trail, still work under power outages, and anyone that can play the lottery can use them.

      I took some pictures if you're really interested. [flickr.com]

      • Re:paper trail? (Score:5, Insightful)

        by Ungrounded Lightning (62228) on Friday November 03 2006, @04:57PM (#16708629) Journal
        Yes, such laws do exist. (They're apparently why you can't get the raw voteing machine and punchcard ballot reader output to examine for statistical signs of vote tampering, too.)

        But the point of the printed reciept is NOT for the voter to take it home. The point is for him to put it in a ballot box. Then it's no longer in his possession, so the laws to prevent vote-buying don't apply.

        The printed "reciept" is actually the official ballot, and subject to recounts and audits. The voting machine becomes simply a ballot marking aid - which can opportunistically take a count as it operates. The machine's count can be used for rapid return reporting, but only becomes the official count if there are no challenges and the precinct doesn't happen to be randomly selected for auditing.

        With a spit-out printed ballot added to the voting machines, the rest of the current software can remain in place. With an audit trail any fraud can be detected and corrected. (Further: With random sampling and the inevitable recount requests in close races and those where fraud is suspected, it is LIKELY to be detected.)

        In the absense of the ability to untracably corrupt the count, voting macine fraud attempts become much less likely - and a path to prison rather than to political power.

  • Largest Inherent Flaw? (Score:5, Interesting)

    by eldavojohn (898314) * <my/.username@@@gmail.com> on Friday November 03 2006, @01:05PM (#16704627) Homepage Journal
    In your opinion, what is the largest inherent flaw within electronic voting systems today? Diebold's been in the news of having many potential problems ranging from securing the physical hardware to the ability to hack the software or firmware. I'm sure you're quite prepared to pose a case against implementations but can you think of a more intuitive scheme (encryption, network layout, verification scheme) to protect against "hacking our democracy?"
  • as in "no-choice-it-must-be-evote-or-novote-and-novote-i snt-an-option", how would you set it up? I.E. would there be encryption, would there be ways for individuals (but not others) to track their own votes, etc?

  • Typo (Score:2, Interesting)

    by Jeffrey Baker (6191)
    I noticed in the documentary that the Diebold machine tested in Tallahassee prints "Diebold Memroy Card" on its little grocery-store-quality tape. Is this kind of slipshod programming reflected throughout the Diebold system?
  • Your bio kind of paints you as an academic with tons of authoring and training but no real deep diving into implementing an E-voting system. Have you worked on any physical systems or only the theory behind it?

    I ask this because of a quote, "In theory there is no difference between theory and practice. But, in practice, there is." - Jan L.A. van de Snepscheut. Which occasionally appears at the bottom of Slashdot. I interpret it that the theoretical side of the world is constantly criticizing the pa
  • Issue a statement with verbage stating something along the lines of "these machines, like everything electronic, controlled by a computer, are 'hackable' and here's what you can do, as a voting body, to protect the investment, and to ensure a safe and reliable election:"? It seems that these flaws are bad, but they're fixable. They have the way to plug the holes, but they don't work on it, don't promote it, and don't seem to want to admit there's issues. I know they're a company trying to protect their b

  • Here is my question... (Score:5, Insightful)

    by Noryungi (70322) on Friday November 03 2006, @01:10PM (#16704733) Homepage Journal
    Let's assume for a moment the 2006 US House/Senate election goes this way: Republicans keep control of both through a series of smallish victories, Democrats gain a few seats, and the results are explained away in the mainstream media as "fluke results", "margin of error", etc...

    How do you prove that foul play (hacking) has been involved?

    Do you even have a plan in place to check the results?

    Please note that this is a very serious question. There was a saying, a few years back, that said a novice hacker is someone known in a small circle, a confirmed hacker is someone who is known all over the Internet, and a great hacker is someone who is totally invisible.

    What if the election was subtly hacked, in a way that left lingering doubts (51%-vs-48% kind of results and all that), but no solid proof?
    • ... so a republican victory automatically dictates tampering with voting machines? The democrats have a long history of being ahead in polls and losing, before e-voting ever hit the scene. Democrats are democrats and have a tendancy to lose it for themselves as the elections approach (see: John Kerry's recent comments, Alan Hevesi, etc)

  • OSS? (Score:5, Interesting)

    by Xzzy (111297) <.sether. .at. .tru7h.org.> on Friday November 03 2006, @01:10PM (#16704737) Homepage
    Does the HBO show spend any time discussing the three "sides" to the debate? E-Voting, open sourced e-voting software, and paper voting? The last Slashdot article on this topic, when Diebold's complaint was announced, spent some time on this. The worry being, the debate is nothing more than "e-voting good" or "e-voting bad", ignoring the possibility that "open source e-voting" might be a viable middle ground.

    How do you think open source could fit into this issue? Or should it?

    • Re:OSS? (Score:4, Insightful)

      by Speare (84249) on Friday November 03 2006, @02:01PM (#16705787) Homepage

      Before I poo-poo the idea, let me say I like the idea of OSS implementations of anything the government does: they pay for this implementation in my dollars, so I might as well get a chance to see how it works. But this does not make the system more secure.

      Even with OSS, you're relying on an assurance by some clerk at the polling station that the code you've audited at home is the code that drives your voting choice from fingertip to election commission. You can't SEE software, and as this crowd knows, rootkits can virtualize the whole machine to appear to run one thing while really doing something else.

      The only way for an individual to audit their vote is to see their vote on a tangible artifact, be it marks on paper, holes in paper, colored beads or whatever works in your village. It's already bad enough that you can't follow that vote artifact out of the voting booth into the counting center, and watch it every step of the way, but with many eyes from all vested parties along the path, you can have a small sense of security in this process.

  • Pen-and-paper voting (Score:5, Interesting)

    by NetDanzr (619387) on Friday November 03 2006, @01:10PM (#16704745)
    What, exactly, is the argument against pen-and-paper voting? It seems to me that everybody wants to migrate to voting machines - electronic or mechanical - but so far nobody has explained to me what's wrong with good old-fashioned "put an X next to your candidate's name" voting.

    • Re :Pen-and-paper voting (Score:5, Insightful)

      by Black Parrot (19622) on Friday November 03 2006, @01:21PM (#16704975)
      > What, exactly, is the argument against pen-and-paper voting? It seems to me that everybody wants to migrate to voting machines - electronic or mechanical - but so far nobody has explained to me what's wrong with good old-fashioned "put an X next to your candidate's name" voting.

      The "problem" is that it doesn't shuffle enough of your tax money into corporate pockets.

      • Re:Pen-and-paper voting (Score:4, Insightful)

        by ??? (35971) <{moc.ylbok} {ta} {kcirtap}> on Friday November 03 2006, @02:33PM (#16706381)
        1. Handicapped access.

        It demeans the real challenges faced by individuals with handicaps to suggest that we need to diminish the reliability of our electoral system in order to encourage their participation.

        2. Printing costs.

        Costs for paper / pencil only systems are significantly less than for electronic systems, particularly when election administration is centralized (see Canadian electoral system costs). This is even before you consider that electronic voting equipment is being amortized over an absurdly long period of time (far longer than their estimated useful life. I would bet there will be a lot of counties writing off systems after the next cycle that still have significant unamortized book value).

        3. Storage costs.
        Storage costs are increased with electoral equipment. The equipment itself needs to be stored and takes more room than paper ballots. Further, the equipment typically has more stringent environmental requirements (temperature, humidity, etc. control) for the storage facility than paper ballots. Paper ballots need to be stored for less time than equipment. Paper ballots can be destroyed once disputes relating to them have been settled, and only have a useful life of at most one electoral cycle. Equipment must be stored throughout its useful life.

        4. People.

        It takes candidates' representatives and two officials from the authority conducting the election to count ballots in precinct. These are individuals who are already involved in the process, observing and administering (respectively) the conduct of the voting process of the election.

        5. Quicker results.
        We know who our Prime Minister is before bed-time EST on election night. How about you? Vote counting is a highly parallelizable activity.

        Regardless, is it appropriate to set cost and speed above accuracy and security in elections administration?

  • The greatest threat to e-voting? (Score:3, Interesting)

    by sharkb8 (723587) on Friday November 03 2006, @01:12PM (#16704773)
    Do you think the greatest threat of an e-voting system being hijacked is during the voting itself, with one or more people influencing things at the polling place, during the processing, with untrained, nonaccountable poll workers and supervisors, or do you think a greater threat would be someone maliciously attacking an electronic vote counting reposiotory/database?
  • What confuses me about electronic voting is that we constantly do commerce daily through electronic means (ATMs, credit cards online, etc) yet we cannot hammer down a viable scheme for voting. I am a programmer and very familiar with model view controller applications and it's always caused me great confusion of why we don't simply use a web based application for voting. For instance, if I built a secure website that required a local official to access through a terminal (with possible hardware verificati

  • Why is it so hard? (Score:5, Interesting)

    by gorbachev (512743) on Friday November 03 2006, @01:24PM (#16705033) Homepage
    As a software engineer I'm constantly amazed at how incompetent Diebold and other companies making e-voting applications appear to be. This stuff is not rocket science at all, but fairly uncomplicated, basic software engineering.

    Why do you think it's so hard for Diebold and other companies to come up with solutions that work well? Is it a stubborn unwillingness to listen and learn from critics, shere incompetence, or something else?
      • Bad software engineers pick the most complicated solution and complain about how impossible the task is. Good ones find the nugget of truth that makes complicated problems easy. Same here... electronic voting is actually a very very easy problem if you realize the truth: secure systems are not needed at all.

        1. You have a computerized vote selection system. This does not need to be secure at all, because it will print out the selected votes onto paper in a human readable form. It can be written in TCL/TK

  • On Open vs. Closed Networks (Score:4, Interesting)

    by the-banker (169258) on Friday November 03 2006, @01:28PM (#16705113)
    It has always seemed to me that the real Achilles heel of e-voting is the networked approach that most vendors have taken. With a networked approach, fraud can be perpetrated on a mass scale if entry is gained at one weakness.

    As a former election judge, I have enough experience to know that rigging a paper election is a daunting, nearly impossible task, as there are litterally thousands of ballot boxes that would have to be compromised for any sort of advanagte (on a state or national scale).

    Are these concerns balanced (or even discussed) when officials are purchasing equipment? Do local Board of Elections have not only the expertise, but the concern to ask the right questions? And how do BoE directors react when they hear about your concerns and research?

  • A simple solution? (Score:5, Interesting)

    by Brickwall (985910) on Friday November 03 2006, @01:36PM (#16705299)
    To me, the only 'benefit' of e-voting is the speed of counting after the polls close, which seems pretty small compared to the problems that have surfaced. That said, I wonder what you think of this possible solution:

    After the voter makes his selection on the e-voting machine, the machine then prints out a piece of paper with the voter's choice on it. The voter reviews it, makes sure it's correct, and then exits the booth and deposits the paper ballot in an old-fashioned ballot box. When the polls close, we have an instant count but if the result is challenged, we have the old-fashioned system to do a recount. Note that "hanging chads" and other such nonsense wouldn't apply, as the machine would print the voter's choice - no question of "unclear marks" or "multiple selections", or other problems that exist with manual ballots today. It seems to me this would satisfy both camps, without requiring a massive rewrite of the software, and minimal physical changes. (These machines must have a port somewhere that a printer could be connected to.) Any thoughts?

  • I saddened and dismayed by the poor engineering and ignorance of basic security practices that our electronic voting machines show. However, is this really something we should panic about or even the biggest problem in our election system.

    All voting systems are vulnerable to fraud. What makes these electronic systems different is that one or a very small number of individuals can engineer a fraud. However, their ability to execute a fraud is limited by the media polls (we will suspect something if the results are inexplicably different than polled) and knowledge of precinct history. Thus the danger from individuals changing the vote seems to really be that they will shift a close race (say 10% apart) one way or another.

    However, this sort of shifting close races doesn't greatly degrade the structural force of voting. All candidates will still try to enact policies to garner support whether they need 50% of the votes or only 45%. Much of voting is random, affected by things like personal charisma rather than policy questions so clearly the system doesn't work because we always have the person who 50% want but rather it works because of the structural pressure not to stray to far from what the people want. Or to put it in political science terms what does all the work is the tendency of all candidates to shift to the middle in the long run who actually wins each race isn't so important.

    But now comparing the potential for electronic vote fraud to things like machine politics (with conventional ballot stuffing), safe districts, voter disenfranchisement efforts, felon lists etc.. etc.. it doesn't seem like it is such a big deal. Making sure the poling places in the inner city don't have enough machines has a much bigger structural effect, by making sure one group's votes don't count at all, than just giving one candidate a random 10% of the vote. Creating a safe district removes virtually all of the structural pressure of voters on government and it seems far more effective and less dangerous to accidentally strike the wrong people from the rolls or put too few voting machines in some precincts.

    In short are we letting our concern over the technology of voting blind us to the bigger issues? Shouldn't we be paying more attention to who gets to vote, how districts are drawn and other conventional aspects of voting than to the potential for individuals to electronically cheat?

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The Rest © 1997-2009 Geeknet, Inc.