Help - Search - Member List - Calendar
Full Version: B1-Articles - GAO Report-Electronic Voting Systems
Democracy Cell Project - Forums > LIBRARY/RESOURCES > ELECTIONS & VOTING SYSTEMS > Articles & Books
SuZ
Oct 21 2005, 11:18 AM
Title: Daily Kos Diary: Nonpartisan GAO Confirms Security Flaws in Voting Machines

Author: Congressman John Conyers

Source: Conyers Diary on Daily Kos blog

Publication Date: Fri Oct 21, 2005 at 08:50:27 AM PDT

Website/URL: Congressman Conyers' diary on www.dailykos.com

General Topic: GAO Report on Electronic Voting Systems, Sept 2005



Nonpartisan GAO Confirms Security Flaws in Voting Machines

by Congressman John Conyers
Fri Oct 21, 2005 at 08:50:27 AM PDT

The Government Accountability Office (GAO) issued a report today I requested with other Members Of Congress. In sum, the GAO found that "some of [the] concerns about electronic voting machines have been realized and have caused problems with recent elections, resulting in the loss and miscount of votes." GAO found that these concerns "merit the focused attention of federal state and local authorities responsible for election administration."

What does this mean? Much has been made about this issue during the 2004 Ohio election debacle here on DailyKos and elsewhere; however, this is the first time Congress' investigatory arm has weighed in on the problems with our voting machines. The GAO studied the work of others and ultimately put their stamp of approval on it. That lends important credibility to the cause of election reform generally, aand more specifically to requiring that every machine have a voter verified paper ballot that is used in election days audits and, if discrepancies are found in those audits, becomes the official record for the election.

Congressman John Conyers's diary :: ::

On this site and elsewhere, there have been discussions and debates about whether this or that election was "hacked." I would like to suggest putting that discussion aside for the moment (or longer -- I understand some such discussions can result in a ban from this blog community). In this context, we should focus on what we all agree on, and what the GAO found: these machines have substantial problems. To me, in addition to being an issue that goes to the heart of our democracy, this is a consumer protection issue. There are certainly voting machine manufacturers who produce a good product. But by and large, when it comes to a voting machine, the average voter is getting a lemon -- the Ford Pinto of voting technology. We must demand better.

More specifics about what GAO found:

Serious problems were identified regarding the security control system, access controls, hardware controls, and the voter-verified paper audit trail system.

Among the security shortcomings identified by GAO:

Some electronic voting systems did not encrypt cast ballots or system audit logs, thus making it possible to alter them without detection.

It is easy to alter a file defining how a ballot appears, making it possible for someone to vote for one candidate and actually be recorded as voting for an entirely different candidate.

Falsifying election results without leaving any evidence of such an action by using altered memory cards.

Access to the voting network was easily compromised because not all digital recording electronic voting systems (DREs) had supervisory functions password-protected, so access to one machine provided access to the whole network.

Supervisory across to the voting network was also compromised by repeated use of the same user IDs combined with easily guessed passwords.

The locks protecting access to the system were easily picked and keys were simple to copy.

One DRE model was shown to have been networked in such a rudimentary fashion that a power failure on one machine would cause the entire network to fail.

GAO identified further problems with the security protocols and background screening practices for vendor personnel.

The suggestions made by GAO to ensure the security of machines barely scratch the surface of the problems what is needed to improve the national voting systems standards. Their report divulges that, despite the many official assurances that the problems of the past elections were isolated and few, the election system is indeed riddled with problems and flaws.

The bottom line is until we make a serious commitment to address the significant security and controls concerns we have regarding our voting machines, American citizens have no reason to have complete confidence in our democracy

http://www.dailykos.com/story/2005/10/21/115027/30

.
SuZ
Oct 22 2005, 02:19 PM
Title: E-voting won't be verified until 2006

Author: Anne Broache, Staff Writer

Source: CNET News.com

Publication Date: October 21, 2005, 2:14 PM PDT

Website/URL: CNET news.com

General Topic: GAO Report on Electronic Voting Systems, Sept 2005



E-voting won't be verified until 2006

By Anne Broache
Staff Writer, CNET News.com

Published: October 21, 2005, 2:14 PM PDT

Electronic voting systems aren't likely to be sufficiently secure even by the 2006 elections, government auditors warned Friday.

Existing systems are rife with problems, the Government Accountability Office said in a 107-page document (click for PDF). The list of vulnerabilities included everything from easily-guessed administrator passwords and voter-verified paper-trail design flaws, to incorrect software installation and system failures on Election Day.

The Election Assistance Commission, created in 2002 to help states and localities implement e-voting systems, has neglected to lay out a clear timeline for addressing those problems, the report said. It also says that it's unrealistic to expect anything to change by next fall.

Even as a dozen or more non-governmental groups have begun drafting their own standards, federal agencies are still in the process of writing their own voluntary guidelines for voting systems and procedures for certifying them, the GAO determined.

The agencies are slated for early 2007 to determine if the laboratories designed to examine voting equipment are fit to do so, but the agencies haven’t started yet. They also haven't set up a proper "clearinghouse" where election officials can share problems they've had with the voting systems.

The agencies also haven't updated the national reference library for voting system software--intended to help state and local election officials ensure they're running the proper software on their machines--since the 2004 elections.

"Without the continuous incorporation of certified software into the library and processes that can be effectively implemented by state and local governments, these entities are likely to face difficulty in ensuring that their tested and operational voting systems are the same as those that were certified," the report said.

Representatives from the U.S. House of Representatives Committee on Government Reform said they were disappointed by what the report findings and suggested that politicians may need to step in.

"It is totally unacceptable that in 21st century America, we would allow faulty machines and systems to rob citizens of their voting rights," said Rep. John Conyers, a Michigan Democrat. "While GAO offers some modest recommendations for improvement, it is incumbent upon Congress to respond to this problem and to enact much-needed reforms such as a voter-verified paper audit trail that protects all Americans' right to vote."

http://news.com.com/E-voting+wont+be+verif...07036&subj=news

.

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2010 Invision Power Services, Inc.