[E-voting] eVoting Companies Don't Understand the Risk

Keith Martin keith at keith.gs
Thu Jun 15 17:04:36 IST 2006


 From Bruce Schneier's Cryptogram (www.schneier.com - Cyrptogram is  
great, anyone on this list will find it interesting):


Diebold Doesn't Understand the Security Threat
This quote sums up nicely why Diebold should not be trusted to secure  
election machines:

"David Bear, a spokesman for Diebold Election Systems, said the  
potential risk existed because the company's technicians had  
intentionally built the machines in such a way that election officials  
would be able to update their systems in years ahead.

"'For there to be a problem here, you're basically assuming a premise  
where you have some evil and nefarious election officials who would  
sneak in and introduce a piece of software,' he said. 'I don't believe  
these evil elections people exist.'"

If you can't get the threat model right, you can't hope to secure the system.

http://www.nytimes.com/2006/05/12/us/12vote.html?ex=1305086400&en=5b3554
a76aad524a&ei=5090&partner=rssuserland&emc=rss or http://tinyurl.com/q7p4s



More information about the E-voting mailing list