• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Hacker infiltration ends D.C. online voting trial

Status
Not open for further replies.
highland145

highland145

Lifer
Now this is funny.

Last week, the D.C. Board of Elections and Ethics opened a new Internet-based voting system for a weeklong test period, inviting computer experts from all corners to prod its vulnerabilities in the spirit of "give it your best shot." Well, the hackers gave it their best shot -- and midday Friday, the trial period was suspended, with the board citing "usability issues brought to our attention."
Here's one of those issues: After casting a vote, according to test observers, the Web site played "Hail to the Victors" -- the University of Michigan fight song.
Click to expand...
http://voices.washingtonpost.com/debonis/2010/10/hacker_infiltration_ends_dc_on.html
 
Online voting is just a horrible idea. I wish people would just accept that it would never, ever be secure enough to use for such an important purpose, and drop the whole idea permanently.
 
kranky said:
Online voting is just a horrible idea. I wish people would just accept that it would never, ever be secure enough to use for such an important purpose, and drop the whole idea permanently.
Click to expand...

Why do you think they want to do it? derp a' derp
 
kranky said:
Online voting is just a horrible idea. I wish people would just accept that it would never, ever be secure enough to use for such an important purpose, and drop the whole idea permanently.
Click to expand...

Agree. And who didn't see this getting hacking? It was bound to happen.
 
Yep; the best method I have seen so far is the scan form. No cross names, punching holes, computers with no hard copy, etc...

It can be scanned for easy counting and its a hard copy so it can be read back to prove the counting was correct.
 
Marlin1975 said:
Yep; the best method I have seen so far is the scan form. No cross names, punching holes, computers with no hard copy, etc...

It can be scanned for easy counting and its a hard copy so it can be read back to prove the counting was correct.
Click to expand...


we used that back in 90s for municipal election. Thought it was great. Now they switched to a touchscreen solution...humm...
 
kranky said:
Online voting is just a horrible idea. I wish people would just accept that it would never, ever be secure enough to use for such an important purpose, and drop the whole idea permanently.
Click to expand...

I disagree. It can be done.

For a system like this to work, it will need at least two-factor authentication, full end to end encryption, and non-repudiation. It can't use any client-side scripting. If possible, it shouldn't even use a web-browser. Instead hard-code the vpn client into a standalone application that is code lower level (no .NET, no Java, etc.). It should protect its memory space, it should never used a shared object / dll. It should establish its vpn using an IP address provided by a dnssec enforced name server hosted by the voting dmz. It should never touch the filesystem for temporary files. The application will create a hash of all the serials of the hardware it has access to and send that.

The server hosting this should be in a dmz with no other hosts. It will not be publicly available - only connections can be made through the vpn. Each vpn assigned IP will have ACLs to prevent any communications between vpn hosts. The voting sever will simply serve content and receive requests, it will not hold any data. Another backend server will be in another dmz with strict ACLs between the two. All data will be immediately checksummed, and encrypted with a unique key specific to the voter. The checksums will be immediately sent to a 3rd server in a 3rd dmz, along with extended timestamps of each transaction associated with the vote. The hw serial has will also get saved here. The voting application will use its own ntp also hosted in a voting dmz, so all steps of the auth/vote are time synchronized.

After the voter casts, a digitally signed email with a time and transaction id will be sent to an email address they already had on file when signing up for online voting. It will not contain any identifiable information about who they voted for.
 
Yes you're right, it could be done. And when every citizen is also paying 99% of income into taxes all the worlds problems would be solved.
 
SagaLore said:
I disagree. It can be done.

For a system like this to work, it will need at least two-factor authentication, full end to end encryption, and non-repudiation. It can't use any client-side scripting. If possible, it shouldn't even use a web-browser. Instead hard-code the vpn client into a standalone application that is code lower level (no .NET, no Java, etc.). It should protect its memory space, it should never used a shared object / dll. It should establish its vpn using an IP address provided by a dnssec enforced name server hosted by the voting dmz. It should never touch the filesystem for temporary files. The application will create a hash of all the serials of the hardware it has access to and send that.

The server hosting this should be in a dmz with no other hosts. It will not be publicly available - only connections can be made through the vpn. Each vpn assigned IP will have ACLs to prevent any communications between vpn hosts. The voting sever will simply serve content and receive requests, it will not hold any data. Another backend server will be in another dmz with strict ACLs between the two. All data will be immediately checksummed, and encrypted with a unique key specific to the voter. The checksums will be immediately sent to a 3rd server in a 3rd dmz, along with extended timestamps of each transaction associated with the vote. The hw serial has will also get saved here. The voting application will use its own ntp also hosted in a voting dmz, so all steps of the auth/vote are time synchronized.

After the voter casts, a digitally signed email with a time and transaction id will be sent to an email address they already had on file when signing up for online voting. It will not contain any identifiable information about who they voted for.
Click to expand...
Na, they just need CAPTCHA. 😱
 
Status
Not open for further replies.

TRENDING THREADS

Back
Top