Insecure Internet Voting

By Andrew Raff on January 21, 2004 11:18 PM | | TrackBacks (0)

The Federal Voting Assistance Program promises to allow citizens living overseas to "Vote Using the Internet in 2004!":

Are you a Uniformed Services member or dependent? Are you a U.S. citizen living overseas?

In 2004, you can take part in an exciting new initiative called SERVE (Secure Electronic Registration and Voting Experiment), which will let eligible U.S. citizens vote from any Windows-based computer with Internet access, anywhere in the world!


A new report, A Security Analysis of the Secure Electronic Registration and Voting Experiment, finds that SERVE is "vulnerable to a variety of well-known cyber attacks (insider attacks, denial of service attacks, spoofing, automated vote buying, viral attacks on voter PCs, etc.), any one of which could be catastrophic." While the system uses a certain level of encryption and security, the report's authors argue that "E-commerce grade security is not good enough for elections."

And, by the way, SERVE has all the same flaws that other e-voting systems have: they are "especially vulnerable to various forms of insider (programmer) attacks" and lack verifiable audit trails.

NY Times: Report Says Internet Voting System Is Too Insecure to Use

Update, Jan. 23, Washington Post: Pentagon's Online Voting Program: Chat with Avi Rubin

Categories

E-Voting

0 TrackBacks

Listed below are links to blogs that reference this entry: Insecure Internet Voting.

TrackBack URL for this entry: http://www.iptablog.org/emtee/mt-tb.cgi/1639

About this Entry

This page contains a single entry by Andrew Raff published on January 21, 2004 11:18 PM.

More File Sharing Suits was the previous entry in this blog.

Deregulation shuts out snoops is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Subscribe to feed Subscribe to this blog's feed
Powered by Movable Type 4.0

Search