Hackers Invited To Crack Internet Voting 119
InternetVoting writes "The Philippine government and the International Foundation for Electoral System will be soliciting hackers to test the security of of their Internet voting system that will be tested in an upcoming pilot program." From the article,"Local and foreign computer hackers will be tapped to try and break into an Internet-based voting system that will be pilot tested by the country's Commission on Elections (Comelec) starting July 10."
So... (Score:3, Insightful)
I'm sure all the REAL hackers will RSVP.
What a dumb idea (Score:3, Insightful)
Of course any hacker with intentions of being a naughty boy is not going to show up and (a) make himself known or (b) reveal the holes.
Think they have not thought about that? (Score:5, Insightful)
Re:What a dumb idea (Score:4, Insightful)
But freelance security professionals and security companies looking to make a name for themselves will.
Re:What if (Score:5, Insightful)
The way I would do something like this is to put the voting system inside a fully monitored and logged virtual machine. Then I would open it up to hackers, knowing that all changes to the system state will be logged and can be scanned for malicious actions.
I live in the Philippines... (Score:3, Insightful)
On a related topic = I can't believe our Comelec is advertising this thing, a few months ago they don't even have a feasible electronic voting solution. I remember that they got a "Diebold" like deal for use in the last national elections but we know that the expensive machines had been now rotting in warehouses (and never had seen the light of the day, that makes Diebold more succesful). There are even local programmers/firms who are willing to "donate" their services just to make the election electronic but I guess that did not work out.
And I still don't have that promised "Electronic Voter's ID" when I registered at 18 (I'm in my 20's now). Now, how could they validate if I am the one who had casted my vote.. Hmmm...
As I said, nothing to see here.. move along.. I'm going to make some coffee...
Regards,
Re:What if (Score:4, Insightful)
Re:So...failure to disclose vulnerability? (Score:3, Insightful)
Re:What if (Score:2, Insightful)
Sounds like a diebold system to me.
Re:So...failure to disclose vulnerability? (Score:4, Insightful)
Democracy is valued in some countries you know...
100% foolproof guaranteed exploit (Score:4, Insightful)
2. Hold gun to their head and insist that they vote for who you tell them to
3. Watch them cast the vote
4. Tell them that you will kill them and their pet rabbit if they tell anyone
5. Win the election
Sadly, that is a problem that will always exist if people aren't voting in a private cubicle in a public place.
After the recent postal voting in the UK, it was found that many heads of families coerced the rest of the family into voting a certain way. That just can't happen in a private cubicle where you can always lie to dad later, but vote for who you want to now.
Procedural comparison (Score:5, Insightful)
How things work outside the United States:
How things work in the United States:
Reverse engineering corruption (Score:3, Insightful)
WRONG. Q: Can it be manipulated by insiders? (Score:3, Insightful)
Yes. Always, untraceably, if you can manipulate the traces.
This test they are running is worthless. They are playing to the myth of the superhacker, master of all crimes. The problem with evoting is that the evoting system programmers own the democracy, and you cannot test for that.
These evoting systems are the answer to the question: how do we fix elections without anyone noticing, or even understanding the system so that they notice that we can? The paper systems are foolproof, if done correctly, as in Canada. Those systems aren't broken. So we are fixing an uncrackable system for one that is cracked by design.
People. Someone is really determined to own democracy. Follow the money.
Re:Hey mods, supress your knee-jerk reaction (Score:4, Insightful)