Q&A: Go back to paper ballots, says e-voting expert
Avi Rubin, a Maryland elections judge and professor, cites security woes
Computerworld - Avi Rubin is unique in that he is both a professor of computer science who specializes in e-voting security issues and someone who directly participates in the electoral process as a Maryland elections judge. His interest in e-voting began when he co-authored a study of Diebold Election Systems Inc. touch-screen voting software, released in July 2003. Rubin is also the author of Brave New Ballot: The Battle to Safeguard Democracy in the Age of Electronic Voting. The book, released this month, is highly critical of the security of e-voting machines used across the nation. Rubin, a professor at Johns Hopkins University, participated as an election judge in last week's primary in Baltimore County and detailed his experiences in a blog.
This week, Rubin talked with Computerworld about e-voting, last week's elections and his new book. Excerpts from that interview follow:Can you talk about that original study you made of Diebold's AccuVote TS machine code? The software in the AccuVote TS machine was really bad. One comment I made at the time was that if a student had turned in a program like that, he'd have gotten an F. It had outdated encryption, which was used in [the] wrong places and in the wrong mode of operation. The list goes on and on. Some [glitches] are comical. Diebold said they have a new system that fixes them, but I have no way to find out. That's their track record -- they're always saying, "It's an old system." They're saying that about the Princeton study. We asked for the new machines but were never given access. All I can say is that they say they fixed them, but I can't tell if they did, and some of the fixes are nontrivial.
What's the main point made in your book? It says the country moved too quickly to e-voting and there are security and transparency problems and it was a big mistake. It's a first-person narrative, and an exciting story of what happened that blends together all the issues. I have two chapters devoted to my experience as an election judge in 2004. One thing that came out of that was that people were always saying, "He might know a lot about computers, but doesn't understand how elections work." I have a good understanding of how elections work now. It also gave me a lot of credibility with the federal Election Assistance Commission.
What happened in last week's primary election in Maryland? There were problems in Baltimore County, as there were in Montgomery County, correct? The problems weren't as bad in Baltimore County. The e-poll books were crashing a lot, and some precincts didn't get their voter access cards. We had 10 minutes of waiting time, and at some point, up to an hour, and that was too long. One voting machine crashed. One froze up when tallying the votes and then 10 minutes later came back online.
- 18 Hot IT Certifications for 2014
- CIOs Opting for IT Contractors Over Hiring Full-Time Staff
- 12 Best Free iOS 7 Holiday Shopping Apps
- For CMOs Big Data Can Lead to Big Profits
- Slideshow: 5 ways to lock down your mobile device
- Slideshow: 10 mistakes companies make after a data breach
- How to rob a bank: A social engineering walk through
- Which smartphone is the most secure?
If you like your iPhone, you can keep your iPhone. Period.
President Obama has revealed that he's not permitted to carry an iPhone. It's too insecure for the job, he says. Instead, he's stuck with a BlackBerry. Well, someone's got to have one still. However, it turns out that the Pentagon has also outlawed non-BlackBerry smartphones. In IT Blogwatch, bloggers joke that 2006 called and they want their smartphones back.
- IT Certification Study Tips
- Register for this Computerworld Insider Study Tip guide and gain access to hundreds of premium content articles, cheat sheets, product reviews and more.
- Mitigating DDoS Attacks with F5 Technology
- This document examines various DDoS attack methods and the application of specific ADC technologies to block attacks in the DDoS threat spectrum while...
- The DDoS Threat Spectrum
- Bolstered by favorable economics, today's global botnets are using distributed denial-of-service (DDoS) attacks to target firewalls, web services, and applications, often simultaneously.
- Defending Against Denial of Service Attacks
- By utilizing end-user interviews, this whitepaper explores a deeper understanding of DDoS defense plans and reveals the knowledge gaps around the Denial of...
- Strategic Solutions for Government IT
- This paper outlines why F5 is the optimum partner to help achieve the levels of security, performance and availability that are vital to...
Top Considerations for Moving to a Cloud Delivery Model for ITSM
Find out whether SaaS-based ITSM is right for you
- Software-as-a-service is more than just a cloud-based delivery model-it's a new approach to service that lets companies optimize utilization of in-house IT resources... All Government IT White Papers
- Pre-Engineered solutions from VCE Simplify Core Infrastructure Implementation In this video, the CTO of Purdue Pharma, a privately held pharmaceutical company explains how Purdue transformed their data center infrastructure with VCE.
- Integrated Infrastructure: Simplify Operations, Speed Deployments and Reduce Costs George Weiss, Gartner Vice President and Analyst, and Praveen Akkiraju, CEO of VCE, provide practical information regarding the various aspects of Integrated Infrastructures...
- Video: 5 Secrets To Scaling Enterprise Apps Watch this video to learn how to successfully scale enterprise apps>>
- Collaboration 2013: Where Mobility Meets Connectivity Mobility and collaboration are quickly converging and users are demanding more capabilities. It's no longer enough to enable file sharing. This Webcast dives...
- Modernizing SAP environments with minimum risk - a path to Big Data Hear from top IDC analyst, Richard Villars, about the path you can start taking now to enable your organization to get the benefits...
- All Government IT Webcasts
Does your organization offer extensive benefits, cool perks, competitive salaries, opportunities for training and advancement? Then get it recognized!
Nominate your company or another deserving organization for Computerworld's 2014 Best Places to Work in IT list now through Dec. 12, 2013.