Diebold says e-voting hardware secure, critics off base

Computerworld - A Diebold Election Systems official is firing back at e-voting critic Avi Rubin, calling the Johns Hopkins professor and Maryland elections judge a "strong activist against e-voting" who is predisposed to find that e-voting machines lack proper security.

Mark Radke, head of marketing for Diebold, made the comments in response to several points raised by Rubin in the wake of a problematic primary election last week in Maryland.

Radke defended the security of Diebold's AccuVote TS hardware, which was used last week in Baltimore County. For instance, he said that a tamper-resistant seal used to prevent tampering with the AccuVote's memory card is commonly used and effective -- despite concerns from Rubin that it could be easily removed and replaced. Rubin also felt Diebold didn't provide adequate support during the Maryland election and said Diebold electronic polling book devices used to check in voters suffered from poor performance.

Radke said the current version of the AccuVote software supports dynamic passwords, Secure Socket Layer (SSL) encryption and two-way authentication to transmit election results and relies on a memory card that is digitally signed. He also argued that the e-poll books have been used successfully in other states, such as Georgia, and said they provide a streamlined way to check voters in.

Acknowledging performance issues with the e-poll books, Radke said they were caused by a technical glitch that made the books reboot themselves frequently -- an issue has been addressed in the last week. "It was a minor issue and the cause of the inconvenience has been rectified," said Radke.

He also said Diebold provided the required levels of hardware support, he said. "Our Maryland state contract calls for one technical person for every 15 precincts. In addition to these technical people, we actually had other representatives that were in the field at a combined ratio of one for every two precincts in the morning to observe the poll opening process, and report any issues that occurred. The technical people were in place for the duration of the election," he said.

Rubin, who had questioned the quality of the support personnel on hand for the primary day balloting, has been a critic of e-voting for several years. In 2003, he published a study highly critical of the security of the AccuVote TS touch screen voting system, work that led to a book released this past month called Brave New Ballot: The Battle to Safeguard Democracy in the Age of Electronic Voting.

For his part, Radke asserted that some of the allegations in Rubin's 2003 report on the AccuVote TS were "not factual." Among them, he claimed that Rubin had said the TS machines were vulnerable from hacking via the Internet; the machines didn't have Internet connectivity.

Not true, Rubin said today when asked about Radke's charge. "We never said anything about the Internet," he said. "They always say we said it. We never did. They are beating down an argument we didn't make."