In 2006, Princeton Computer Science Professor Edward Felten received an anonymous message offering him a Diebold AccuVote TS, one of the most widely used Touch-Screen Voting Machines at the time. Manufacturers like Diebold touted the Touch-Screens, known as Direct-Recording Electronic (DRE) Machines, as Secure and more convenient than their Paper-based Predecessors. Computer Experts were skeptical, since any Computer can be vulnerable to Viruses and Malware, but it was hard to get ahold of a Touch-Screen Voting Machine to Test it. The Manufacturers were so secretive about how the Technology worked that they often required Election Officials to sign Non-Disclosure Agreements preventing them from bringing in outside Experts who could assess the Machines.
Felten was intrigued enough that he sent his 25-year-old Computer Science Graduate Student, Alex Halderman, on a mission to Retrieve the AccuVote TS from a trenchcoat-clad man in an alleyway near New York’s Times Square. Felten’s Team then spent the Summer working in Secrecy in an unmarked room in the basement of a building to Reverse-Engineer the Machine. In September 2006, they Published a Research Paper and an accompanying Video detailing how they could Spread Malicious Code to the AccuVote TS to change the Record of the Votes to produce whatever outcome the Code Writers desired. And the Code could spread from one Machine to another like a Virus.
That was more than a decade ago, but Georgia still uses the AccuVote TS. The State is one of Five States: Delaware, Louisiana, New Jersey, and South Carolina, that rely entirely on DREs for Voting. Ten other States use a Combination of Paper Ballots and DRE Machines that leave No Paper Trail. Many use a Newer Version of the AccuVote known as the TSX, even though Computer Scientists have demonstrated that Machine, too, is Vulnerable to Hacking. Others use the Sequoia AVC Advantage, which Princeton Professor Andrew Appel Demonstrated could be similarly Manipulated in a 2007 Legal Filing. Appel bought a Sequoia Machine Online for $82 and Demonstrated that he could Remove 10 Screws and easily Replace the Sequoia’s Memory Card with a Modified Version that would alter the Outcome of an Election.
Election Security, typically a Niche Topic, emerged as a Mainstream concern last Summer after the Democratic National Committee announced that Russian Hackers had penetrated their Computer Systems. The DNC Hack was an early Indication that Moscow had decided to Interfere with the U.S. Presidential Election, and the RNC Hack where no Information was Leaked, raising Alarms that their efforts could extend to the Vulnerable Touch-Screen Machines that record Millions of Votes around the Country.
By the time the Cyberattack became Public, it was too late to replace them, but in the year since the Hacks Revelations, there has been little tangible progress in Securing America’s Voting Machines. “Basically nothing has changed, except that we are now at least more aware of the threat,” said Halderman, who is now a Computer Science Professor at the University of Michigan. “Ten years ago, had you said a foreign government is going to try to hack U.S. election equipment, I’d say it’s technically possible but so unlikely. But what we saw in 2016 was a concerted attempt by a foreign power to attack election infrastructure.”
Computer Scientists like Halderman, Appel, and Felten have been Warning States about the Risks of DRE Machines for over a Decade, urging them to Replace Touch-Screen Machines with Paper Ballots that can be Read with an Optical Scanner and easily Audited after an Election. Paper Ballots create a Physical Copy of the Voter’s Choice that can be Checked against the Results. With DRE machines, it’s impossible to Verify whether the Choice the Person intended to select is, in fact, what the Machine Recorded. Felten even started to post Pictures of Unguarded Voting Machines on a Blog to show how easily a Hacker could Access them.
Most States have listened and gradually Replaced their Touch-Screen Voting Equipment with Paper Ballots or added “voter verifiable paper audit trail” Printers (VVPAT) to their DRE Machines that Prompt the Voter to confirm their Selections on a Separate Paper Record before the Computer Logs the Vote. But in Close Elections, Security Weaknesses in even a handful of States risk Swinging the Outcome.
On Nov. 7th, the Day before last year’s Elections, former CIA Director James Woolsey flagged DRE Voting Machines as a Key Vulnerability. “If I were a bad guy from another country who wanted to disrupt the American system … I think I’d concentrate on messing up the touch-screen systems,” he said.
Meg Casper Sunstrom, Press Secretary for the Louisiana Secretary of State, was dismissive of the criticism from Computer Scientists said about their voting Machines. “None of them have ever worked in an election,” said Sunstrom, arguing that the Machines are Secure because they are Tested before and after the Election, Locked, and Secured with a Tamper-Proof Seal before Voting Begins and are never connected to the Internet. And although there is no Paper Trail to Audit, Sunstrom says the Computer Printout of the Vote Totals allows Officials to Verify that the Number of Votes Cast matches the Number of Voters who Signed in at each Precinct.
But this does not Protect against: Poll Site Supervisors not Clearing the Machine Counters before Voting Starts, or more Voters Voting than Registered.
The Computer Scientists Lobbying against DREs aren’t convinced, however. Machines don’t need to be connected to the Internet to be Infected with Malware, and the Computer Printouts “provide no protection whatsoever against hacked machines,” Halderman wrote in an email. “Someone who hacks the machine can cause it to print out whatever they want. My group did that with the Diebold DREs we hacked, for instance.”
The Touch-Screen Voting Machines in Louisiana are more than 10 Years Old, and the State is looking to Replace them, though Sunstrom says they don’t Plan to use Paper ballots because “people don’t like paper ballots at all!”
Even in Jurisdictions where Election Officials want to get Rid of their Touch-Screen Machines, most States don’t have the Money to Purchase New Equipment. After the George W. Bush-Al Gore Recount Debacle in 2000, when Punch-Card Voting Machines rendered some Ballots Unreadable, Congress Passed the Help America Vote Act in 2002, which has Provided States with over $3 Billion to Modernize their Equipment. All 50 States took the Money, and most of them used it to buy Touch-Screen DRE Voting Machines. The Act, passed in 2002, “fundamentally changed the market for voting machines,” Election experts Lawrence Norden and Christopher Famighetti wrote in a Brennan Center for Justice Report. By 2006, 38% of Registered Voters used Electronic Voting Machines, compared with 12% in 2000.
But within a few years, Demonstrations of how Vulnerable those New Machines are to Tampering caused most Jurisdictions to Switch to Paper Ballots. Last November, at least 80% of Voters made their Selections on a Paper Ballot or an Electronic Machine that also Produces a Paper Trail, the Brennan Center found. The Brennan Center estimates that Replacing the Country’s Paperless Voting Machines would cost $130 Million to $400 Million, a fraction of what Congress allocated in 2002. But most States have already spent the Money they got from the Federal Government, and some of those still using Touch-Screen Systems are simply accustomed to their convenience.
When Election Officials argue that their DRE Machines are Secure, it’s hard to tell if they really doubt Warnings from Experts or if they are reluctant to cast doubt on Machines they can’t afford to Replace. Officials are “sensitive to the risk of undermining confidence in elections,” said Felten, who went on to Serve in the White House Office of Science and Technology Policy under President Obama. “That can make it difficult to have straightforward conversations about the risks that exist.”
New Jersey, which is among the States that rely entirely on Electronic Voting Machines, passed a Law in 2005 requiring all Voting Machines to produce a Voter-Verified Paper Record by Jan. 1st, 2008, ahead of the State’s Presidential Primary. But the Law was Extended and ultimately never Implemented because of Funding Issues. Upgrading the State’s Voting Systems was projected to cost $19 Million. “That $19 million is going to be used to help people who can’t find jobs, feed their families or heat their homes,” Assemblywoman Joan Quigley said in 2009.
Part of the reason it is so difficult to get the Nation equipped with Secure Voting Equipment is the Decentralized nature of Elections in the U.S. There are about 8,000 Election Jurisdictions in the Country, and Procedures are Regulated at the State Level. The Help America Vote Act (HAVA) created an Election Assistance Commission (EAC), but its Guidelines are Voluntary and “not at all rigorous,” Halderman argues. Lawmakers have, by and large, been hesitant to impose more Restrictive Standards on States out of fear that they’ll be accused of Federal Overreach. The current Republican Administration wants to eliminate the EAC and the HAVA Act.
If States want to Patch the Weaknesses in their Election Infrastructure before the 2018 Midterm Elections, they will need to act immediately. And that will likely require a New Funding Commitment from Congress.
Wallach, the Computer Scientist who told Lawmakers last year to treat the 2016 Hack as a Warning, is not optimistic that Politicians will heed his advice. “Somehow support for election integrity in the face of the Russian threat has become entangled with support for President Trump, which means that we don’t have the bipartisan support that would be helpful in getting things done,” Wallach said.
NYC Wins When Everyone Can Vote! Michael H. Drucker
No comments:
Post a Comment