National: Voting Machines: A Weak Link | EE Times

In my community, we vote by filling in circles on a paper sheet that goes into a scanner — we have a paper trail. Can such a process still be hacked? Yes, though paperless voting machines can more easily be hacked. Professors Ronald Rivest of MIT and J. Alex Halderman of the University of Michigan explained on Sept. 13 in a session at EmTech MIT on how hackers can alter elections. According to Rivest, about 80% of voting jurisdictions in the U.S. have some sort of paper trail in the event of voting-machine hacks. If, however, you vote in Delaware, Georgia, Louisiana, New Jersey, South Carolina, or Nevada, there is no way to hand-count the votes should the need arise; votes are electronically recorded. The map below reveals that many other states use a mixture of paper and paperless voting systems. 

National: The Latest Casualty of States’ Rights: Your Vote | WhoWhatWhy

From racial segregation to environmental destruction to voter suppression, the concepts of “federalism” and “states’ rights” have a long-running association with some of the worst outcomes of American conservatism. And we may soon add “endangering American democracy” to that list. These political philosophies are being invoked to sink a key election-security bill — at a time when midterm elections are being actively probed and prodded for weaknesses by potentially hostile nation-states. The Secure Elections Act (SEA), which seemed poised to become a rare bipartisan slam-dunk, may not even make it to a vote now that the bill has been pulled from committee, reportedly under order of the Trump White House.

National: 5 states will vote without paper ballots; experts want that to change | ABC

When voters go to the polls in five states, a verified paper trail will not follow them. At a time of heightened concerns over election interference, election-security experts have called for that to change, suggesting paper results – visually confirmed by voters – would help state officials recover in the event of meddling or simple mistakes. “That presents a greater risk because there’s no way to detect if things have gone wrong,” said Marian Schneider, former deputy secretary of voting and administration in Pennsylvania and the president of the group Verified Voting. Paper ballots – or, at least, auditable paper trails, in which voters can see their choices recorded on a printed roll of paper – have been recommended by experts from Homeland Security Secretary Kirstjen Nielsen to the Brennan Center for Justice’s Democracy Program to the Defending Digital Democracy Project at Harvard’s Belfer Center. A large swath of Americans, however, will vote without them.

National: Lawsuit claims potential voters stuck in naturalization limbo | KABC

Advocates for immigrants and voting rights filed a federal lawsuit Monday demanding information from the U.S. Citizenship and Immigration Service. The groups believe that the Trump administration is engaged in deliberate foot-dragging to potentially slow new citizens from registering as Democrats. According to federal figures, 6.6 million people followed the process and became eligible to vote in the decade before 2012. Plaintiffs said the flow has since hit a roadblock. “They have at least doubled the amount of time it takes to become a citizen,” said Peter Schey, president of the Center for Human Rights and Constitutional Law.

National: Facebook pilots new political campaign security tools — just 50 days before Election Day | TechCrunch

Facebook has rolled out a “pilot” program of new security tools for political campaigns — just weeks before millions of Americans go to the polls for the midterm elections. The social networking giant said it’s targeting campaigns that “may be particularly vulnerable to targeting by hackers and foreign adversaries.” Once enrolled, Facebook said it’ll help campaigns adopt stronger security protections, “like two-factor authentication and monitor for potential hacking threats,” said Nathaniel Gleicher, Facebook’s head of cybersecurity policy, in a Monday blog post.

National: Paul Manafort: Trump’s ex-campaign chair agrees to cooperate with Mueller | The Guardian

Paul Manafort, Donald Trump’s former campaign chairman, has agreed to cooperate with Robert Mueller’s inquiry into Russian interference in the 2016 election, in a move that could cause legal trouble for the president. The dramatic development in the Trump-Russia saga was announced at a court hearing in Washington DC on Friday morning, where Manafort confessed to two criminal charges as part of a plea deal. “I’m guilty,” he said. Manafort signed a 17-page plea agreement that said he would assist government prosecutors with “any and all” matters, and brief officials about “his participation in and knowledge of all criminal activities”. He also agreed to turn over documents and testify in other cases. 

National: How to hack an election—and what states should do to prevent fake votes | MIT Technology Review

Donald Trump won the 2016 presidential election thanks to the votes of just 107,000 people in three states. The intricacies of the Electoral College help create situations where a relatively small number of US citizens can decide who wins the presidency. How susceptible could these votes be to tampering? The answer: a lot more than you might realize. In a live demonstration at MIT Technology Review’s EmTech conference today, J. Alex Halderman, professor of computer science and engineering at the University of Michigan, showed just how easy it would be to meddle with vote tallies to directly change election outcomes. Halderman brought an AccuVote TSX machine to the stage in a live demonstration of the dangers. He had three volunteers use the machine to vote in a mock election between George Washington and Benedict Arnold. Cameras pointing at the screen and projected above the stage showed the three voters casting their ballots for Washington. Yet when Halderman printed the returns from the machine, the reported result was a two-to-one victory for Arnold. 

National: The Overlooked Weak Link in Election Security | ProPublica

More than one-third of counties that are overseeing elections in some of the most contested congressional races this November run email systems that could make it easy for hackers to log in and steal potentially sensitive information. A ProPublica survey found that official email accounts used by 11 county election offices, which are in charge of tallying votes in 12 key U.S. House of Representatives races from California to Ohio, could be breached with only a user name and password – potentially allowing hackers to vacuum up confidential communications or impersonate election administrators. Cybersecurity experts recommend having a second means of verifying a user’s identity, such as typing in an additional code from a smartphone or card, to thwart intruders who have gained someone’s login credentials through trickery or theft. This system, known as two-factor verification, is available on many commercial email services. “Humans are horrific at creating passwords, which is why ‘password’ is the most commonly used password,” said Joseph Lorenzo Hall, the chief technologist at the Center for Democracy and Technology in Washington, D.C., who has pushed for security fixes in the voting process. This means increasingly we need something other than passwords to secure access to our accounts, especially email, which tends to undergird all our other accounts.”

National: Feds brief House Oversight on election security for 2018 midterm elections | Washington Examiner

The House Oversight Committee held a classified briefing on election security and foreign influence on Thursday, with less than two months until the midterm elections. “As we near midterm elections, we must take every step possible to safeguard our electoral process and ensure our fellow citizens have confidence in the security of elections,” said committee Chairman Trey Gowdy, R-S.C., in a statement.

National: Lawmakers warn Trump’s election interference order does not go nearly far enough | The Washington Post

The Trump administration’s latest effort to deter foreign interference in U.S. elections is falling flat with lawmakers, who are prepared to pursue even tougher punishments against Russia and other adversaries who seek to disrupt U.S. politics. Democrats — and at least one Republican — said President Trump’s order Wednesday authorizing additional sanctions against foreign entities that interfere in elections is too weak because it gives Trump discretion over when to impose the harshest penalties, as my colleagues Anne Gearan and Felicia Sonmez reported. The lawmakers seized on the opportunity to renew calls for legislation that they argued would more effectively deter election cyberattacks. 

National: Civil Rights Commission Calls for Action on Voting Rights Fix | Roll Call

The U.S. Commission on Civil Rights urged Congress on Wednesday to update the landmark law that protects voter rights, finding in a new report that a 2013 Supreme Court decision helped lead to elections with voting measures in place that discriminate against minorities. But opposition from Republican lawmakers has stalled legislation to change the Voting Rights Act of 1965 since the 5-4 decision in Shelby County v. Holder that struck down a key enforcement mechanism in the law. Current efforts appear stuck for the same reason.

National: Facebook ‘Better Prepared’ to Fight Election Interference, Mark Zuckerberg Says | The New York Times

Mark Zuckerberg began the year by promising to make Facebook safer from election interference around the world. He has spent most of the rest of the year apologizing for not recognizing the problem earlier. On Wednesday, Mr. Zuckerberg, Facebook’s chief executive, published a roughly 3,300-word blog post cataloging all the steps the company has taken. “In 2016, we were not prepared for the coordinated information operations we now regularly face,” he wrote, alluding to Russian interference in the American presidential election. “But we have learned a lot since then and have developed sophisticated systems that combine technology and people to prevent election interference on our services.” “Today, Facebook is better prepared for these kinds of attacks,” he added.

National: The Voters Who Disappeared From the Rolls | Literary Hub

The story read like something straight out of Stalinist Russia. But this casualty list was in the United States in the 21st century. Virginia: 41,637 purged. Florida: 182,000 purged. Indiana: 481,235 purged. Georgia: 591,549 purged. Ohio: two million purged. With the flick of a bureaucratic wrist, millions of Americans—veterans, congressional representatives, judges, county officials, and most decidedly minorities—were erased. To be clear, they still had their lives, but in the course of simply trying to cast a ballot, they soon learned that as far as the government was concerned, they did not exist. They were electorally dead. Their very right to vote had disappeared into the black hole of voter roll purges, Interstate Crosscheck, and felony disfranchisement. Some of the walking dead were viscerally “angry.” Others fumed, “This is screwed up!” Most felt “like an outcast,” “empty and unimportant,” and one man was actually reduced to “crying right there in the county elections office.” These were the latest casualties in the war on democracy.

National: Protection of Voting Rights for Minorities Has Fallen Sharply, a New Report Finds | The New York Times

Federal actions to enforce voting rights for minorities have declined sharply since the Supreme Court struck down the core of the 1965 Voting Rights Act five years ago, the federal Commission on Civil Rights says in a sweeping new report on voting issues. Even enforcement of the act’s remaining provisions has dropped markedly, the report states. In an interview before the report’s formal release on Wednesday, the head of the commission, Catherine E. Lhamon, called the present state of discrimination against minority voters “enduring and pernicious,” and said it was poorly addressed under federal law. “To be at this point in our history, without either meaningful federal protections in law or in practice from the United States Department of Justice, is a low point” since the passage of the Voting Rights Act, she said. “And that’s dangerous.”

National: How to hack the midterm election with social media | CBS

During the 2016 presidential campaign, Russian cyber-operatives conducted a sustained “influence campaign” cyberattack on the American electoral system by relying on social media to radicalize voters, undermine institutions, and disseminate misleading information. The efforts are ongoing in the weeks leading up to the 2018 midterms — and other countries are doing it, too. Influence campaigns — coordinated efforts to create and propagate misleading and inflammatory content on social media — borrow heavily from modern internet-based marketing techniques. “[Tech] platforms are especially good at helping marketers hit a target audience with a refined message,” says Adweek technology editor Josh Sternberg. “Influence campaigns are no different. They’re effective because social media marketing is effective.”

National: Trump’s New Executive Order Slaps a Bandaid on Election Interference Problems | WIRED

On Wednesday President Donald Trump signed an executive order that would automatically impose sanctions against any person or group attempting to interfere in United States elections. “The proliferation of digital devices and internet-based communications has created significant vulnerabilities and magnified the scope and intensity of the threat of foreign interference [to elections],” Trump writes in the order. “I hereby declare a national emergency to deal with this threat.” The order covers attacks not just on vote integrity and election infrastructure, but also disinformation campaigns, information leaking, propaganda, and other types of interference like what took place during the 2016 presidential campaign. Since then, efforts to improve election infrastructure defenses around the country have been uneven. President Trump himself has sent mixed messages on his willingness to prioritize election security and hold Russia accountable for its interference.

National: New NASEM Report Suggests Blockchain And Online Voting Systems Are No-Go | BitCoinExchange

The United States National Academies of Sciences (NASEM) released a report which asserted that virtual voting systems ought to be shelved. The firm is supporting the use of paper ballots in the entire US electoral system by 2020. According to the report entailed in the 156 page document, NASEM insists that virtual systems of voting ought to be shelved until such a time that the system can be verified to be secure. Authors of the said report are of the view that making use of the blockchain as an irreversible ballot box may appear promising, however, the technology may not be in a position of addressing the essential issues of the electoral process. The report is in essence a conclusion of a study that lasted two years. The committee behind the research comprised of election scholars, cybersecurity experts, as well as social scientists. Over and above, the report campaigns for the use of human-readable paper ballots in the next US elections.

National: Redistricting reformers turn to ballot initiatives | The Hill

Nonpartisan redistricting proponents are turning to midterm election referendums in key states where legislative leaders have signaled no desire to give up their authority on drawing political boundaries. Voters in four states — Michigan, Missouri, Colorado and Utah — will weigh in on ballot measures this November that would radically reshape the way congressional or legislative district lines are drawn. In those states, legislative leaders have the power to draw state legislative and congressional district lines, authority critics say they have used to safeguard incumbents. The initiatives, placed on the ballot by good-government groups and, in some states, by Democratic activists, would vest the power to draw district boundaries in the hands of independent commissions.

National: On The Sidelines Of Democracy: Exploring Why So Many Americans Don’t Vote | NPR

Just in the past few months, elections in the U.S. have been decided by hundreds of votes. The 2016 presidential election tilted to Donald Trump with fewer than 80,000 votes across three states, with a dramatic impact on the country. Yet, only about 6 in 10 eligible voters cast ballots in 2016. Among the other 4 in 10 who did not vote was Megan Davis. The 31-year-old massage therapist in Rhode Island never votes, and she’s proud of her record. “I feel like my voice doesn’t matter,” she said on a recent evening at a park in East Providence, R.I. “People who suck still are in office, so it doesn’t make a difference.”

National: How Money Affects Elections | FiveThirtyEight

To quote the great political philosopher Cyndi Lauper, “Money changes everything.” 1 And nowhere is that proverb more taken to heart than in a federal election, where billions of dollars are raised and spent on the understanding that money is a crucial determinant of whether or not a candidate will win. This year, the money has been coming in and out of political campaigns at a particularly furious pace. Collectively, U.S. House candidates raised more money by Aug. 27 than House candidates raised during the entire 2014 midterm election cycle, and Senate candidates weren’t far behind. Ad volumes are up 86 percent compared to that previous midterm. Dark money — flowing to political action committees from undisclosed donors — is up 26 percent.

National: What election security funding means for state and local CIOs | GCN

For years, cybersecurity was considered an issue for IT teams and was often not prioritized when creating and executing policy. However, recent events have demonstrated the many ways that cyberattacks can impact a country’s critical infrastructure, bringing essential operations to a halt and even endangering citizens. These attacks have come in the form of ransomware at schools and hospitals, data breaches at major financial institutions and large-scale distributed denial-of-service attacks that have knocked organizations of all types offline. As a result, politicians and government bodies have come to recognize the critical importance of cybersecurity in protecting national infrastructure. As digital transformation increases technology use across public infrastructure, the attack surface continues to grow. Government CIOs and IT teams are working to deploy security measures that enable transformation, rather than slow it down. For instance, Fortinet’s latest Global Threat Landscape Report found that government agencies use, on average, 255 different applications a day on their networks.

National: Better cooperation between states and U.S. can help safeguard midterm elections, officials say | St. Louis Post-Dispatch

U.S. Homeland Security Secretary Kirstjen Nielsen during a visit to the St. Louis area on Monday pledged the government’s assistance to states battling threats to election security, calling interference with elections one of the “principal national security threats.” Nielsen was a guest speaker at a two-day seminar on election security that began Monday at the headquarters of World Wide Technology in West Port Plaza. The event, hosted by Missouri Secretary of State Jay Ashcroft, was also attended by 10 other secretaries of state on Monday, and more were expected Tuesday. Nielsen has recently spoken about a growing need for cybersecurity in elections, reversing the course of an administration that has been criticized for not doing enough.

National: For Older Voters, Getting The Right ID Can Be Especially Tough | NPR

Nearly three dozen states require voters to show identification at the polls. And almost half of those states want photo IDs. But there are millions of eligible voters who don’t have them. A 2012 survey estimated that 7 percent of American adults lack a government-issued photo ID. While some organizations have sued to overturn these laws, a nonprofit organization called Spread The Vote has taken a different tack: It helps people without IDs get them. And people over 50 years of age have presented some of their biggest challenges. On a recent Tuesday morning in Austell, Ga., 53-year-old Pamela Moon tried to get a replacement for an ID she had lost. She worked with a Spread The Vote volunteer at the Sweetwater Mission. The group sends volunteers to the mission every other Tuesday, so that people who come for food and clothes can get help obtaining a Georgia ID at the same time.

National: Report: Blockchain tech is not ready to be used for voting | CryptoNewsReview

Blockchain technology is unsuitable for use in voting systems until they are verified as secure, a scientific report has warned. The study, from the US National Academies of Sciences, Engineering, and Medicine, concludes that internet-based voting systems are not ready for current use, although they “may seem promising” for use in the future. “Insecure internet voting is possible now, but the risks currently associated with internet voting are more significant than the benefits,” the report reads. “Secure internet voting will likely not be feasible in the near future.

National: State Supreme Courts Increasingly Face Partisan Impeachment Threats | Governing

Attacks on judicial independence are becoming more frequent and more partisan. The current effort to impeach the entire West Virginia Supreme Court, while not unprecedented, is taking place against a backdrop of political attacks against judges elsewhere. “There’s a kind of a war going on between the legislatures and the courts,” says Chris Bonneau, a political scientist at the University of Pittsburgh. “Absolutely, we’re seeing a new environment.” The West Virginia House last month voted to impeach all the sitting justices on the state Supreme Court. The state Senate is set to begin its impeachment trial Tuesday. There were legitimate reasons for legislators to go after justices, or at least some of them.

National: How can election groups get out the vote when just half of Americans say process is ‘fair and open’? | USA Today

Helen Butler carefully avoids mentioning Russian hacking or other threats to election systems when she tries to register voters in Georgia. She doesn’t want to scare off people already doubting their vote will count. “I’m concerned about anything that would dissuade voters from participating,” said Butler, executive director of the Georgia Coalition for the Peoples Agenda.  As midterms approach, Butler, election officials and others face the challenge of persuading  wary voters to go to the polls.  They’re right to be concerned. Only about half of American voters believe the nation’s elections are “fair and open,” according to a recent University of Virginia Center for Politics/Ipsos poll. And only 15 percent of those voters “strongly agree” with that.

National: This fall you may be voting with obsolete voting machines and ancient software | NBC

The state of Illinois has improved its cyber defenses since hackers broke into its voter database in 2016 — but the actual machines that will record votes in this fall’s midterms are another story. Most of the state’s voting machines need to be replaced, says Steve Sandvoss, executive director of the Illinois State Board of Elections. How many? “It depends on which counties you ask,” said Sandvoss, “but I would say 80, maybe 90 percent. That’s the figure I’m hearing.” Illinois is not alone. Despite compromises of election systems in seven states in 2016, NBC News has interviewed a wide variety of experts in the two years since that election who say a majority of both the nation’s voting machines and the PCs that tally the votes are just not reliable. Most of the nation’s voting machines, for example, are close to 15 years old.

National: US Elections Must Go Back to Paper — Report | Infosecurity Magazine

US voting infrastructure should return to paper ballots by the next presidential election, according to a major new report from the non-profit The National Academies of Sciences, Engineering, and Medicine. Commissioned by the non-profit Carnegie Corporation of New York and charity the William and Flora Hewlett Foundation, the two-year report concluded that online voting apparatus is too exposed to potential compromise. Citing Russian infiltration ahead of the 2016 presidential election, it warns that “aging equipment and a lack of sustained funding” have further undermined efforts to maintain resilience. Ideally by the mid-terms later this year but certainly by the next presidential election in 2020, all US local, state and federal elections should return to human-readable paper ballots, the report argued. Not only this, but marked ballots should also not be sent over the internet or any connected network, as no technology can currently guarantee their “secrecy, security, and verifiability.” These ballots could be made and counted by hand or machine, but any systems which don’t allow for independent auditing should be removed, the report continued.

National: Talks break down for bipartisan pledge to reject using hacked materials | CNN

The head of House Republicans’ campaign arm defended abruptly pulling out of late-stage negotiations with Democrats on a pledge to reject using hacked materials in election ads, citing an erosion of trust between the parties. But National Republican Congressional Committee chairman Steve Stivers, an Ohio congressman, on Friday also took his strongest public stance to date against using such illicit materials, telling reporters, “We are not seeking stolen or hacked material, we do not want stolen or hacked material, we have no intention of using stolen or hacked material.” Stivers and his Democratic counterpart, New Mexico Rep. Ben Ray Lujan, have been in talks since May to try to reach an agreement on a pact, which they hoped would send a strong message against election interference in the lead-up to the midterms.

National: US wages ‘cyber combat’ to protect elections, could ‘do more’ | NBC

Behind a locked steel door somewhere in northern Virginia, America’s fight in cyberspace never shuts down. On the eve of the National Election Security Summit in St. Louis, where elections officials from across the country will meet with homeland security and cyber experts, the Hearst Television National Investigative Unit is taking viewers inside the secure center outside the nation’s Capitol where the United States wages “cyber combat” to protect the voting process. “This is the place where we coordinate everything,” explained DHS Assistant Secretary for Cybersecurity Jeanette Manfra while giving Hearst Television a one-on-one tour of the watch floor of the National Cybersecurity and Communications Integration Center (NCCIC).