Georgia’s voting machines recorded votes properly – but they have hacking vulnerabilities that went undiscovered for years. The findings are from a recent review of the voting machines and represent a mixed bag for people concerned about foreign and domestic interference in U.S. elections. First, the good news: There’s no evidence any of the vulnerabilities have been used to alter votes in any elections, as my colleagues Ellen Nakashima and Amy Gardner report. Most of the vulnerabilities are also quite difficult to exploit, requiring hands-on access to the voting machines. And they’re likely to be caught by standard security protocols in election offices. But: The vulnerabilities in the Dominion Voting Systems-brand machines remained undetected for years. They might not have been discovered now if not for a long-running lawsuit over the security of Georgia’s machines during which University of Michigan computer scientist J. Alex Halderman was given a chance to examine the machines on behalf of the plaintiffs in the case. Such independent reviews are still relatively rare — and election security advocates warn vulnerabilities in other voting systems could still be waiting out there undiscovered. Halderman’s findings were verified by the Cybersecurity and Infrastructure Security Agency (CISA), which is in the process of notifying more than a dozen states that use the machines about the vulnerabilities and mitigation measures they should take, according to Ellen and Amy who got an advance look at the CISA advisory.
American Democracy Isn’t Ready for Online Voting | Spenser Mestel/The Atlantic
This weekend, Australians will vote in the country’s federal elections. The process will likely be seamless, transparent, and punctuated by countless civic-minded barbecues affectionately known as sausage sizzles. This is how elections generally go in Australia, but for those in New South Wales, that wasn’t the case late last year. The state had encouraged a significant number of voters to move to an internet-voting system called iVote. In December, it melted down so badly that the New South Wales Electoral Commission not only discontinued its use but also asked a court to nullify the results of three city-council elections. It was an embarrassing failure for e-voting. More than 650,000 online votes were cast—probably a world record, says Vanessa Teague, an election-security expert and a professor at the Australian National University. Teague has been warning governments about vulnerabilities in e-voting for years, as have cybersecurity researchers in the U.S., where systems like iVote are being expanded in at least nine states. Letting people vote from home with the click of a button is an appealing idea, especially in the U.S., where turnout is abysmal. The problem, the American Association for the Advancement of Science says, is that there’s no “evidence that any internet voting technology is safe or can be made so in the foreseeable future … All research to date demonstrates the opposite.”
Full Article: American Democracy Isn’t Ready for Online Voting – The Atlantic