The following text is copyright 2004 by Network World, permission is hearby given for reproduction, as long as attribution is given and this notice is included.
Sometime via the 'Net?
By Scott Bradner
I wrote a column about Internet-based voting after the chad-filled fiasco of the last presidential election. The column was not all that sanguine about the prospects. Events of the last few weeks have reinforced my skepticism.
About three years ago my column, titled "Next time via the 'Net?" (http://www.nwfusion.com/columnists/2000/1120bradner.html), explored a few of the issues with Internet-based voting. Even though the column missed the most important conflict (the requirement for reliable authentication of the voters conflicts with the requirement for anonymity) it was still quite negative and concluded "there are no panaceas here - we can look forward to this kind of fun for years to come."
Two different electronic voting-related stories have peaked in the last few weeks. The first story, which never seems to end, concerns the poor design and implementation of the Diebold Elections Systems Inc. electronic voting machines. Yet another report on the systems was published at the end of January. This time it was a report from a "red team" of hackers, commissioned by the Maryland state Department of Legislative services, about how easy it was to hack the Diebold equipment. The report also detailed some of the quite stupid (and that is the most positive way to put it) features of the Diebold systems (such as using the same key to the easily pickable lock on all the Diebold voting machines in the state). At least now some of the state elections officials are beginning to temper their blind enthusiasm for the devices. The worry is not confined to Diebold systems, reports surfaced on February first of glitches with the Sequoia Voting Systems equipment used in some California districts in the gubernatorial recall election.
The second story concerns the US Department of Defense plan to use an Internet-based voting system in the 2004 presidential election for 100,000 or so overseas US citizens. A bipartisan group of party organizers asked the Defense Secretary Donald Rumsfeld to halt the use of the $22 million system, known as SERVE (the Secure Electronic Registration and Voting Experiment) after a report by a team of computer security experts concluded that it was fatally flawed. (http://servesecurityreport.org/) Of course, the officials at the Pentagon who have been overseeing the project dismissed the concerns and professed full confidence in SERVE.
Watching these stories one might wonder if it's ever going to be possible to have electronic voting systems that we can trust, with or without the Internet component. I expect it is possible, but the experiences to date do not indicate that it will be anytime soon. We can get a lot closer, at least with electronic voting machines by taking some simple steps like having the voting machine print out a paper verification ballot. (See http://verifiedvoting.org/ for more details and a petition you can sign if you are worried.) But, as long as election officials are more concerned with justifying their decisions than in fair elections and as long as the companies producing the systems try to mimic security with secrecy instead of producing open verifiable implementations we will all be at risk.
disclaimer: There is no question that we will have believable electronic voting "soon" as long as we are using "soon" in the context of a organization that is far older than the country but that is my opinion, not Harvard's.