I have made a study of optical scanned ballots because we use them here in Minnesota.
Don't tell me I don't know what my state is doing and how. It's insulting.
We have both precinct and central tabulators that run on Diebold code and the DB is Microsoft Access--exactly like what Bev Harris demonstrated on Topic A when Dean was hosting.
READ THIS:
http://www.chuckherrin.com/paperballots.htm<snip>
Have we lost our frickin' minds? We don't even have paper receipts, much less ballots! And it's not just the touchscreens - that's something else that a lot of people are missing. You have to take a step one level back in the tabulation process to the computers that actually do the tallying. That's where votes from touchscreens, as well as optically scanned AND absentee ballots come together to be counted. Don;t get me wrong - these touchscreens suck- but the problem is bigger than just that. Lemme tell you about just one of these systems. It's the General Election Management Software, or GEMS, made by Diebold. You know Diebold, the folks who hired felons, the ones that make ATMs but say they can't put printers on voting machines?These GEMS machines run on that most secure and stable operating system- Microsoft Windows. Mostly Windows 2000. GEMS is designed to work with Office - it says so on Diebold's site. These machines are connected by modem pools, network connections, or the Internet, and they receive the vote data from the reporting precincts, where it is then "counted". If you would like to see the security of this software, I'd like for you to go to www.chuckherrin.com/hackthevote. I will walk you through how easy it is to change tens of thousands of vote, then show you the time stamped reports and audit logs to prove that it doesn't leave a trace. It's so easy, it's not even really hacking. Anyone who has used MS office has done this before. It's incredible, and Diebold and elections officials have known about it for years. Internet memos reveal that being able to change votes in the backend databases "have gotten people out of a bind," and Gaston County, NC and King County WA are specifically mentioned as having done it in the past. This is known criminal activity, that has gone without action, for years. In my first demo of changing votes in a fictional election, I was able to change 11,963 votes in a couple of minutes, and in my second, called speed-hacking the vote, I changes over 1.6 Million votes in 6 minutes, while generating 3 timestamped "official" reports and audit logs showing no trace of wrongdoing. Computers made this possible. Computers enable criminals and those with evil intent to do more than ever before. Before we started using computers, you couldn't hack paper ballots at a distance. Well, now you can.
How hard would it be for one person to change 11,963 PAPER ballots? How long would it take? Could they do it from a distance?
No. But they can now, and not even leave a trace. Don't believe me? That's fine - check out my site and I'll show you exactly how to do it.
There's a lot more info on my site and elsewhere on the web than I have time to tell you now, so let me sum up what I, as a computer security professional and a voter, would like to see from our elections officials and our elected officials.
I want paper ballots.
This is NOT an unreasonable request! And don't give me that bullshit about "we've already paid for them, we need to use them". You made a mistake, and people will understand that. People understand making mistakes, as long as you do the right thing afterwards. But I have some auditor friends from Author Andersen who can tell you what happens when you try to cover your mistakes up. I'm not asking for anything special- just do the right thing.
I want paper ballots!
If my shiny new car breaks down, I don't sit in it and wait for it to work just because I've paid for it. I call the manufacturer out and say "What the hell is wrong with this thing?", and then I use some other, proven method to get where I need to go. The engineering on these machines is horrible, they are not built to any industry standard, and they are not tamper-resistant, they are tamper friendly. It's not just Diebold - they all have problems, and NONE have been certified using industry standards.
<snip>