Breaking News 突發新聞 | | Forum 論壇 | | UK News 英國新聞 | | USA News 美國新聞 | | World News 世界新聞 | | Political News 政治新聞 | | Sci-Tech News 科技新聞 | | War & Terrorism News 戰爭和恐怖主義新聞 | | Sports News 體育新聞 | | Multimedia 多媒體 | | Set Homepage 設為首頁

BREAKING NEWS 突發新聞

Friday, August 22nd, 2008 週五， 2008年8月22日

With less than three months before the presidential election, the hotly contested state, Ohio, along with others, continue to have problems with E-voting technology與少於3個月前的總統選舉，競爭激烈的有爭議的國家，俄亥俄，沿與他人一起，繼續有問題的電子投票技術

By通過 Larry Greenemeier拉里greenemeier

In their rush to avoid a repeat of the controversy that plagued the 2000 presidential election, and to meet the requirements of Congress’s hastily mandated在他們的繁忙，以避免重複的爭議困擾2000年美國總統選舉，並符合國會的授權匆匆 2002 Help America Vote Act 2002年幫助美國投票法案 (HAVA), states and counties flocked to （ hava ） ，國家和縣蜂擁而至 electronic voting systems電子投票系統 they hoped would eliminate hanging chads and other flaws inherent in paper-based systems.他們希望將消除懸chads及其他方面的缺失所固有的文件為基礎的系統。 Six years later, with another presidential election less than three months away, many e-voting systems are fraught with security glitches, and the technology has yet to prove itself as the solution voters were looking for.六年後，與另一總統大選不到3個月的距離，許多電子投票系統充滿了安全故障，和技術至今仍未證明自己作為解決選民正在尋找。

Such systems could allow voters and poll workers to place multiple votes, crash the systems by loading viruses, and fake vote tallies, according to studies commissioned by the states of這種系統可以讓選民和投票的工人把多張選票，崩潰系統加載的病毒，假投票吻合，根據委託進行的研究由國 California加州 and和 Ohio俄亥俄州 within the past year.在過去一年的工作。 Makers of these systems have countered that the test settings were unrealistic.製造商，這些系統已反駁說，測試設置不現實的。 But that is not helping election officials sleep better at night.不過，這是沒有幫助的選舉官員每晚都可以高枕無憂。

One of the reasons e-voting systems turned out to be such a failure is that the only people involved in checking these systems were the vendors, who wanted to sell their technology, and the local election officials, who were ill-equipped to understand the其中一個原因是電子投票系統，原來是這樣的失敗是唯一的人參與了檢查這些系統的供應商，誰想出售他們的技術，和當地選舉官員，誰生病裝備精良的了解 security issues安全問題 , says說， David Dill朱蒔蘿 , a Stanford University computer science professor and founder of the ，斯坦福大學計算機科學教授和創始人之一 Verified Voting Foundation核實投票的基礎 , a nonprofit organization pushing for the implementation of voting processes that can more easily be verified and audited. ，非盈利性組織，推動實施的投票過程，可以更容易地核實和審定。 “There was a certification process in place,” Dill says, “but it had very little to do with security.” “有一個認證過程中的地方， ”蒔蘿說， “但它很少這樣做與安全” 。

Dill is the author of蒔蘿是作者 Attackdog attackdog , threat modeling software that can examine more than 9,000 potential ways a voting system can be attacked, including computer hacking, ballot tampering and voter impersonation. ，威脅建模軟件，可以檢查多個9000潛在的方式表決制度可以被攻擊，包括非法進入他人電腦，篡改選票和選民的模仿。 Attackdog is part of a larger effort called A Center for Correct, Usable, Reliable, Auditable and Transparent Elections ( attackdog的一部分，是一個更大的努力，所謂的中心，正確，實用，可靠，審計和透明的選舉（ ACCURATE精確的 ) , which was launched in 2005 by the National Science Foundation with $7.5 million in funding. ） ，這是在2005年推出的由美國國家科學基金會與750萬美元的資金。 “Nothing we do now will affect the November election,” Dill says. “沒有，我們現在要做的是會影響十一月的選舉， ”蒔蘿說。 “We don’t know how to make secure paperless voting.” “我們不知道如何使安全無紙投票” 。

This sentiment is echoed in many places throughout the US, most prominently in the hotly contested state of Ohio, where這種情緒是呼應，在許多地方整個美國，最突出的，在競爭激烈的爭議，美國俄亥俄州，那裡 Secretary of State Jennifer Brunner國務秘書珍妮佛布魯勒爾 has commissioned a series of tests over the past year to determine whether e-voting systems are secure enough to be trusted.已委託了一系列的測試，在過去的一年裡，以確定是否對電子投票系統的安全性不夠是不可信的。 Based on these tests Brunner has concluded that they are not secure, a decision that基於這些測試布魯勒爾得出結論認為，他們並不安全，決定 Premier Election Solutions, Inc.總理選舉的解決方案，公司 , in Allen, Tex., took exception to. ，在李鵬飛， Tex 。 ，不以為然。 Premier sued Brunner and one Ohio county board of elections in May in a move to get the courts to rule that the company had fulfilled its contractual obligations to the state.總理起訴布魯勒爾和俄亥俄州的一個縣選舉局在5月1動議獲得法院裁定，該公司已履行其合同義務給該國。

Brunner struck back August 6 by countersuing Premier, formerly Diebold Election Systems, Inc., and maker of the touch-screen voting systems into which Ohio has invested more than $62 million since 2005.布魯勒爾擊中回到8月6日，由反訴總理，原diebold的選舉制度， Inc 。和製造商的觸控式螢幕投票系統納入其中俄亥俄州已投資超過6200萬美元自2005年以來。 Brunner’s suit accuses Premier of, among other things, breach of contract and breach of warranty, and seeks court acknowledgement that Premier did not honor its contract.布魯勒爾的訴訟指責總理，除其他事項外，違反合同和違反保證，並尋求法院承認，總理沒有履行合同。 The countersuit also asks for damages of at least $25,000 against Premier for voting system malfunctions that have caused problems in at least 11 of the 44 counties using Premier’s technology during elections since 2005.該反訴，並要求賠償至少二點五零萬美元對總理進行表決系統故障造成的問題，至少有11的44個縣用總理的技術，在選舉期間自2005年以來。 “We believe that Premier’s equipment has failed to perform as required by its contracts and according to state law,” Brunner says. “我們相信，總理的設備卻沒有執行的規定，其合同和按照國家有關法律， ”布蘭說。 “We have taken this action to recover taxpayer funds spent for voting systems used in half of the state’s 88 counties.” “我們已經採取了這項行動，以收回納稅人的資金用於投票系統中使用的一半國家的88個縣” 。

Brunner and Premier have locked horns several times since she took office in January 2007 over whether the company’s DRE (direct recorded election) touch-screen electronic voting technology works properly and is secure.布魯勒爾和總理有爭執多次，由於她上任於2007年1月，是否該公司的dre （直接錄得的選舉）的觸摸屏，電子投票技術的工程，妥善和安全。 The problem came to a head in April, when election officials in Ohio’s Butler County detected a vote count discrepancy during the primary election.這個問題來到一個頭部在4月，當選舉官員在俄亥俄州的巴特勒縣偵破一票的差距，在初選。 The county board of elections staff determined that the Premier DRE system had malfunctioned and failed to count votes from memory cards uploaded to the system’s vote tabulation computer server, Brunner says, adding, “This is not what we bargained for.”縣選舉局工作人員認定，總理dre系統發生故障，未能票從記憶卡上載於該系統的投票製表電腦伺服器，布蘭說， “這是不是我們的討價還價。 ”

Suspecting problems with all of the e-voting technology that had so far cost Ohio $112 million, Brunner last year commissioned懷疑的問題，與所有的電子投票技術，至今已成本俄亥俄州1.12億美元，布魯勒爾去年委託 Project EVEREST項目珠穆朗瑪峰 , a comprehensive security review of the electronic voting technology used throughout Ohio, to identify any problems that might make elections vulnerable to tampering. ，全面的安全審查電子表決所使用的技術在整個俄亥俄州，以找出任何問題，可能使選舉容易受到干擾。 During the 10-week project, teams of academic researchers from Pennsylvania State University, the University of Pennsylvania and WebWise Security (a security firm formed in 2005 by faculty and students from the University of California, Santa Barbara’s security research group) examined DRE touch-screen and optical-scan voting systems from Premier,在10個星期的項目，團隊的學術研究由賓夕法尼亞州立大學，賓夕法尼亞大學和webwise安全（一家安全公司成立於2005年由教師和學生從加州大學聖塔芭芭拉的安全研究小組）審查dre觸控式螢幕及光學掃描投票系統由總理， Election Systems and Software選舉系統和軟件 (ES&S) in Omaha, Neb., and Austin, Tex.–based （安老服務及s ）在奧馬哈，內布拉斯加州，與柯士甸， Tex 。基於 Hart InterCivic赫德intercivic as well as the software that manages these systems.以及為管理軟件，這些系統。

EVEREST researchers found exploitable security weaknesses in all three vendors’ systems, Brunner said in a statement when the project concluded in December.珠穆朗瑪峰研究人員發現，利用的安全弱點，在所有這三個廠商的系統，布蘭在一份聲明中說，當該項目12月結束。 “Many of these vulnerabilities represent practical threats to the integrity of elections as they are conducted in Ohio,” she said. “許多這些弱點的代表實際威脅的完整性選舉，因為他們在俄亥俄州進行的， ”她說。 “We found vulnerabilities in different vendor systems that would, for example, allow voters and poll workers to place multiple votes, to infect the precinct with virus software or to corrupt previously cast votes—sometimes irrevocably.” “我們發現的漏洞，在不同供應商的系統，例如，讓選民和投票的工人把多張選票，感染派出所與病毒軟件或腐敗，以前的投票-有時是不可改變的” 。

“None of the systems out there are even remotely adequate given the importance of the data they handle,” says “沒有一個系統出來，甚至還有遙控給予足夠的重要性，數據處理，說： ” Patrick McDaniel帕特里克麥克丹尼爾 , a Penn State professor of information security who led the EVEREST testing. ，賓州州立大學教授，信息安全誰帶領珠穆朗瑪峰測試。 A lot of the attacks that McDaniel and his team tested could be carried out at a polling place or county elections office in a matter of seconds.很多的攻擊，麥克丹尼爾和他的團隊測試，可以進行的一個投票站，地方或縣選舉辦公室在事秒。 An example: when researchers placed a piece of white tape over part of an e-voting system’s scanner, they were able to effectively block it from reading the entire ballot.一個例子：當研究人員把一塊貼著膠布的一個組成部分電子投票系統的掃描儀，它們能夠有效地阻止它從閱讀整個選票。 In other words, a person could put the tape in a place that kept the system from counting votes for a particular candidate.在其他換句話說，一個人可以把磁帶在一個地方，保持了系統從票為特定的候選人。 The team also found that the keys to unlock Hart’s ballot box could also be used to open the ballot boxes on the Premier systems.小組還發現鑰匙開鎖哈特的投票箱也可以用來打開票箱對總理的系統。

In a more serious attack, McDaniel found that his researchers could replace the memory card in some of the e-voting systems.在更嚴重的攻擊，麥克丹尼爾發現他的研究可取代記憶卡在一些電子投票系統。 “Any software you put on your card would uploaded into the system’s computer,” he says. “任何軟件，您提出的關於您的信用卡將上傳到系統中的計算機， ”他說。

Premier had already responded to EVEREST’s findings as well as a similar project commissioned by California Secretary of State Debra Bowen called總理已作出回應，珠穆朗瑪峰的調查結果，以及一個類似的項目委託加利福尼亞州國務秘書黛布拉寶雲所謂 Top-to-Bottom Review自上而下的檢討 in March by issuing a report that emphasized that the EVEREST researchers did their work with “no physical or operational security controls” and did not simulate realistic election day conditions.在3月發表了一份報告，強調指出，珠穆朗瑪峰的研究人員沒有他們的工作與“沒有身體或業務的安全管制” ，並沒有實際的模擬選舉日的條件。 Premier could not be reached for comment.總理未能達成任何評論。

The EVEREST researchers don’t dispute that.該珠穆朗瑪峰研究者不爭的事實。 Sandy Clark沙質克拉克 , an EVEREST researcher and the computing systems manager of Princeton University’s Atmospheric and Oceanic Sciences Program, said at the ，一珠穆朗瑪峰研究員和計算系統經理普林斯頓大學的大氣和海洋科學計劃，表示在 Last HOPE hacker’s conference最後的希望黑客的會議 held last month in New York City that she and her EVEREST colleagues “treated the project as a hack.”上個月舉行的在紐約市說，她和她的同事珠穆朗瑪峰“治療項目作為一個開刀” 。

At the Last HOPE conference, University of Pennsylvania researchers who led EVEREST’s analysis of ES&S e-voting technology described exploitable security vulnerabilities in almost every hardware and software component of ES&S’s touch-screen and optical-scan systems.在會議的最後希望，賓夕法尼亞大學的研究人員誰主導的珠穆朗瑪峰的分析胚胎幹＆ S的電子投票技術的描述利用的安全漏洞，幾乎在每一個硬件和軟件組成的安老服務及s的觸摸屏和光學掃描系統。 Some of these flaws, Clark said, could allow a single voter or poll worker with bad intentions to alter countywide election results, possibly without election officials ever knowing that the results had been tampered with.一些這些缺點，克拉克說，可能會允許一個單一的選民或投票的工人與不良的意圖改變countywide選舉結果，可能是沒有選舉官員以往任何時候都知道的結果已被篡改。 “There wasn’t an attack that we tried that we weren’t able to carry out,” she added. “有沒有攻擊我們嘗試，我們無法進行， ”她補充說。 “We learned that every current e-voting system has serious exploitable vulnerabilities.” “我們了解到，目前每個電子投票系統存在嚴重的利用的漏洞” 。

In addition to investing in Premier systems, Ohio has spent more than $41 million on ES&S e-voting technology and is one of 43 states that are ES&S customers.此外，投資在總理系統，俄亥俄州已用了超過4100萬美元對中文＆ S的電子投票技術和是一個有43個國家是安老服務及主要客戶。

When contacted for this story ES&S pointed to statements made earlier this year regarding EVEREST.當接觸了這個故事，中文＆ S的指出，所作的發言今年早些時候，關於珠穆朗瑪峰。 Like Premier, ES&S’s conclusion is that anyone attempting to replicate many of EVEREST tests would need “unfettered access to the DRE unit” as well as detailed knowledge of how the system works (to wit, its communications protocol with its audit log).像總理，安老服務及s的結論是，任何企圖複製的許多珠穆朗瑪峰測試，將需要“不受阻礙地進入到dre單位” ，以及詳細了解該系統如何工程（束手無策，其通信協議與審核日誌） 。

Despite their differences, Ohio and Premier are stuck with each other for the 2008 presidential election.儘管他們的分歧，俄亥俄和總理是堅持與對方為2008年總統選舉。 “With the election being less than three months away, the counties will be using the technology they have,” Brunner says. “與選舉正在不少於3個月的距離，縣將要使用的技術他們， ”布蘭說。 To head off any potential problems, Ohio counties using touch-screen voting systems are being required to print a hard copy of at least a portion of electronically cast votes, which will provide an audit trail.主管小康任何潛在的問題，俄亥俄縣利用觸控式螢幕投票系統現正需要打印的硬拷貝，至少部分電子投票，這將提供審計線索。 Voters will also be offered the option of filling out paper ballots that can be read by optical scanners and registered in a database.選民也將提供類似的選擇，填寫文件的選票可以讀取光學掃描器，及註冊在一個數據庫中。

E-voting systems have to be completely redesigned with security in mind, McDaniel says.電子投票系統須完全重新設計的與安全的心目中，麥克丹尼爾說。 In the short term, this means adding more thorough vote-auditing capabilities so that discrepancies can be investigated.在短期內，這意味著加入更徹底的投票審計能力，以便差異，可以進行調查。 “The elections systems should have the same quality, the same reliability, the same testing and the same certification requirements as financial systems,” he says. “選舉制度應具有相同的質量，同樣的可靠性，同時測試和認證要求，同時作為金融系統的， ”他說。 “If the systems used by banks, which have to report to the SEC [Securities and Exchange Commission], had this level of quality, no one would put their money in the bank.” “如果系統所使用的銀行，其中有報告，向證券交易委員會[證券和交易委員會] ，這樣的質量水平，沒有人會提出他們的錢在銀行” 。

Looking beyond November, Brunner says that she wants Ohio to rely more on optical-scan technology.展望11月之後，布蘭說，她希望美國俄亥俄州更多地依靠光學掃描技術。 “Later on,” she adds, “there may be a place for touch-screen (systems).” “後來， ”她補充說， “有可能的地方，觸摸屏（系統） ” 。

Have Your Say: Planning to E-Vote? 你說：規劃，以電子投票？ Read This First 閱讀這本第一
Please read our請閱讀我們的 posting guidelines before posting發布指引，然後再發布 . 。
Alternatively或者 you can discuss this report here您可以討論此報告在這裡 . 。

RSS 的RSS TrackBack URL 跟踪 RUI

Name (required) 姓名（必填）

Mail (will not be published) (required) 郵件（不會被公佈） （必填）

Website 網站

This entry was posted on Friday, August 22nd, 2008 at 2:28 pm and is filed under 此項目被張貼於週五， 2008年8月22日在下午2時28分，並提交下 Contributions & Guests 貢獻＆客人 . 。 You can follow any responses to this entry through the 您可以按照任何的反應，此項目通過 RSS 2.0 2.0 feed. 餵養。 You can 您可以 leave a response 留下的回應 , or ，或 trackback Trackback跟踪 from your own site. 從你自己的網站。

TOP NEWS DISCUSSIONS top新聞討論

LATEST NEWS DISCUSSIONS 最新消息討論

Activism & Protest News 積極與抗議新聞 | | Business News 商業新聞 | | Civil & Human Rights News 公務員＆人權新聞 | | Environmental News 環境新聞 | | Media News 新聞 | | Globalisation News 全球經濟一體化新聞 | | Web Development News Web開發新聞

ADVERTISEMENTS廣告

SITE MAPS網站地圖

7/7 7 / 7 Afghanistan阿富汗 Alternative-Energy替代能源 Art藝術 BBC英國廣播公司 Big-Brother大哥哥 Bilderberg 。 Bilderberg Biometrics生物識別技術 Bush布什 Censorship檢查 CIA美國中央情報局 Climate-Change氣候變化 Cover-Up包括後續 Cults邪教 Culture文化 Database-State數據庫的國家 David-Hicks大衛-希克斯 David-Ray-Griffin大衛-射線-格里芬 Debt債務 Democrats同盟 Demos演示 Drugs藥物 Education教育 Entertainment娛樂 Environmental News環境新聞 EU歐盟 False-Flag假旗 FBI美國聯邦調查局 Fraud欺詐 Free-Speech免費的講話 Freemasons共濟會 G8八國集團 Globalization全球化 Guantanamo關塔那摩 Health-News健康新聞 History歷史 ID-Cards編號賀卡 Internet互聯網 Iran伊朗 Iraq伊拉克 Israel以色列 Law法律 Marches遊行 MI5軍情五處 MI6軍情六處 Microsoft微軟 Military軍事 MoD按付款當日價格計算 Money金錢 Music音樂 NASA美國航天局 Neocons新保守主義者 New World Order世界新秩序 NSA美國國家安全局 Oil石油 Pakistan巴基斯坦 Podcast播客 Police-State警察國家 Propaganda宣傳 RFID的RFID RINF rinf Rumsfeld拉姆斯菲爾德 Science科學 Science & Technology News科技新聞 Secrecy保密 Security安全 Slavery奴役 Space空間 Sports體育 Spying諜報活動 Stephen-Lendman史蒂芬- lendman Technology技術 Terrorism恐怖主義 Tony-Blair托尼-布萊爾 Torture酷刑 TV電視 UK-News英國新聞 UN聯合國 USA-美國- USA-News美國新聞 Video視頻 Voting投票 war戰爭 War & Terrorism News戰爭和恐怖主義新聞 Warfare戰 White-House白房子 Wolfowitz沃爾福威茨 World-News世界新聞 Yahoo雅虎
2003 - 2005 Archives 2003 -2 005檔案 | 2005 - 2007 Archives 2005年-2 007年檔案 | 2007 - 2008 Archives 2007 -2 008檔案 | Current Archives目前檔案 | Past Version |過去的版本

About 大約 | | DVD Store DVD的商店 | | Opinion 民意 | | Reviews 評語 | | Special Guests 特別來賓 | | Webmasters 網站管理員