Virginia (Again) Dumps Electronic Voting Devices Over Concerns About Election Interference
from the deja-vu-for-President! dept
It seems Virginia can’t catch a break when it comes to voting. Trusting vendors to provide secure electronic voting devices just isn’t paying off. Two years ago, Virginia pulled a bunch of voting machines after it was discovered they were leaky, insecure devices masquerading as something American voters could trust.
The security wasn’t just bad in the way many machines are — frailties that can only be sussed out by security researchers and talented criminals. No, they were bad in the way your grandparents’ Google Box is: “secured” with passwords like “abcde” or “admin,” along with accessible DOS prompts and multiple open ports.
Virginia’s election supervisors on Friday directed counties to ditch touchscreen voting machines before November’s elections, saying the devices posed unacceptable digital risks.
The decision forces Virginia counties to swiftly replace any touchscreen devices with machines that produce a paper trail, ensuring the state can audit its closely watched gubernatorial race this November between Democrat Ralph Northam and Republican Ed Gillespie.
With possible interference in last year’s presidential election not even in the rearview mirror yet, Virginia’s government is moving up the date of its planned obsolescence. As Politico notes, there’s already a law on the books in Virginia phasing out use of touchscreen voting devices by 2020. This just moves that date forward three years, just in time for this year’s elections.
It’s not that electronic voting devices are inherently bad. It’s just that they appear to be inherently flawed. Report after report shows multiple vulnerabilities in voting machines and yet, year after year, there appears to be little forward motion on the security side. This is baffling, considering learning from mistakes is one of those things even lab rats can do — but it often seems to be almost impossible for voting device vendors. The flaws generally aren’t the result of meticulously-targeted exploits by criminals, but rather the sorts of things that shouldn’t go overlooked when vetting machines for use in the public sector.
The paperless office may be on the threshold but the (secure) paperless vote is continually several years away.