Language Selection

English French German Italian Portuguese Spanish

This MIT PhD Wants to Replace America's Broken Voting Machines with Open Source Software, Chromebooks, and iPads

Filed under
OSS
Security

Tuesday morning, as millions of Americans lined up at their polling places to participate in the often quite literally broken democratic process, a new Twitter account tweeted a link to a short manifesto: “today’s voting machines are often insecure, not particularly easy-to-use, and so expensive that they’re often used much longer than they were designed for and election officials are forced to hunt for replacement parts on eBay. The market has failed us.”

The announcement, from a new nonprofit called VotingWorks, ended with a promise to build a “secure, affordable, open-source voting machine” from the ground up. The letter wasn’t signed, but it’s the work of Ben Adida, a software developer who has studied voting machines for more than 20 years and had a PhD from MIT in secure voting.

“I thought this launch would be pretty quiet, I thought it would be buried in the news of the actual election, but already a lot of people have reached out to volunteer to make it happen,” Adida told me on the phone. “It’s super early days, but the response to the announcement shows that people are hungry for this.”

Adida says that VotingWorks plans to use already existing, commodity hardware and open-source software to compete with the proprietary, expensive, and often insecure voting machines that currently dominate the market. He pitches it as an attempt to rethink voting machine from “first principles,” to reconsider what a voting machine is.

Read more

More in Tux Machines

OpenSSH 8.0 released

This release contains mitigation for a weakness in the scp(1) tool and protocol (CVE-2019-6111): when copying files from a remote system to a local directory, scp(1) did not verify that the filenames that the server sent matched those requested by the client. This could allow a hostile server to create or clobber unexpected local files with attacker-controlled content.

This release adds client-side checking that the filenames sent from the server match the command-line request,

The scp protocol is outdated, inflexible and not readily fixed. We recommend the use of more modern protocols like sftp and rsync for file transfer instead.

Read more

Qt 5.9.8 Released

Qt 5.9.8 is released today. As a patch release Qt 5.9.8 does not add any new functionality, but provides security fixes and other improvements. Compared to Qt 5.9.7, the new Qt 5.9.8 contains multiple security fixes, updates to some of the 3rd party modules and close to 20 bug fixes. In total there are around 130 changes in Qt 5.9.8 compared to Qt 5.9.7. For details of the most important changes, please check the Change files of Qt 5.9.8. Read more

Android Leftovers

Android Leftovers