Re: [CalifElectionProtection] CA to hold hearing on Open Source for election software

From: Jim March <jmarch_at_prodigy_dot_net>
Date: Sun Aug 07 2005 - 10:52:56 CDT

Sherry Reson wrote:

> OVC is looking for suggestions: an open source guru to recommend to
> assistant Sec of State Brad Clark for a panel on the use of open source
> software. He has some names in mind, but is open for suggestions.

Phil Zimmerman - to talk about the security problems inherent in
"security by obscurity" versus open source security.

To gov't types, "security" equals "secrecy". Hell, it's codified into
the California Public Records Act (Gov't Code 6250 - 6270). 6254 lists
items that can be withheld from the public, among them this item "aa":

-----------
6254(aa) A document prepared by or for a state or local agency that
assesses its vulnerability to terrorist attack or other criminal acts
intended to disrupt the public agency's operations and that is for
distribution or consideration in a closed session.
-----------

We have GOT to break that down. In computer science terms, "security by
obscurity" doesn't work:

http://en.wikipedia.org/wiki/Security_by_obscurity

Jim
_______________________________________________
OVC discuss mailing lists
Send requests to subscribe or unsubscribe to arthur@openvotingconsortium.org
==================================================================
= The content of this message, with the exception of any external
= quotations under fair use, are released to the Public Domain
==================================================================
Received on Wed Aug 31 23:17:24 2005

This archive was generated by hypermail 2.1.8 : Thu Sep 15 2005 - 11:44:12 CDT