Re: Military voting

From: <dr-jekyll_at_att_dot_net>
Date: Thu Mar 29 2007 - 12:26:49 CDT

My typo. I meant to say INSECURE.

A chain is only as strong as strong as its weakest link. The Internet is inherently insecure.

--
Kurt 
This email sent using 100% 
recycled electrons.
-------------- Original message from lairdp@gmail.com: -------------- 
> The problem with internet voting is that it allows for an attacker to be 
> anywhere on the planet, and to attack in unlimited volumes. Voting in polling 
> places is limited to what can be done in individual locations without getting 
> noticed by the staff, requiring many attackers to coordinate for large scale 
> impact. 
> Sent via BlackBerry from Cingular Wireless 
> 
> -----Original Message----- 
> From: Greg Christopher 
> Date: Thu, 29 Mar 2007 12:16:26 
> To:dr-jekyll@att.net 
> Cc:Open Voting Consortium discussion list 
> Subject: Re: [OVC-discuss] Military voting 
> 
> 
> On Mar 29, 2007, at 7:58 AM, dr-jekyll@att.net wrote: 
> 
> > A chain is only as strong as strong as its weakest link. The 
> > Internet is inherently secure. 
> 
> An HTTPS web server set up properly to serve that connection is 
> practically impenetrable using modern technology. I agree with the 
> report that there is a level of perfection necessary that is hard to 
> achieve. I think the fact that you have clients in a scenario where 
> it is desirable for them to "attack themselves" is almost unsolvable. 
> You have to be able to trust the machines at the other end. The 
> recommendation to use a "kiosk setup" on the far end is a fair 
> assessment in light of that weakness. A kiosk system like that vpn'd 
> into a network with the web server would be a very secure solution. 
> If you could trust the software. And friends as we all know that is a 
> big if. I am with you that it needs to be changed. 
> 
> With Acrobat reader, we have the same issue. People want a very 
> secure and un-attackable system on the far end. Yet we know that 
> someone can add their own plugin and do various things that would 
> interfere with the operation of the client. That's why we posit that 
> the environment of the viewer has to be locked down to guarantee 
> security. 
> 
> Greg 
> 
> 
> 
> 
> _______________________________________________ 
> OVC-discuss mailing list 
> OVC-discuss@listman.sonic.net 
> http://lists.sonic.net/mailman/listinfo/ovc-discuss 

_______________________________________________
OVC-discuss mailing list
OVC-discuss@listman.sonic.net
http://lists.sonic.net/mailman/listinfo/ovc-discuss

==================================================================
= The content of this message, with the exception of any external
= quotations under fair use, are released to the Public Domain
==================================================================
Received on Sat Mar 31 23:17:08 2007

This archive was generated by hypermail 2.1.8 : Sat Mar 31 2007 - 23:17:09 CDT