Abstract
Several recent studies have reported substantial vulnerabilities throughout the designs and implementations of current commercially available optical scan and DRE electronic voting system used in the United States. Every system examined by the security research community (from four major vendors) was found to have software flaws and architectural failures that, under some circumstances, could allow an attacker to take control over precinct hardware, alter or fabricate recorded results, or install and virally propagate malicious software and firmware throughout the entire system. These systems suffer from basic cryptographic and key management errors, buffer overflows in modules that accept input from untrusted sources, easily circumvented access controls, backdoor debugging modes, and feature interaction and configuration vulnerabilities. In some cases, systemwide viruses can be introduced by a single individual voter or temporary precinct poll worker.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Blaze, M., Clark, S. (2011). Bridging the Gap between Vulnerabilities and Threats in Electronic Voting. In: Christianson, B., Malcolm, J.A., Matyas, V., Roe, M. (eds) Security Protocols XVI. Security Protocols 2008. Lecture Notes in Computer Science, vol 6615. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-22137-8_33
Download citation
DOI: https://doi.org/10.1007/978-3-642-22137-8_33
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-22136-1
Online ISBN: 978-3-642-22137-8
eBook Packages: Computer ScienceComputer Science (R0)