CA: Sen. Bowen on Diebold TSx Security "Flaw" ~ 12 Counties' Votes at Risk

DIEBOLD REVEALS NEW “SECURITY VULNERABILITY” WITH ITS TOUCHSCREEN
VOTING MACHINES CERTIFIED FOR USE IN CALIFORNIA


COMPANY TELLS PENNSYLVANIA ABOUT FLAW IT SAYS COULD
LET “UNAUTHORIZED SOFTWARE” BE LOADED ONTO THE SYSTEM


“HOW DOES THE SECRETARY OF STATE PLAN TO RESOLVE THIS SECURITY NIGHTMARE AND GURANATEE PEOPLE’S VOTES ARE ACCURATELY COUNTED?”

SACRAMENTO – “Is it embarrassing that California’s Secretary of State certified voting machines that the company itself now admits suffer from a serious security flaw that could allow anyone to load software onto them to change people’s votes and potentially change the outcome of an election? I’m sure it is, but we have a statewide election in less than four weeks and we don’t have time for people to be embarrassed, we need to get the problem solved.”


That’s how Senator Debra Bowen (D-Redondo Beach), the chairwoman of the Senate Elections, Reapportionment & Constitutional Amendments Committee reacted to the revelation that Diebold has informed Pennsylvania elections officials that the AccuVote-TSx – a touchscreen voting machine that at least 12 California counties plan to use in the June primary – contains a serious “security vulnerability.”


“I called on the Secretary of State back in February to reverse his decision to certify the Diebold TSx because the machine doesn’t meet the requirements laid out in state law,” said Bowen. “Now, two-and-a-half months later, Diebold, which touts itself as using ‘industry leading security,’ comes out and tells Pennsylvania about a security flaw found in every TSx machine that lets people change the vote totals on the machines and, possibly, change the election results in the process. Voters in 12 California counties are going to have to rely on these machines to accurately record their votes, so why wasn’t California’s Secretary of State told about this security problem and if he was told about it, why has he been sitting on this information?”


On May 1, Diebold wrote to the Pennsylvania Secretary of the Commonwealth, stating it:


“. . . has determined there is a security vulnerability to the AccuVote-TS and AccuVote-TSx equipment in the system installation and upgrade mechanism. This security vulnerability could potentially allow un-authorized software to be loaded onto the system. The probability for exploiting this vulnerability to install un-authorized software that could affect an election is considered low.”


The following day, May 2, 2006, the Pennsylvania Secretary of the Commonwealth issued a directive to all Pennsylvania counties using Diebold machines, stating:


“In order to mitigate any immediate risk, all counties using the Diebold AccuVote-TSX shall re-install the authorized software during system startup prior to installing, testing, and sealing the election data PCMCIA card into the unit.”


“I really want to know how the Secretary of State is going to fix this debacle,” continued Bowen. “Why should the voters in the 12 or so counties using Diebold equipment have to cast their ballots on machines the company itself says aren’t secure? Voters wouldn’t be in this position if the Secretary of State hadn’t certified the Diebold machines in violation of state law back in February. This entire security nightmare has turned the intent of the Help America Vote Act on its head. Requiring voters to cast ballots on machines that don’t comply with California law and that the company itself now says are vulnerable to tampering runs completely counter to the intent of HAVA, which was supposed to make it easier for people to vote and to ensure every vote is counted accurately.”


On February 17, 2006, the Secretary of State’s Voting Systems Technology Assessment Advisory Board (VSTAAB) released a report identifying 16 security flaws in the Diebold machines, but not the flaw Diebold revealed to Pennsylvania officials on May 1. The Secretary of State certified the Diebold machines that same day and imposed additional security procedures, including one requiring the machine’s memory cards to be programmed under the supervision of the registrar of voters. However, it appears the process won’t cover the security problem disclosed by Diebold because the process deals solely with when the electronic ballot is loaded onto each machine, not when the operating software is loaded onto the machine.


A copy of the letter from Diebold to the Pennsylvania elections officials is attached, along with a copy of the directive from the Pennsylvania Secretary of the Commonwealth to counties that plan to use Diebold machines in the state’s May 16th primary election.

Notification of Potential Security Threat to
AccuVote-TS/TSx Machines

May 1, 2006

Overview:

Diebold Election Systems, Inc. (“DESI”) has determined there is a security vulnerability to the AccuVote-TS and AccuVote-TSx equipment in the system installation and upgrade mechanism. This security vulnerability could potentially allow un-authorized software to be loaded onto the system. The probability for exploiting this vulnerability to install un-authorized software that could affect an election is considered low.

To exploit this risk, physical access is required to the PCMCIA slots on the machine during system startup.

Diebold Election Systems is currently working on a fix to this security vulnerability and once it is tested and certified it will be made available to customers.

Procedures to mitigate the risk:

If there is a concern that this security vulnerability has been, or could be, used to load un-authorized software on the system then re-install the authorized software during system startup prior to installing, testing, and sealing the election data PCMCIA card into the unit.

DIRECTIVE CONCERNING THE INSTALLATION OF FILES REGARDING THE
DIEBOLD ACCUVOTE-TSX ELECTRONIC VOTING SYSTEM
ISSUED BY THE SECRETARY OF THE COMMONWEALTH

Pursuant to Section 1105-A of the Pennsylvania Election Code, at 25 P. S. §3031.5, and revised as required by Act 150 of 2002, the following Directive is issued by the Secretary of the Commonwealth for the installation of files for the Diebold AccuVote-TSX electronic voting system.

1. Diebold Election Systems, Inc. (“DESI”) has determined there is a potential security vulnerability in the system installation and upgrade mechanism to the AccuVote-TSX version 4.6.4 equipment, which is currently certified in Pennsylvania. This security vulnerability could allow un-authorized software to be loaded on to the system. The probability for exploiting this vulnerability to install un-authorized software that could affect an election is considered low. To exploit this risk, physical access is required to the Personal Computer Memory Card International Association (PCMCIA) slots on the machine during system startup.

2. Diebold Election Systems shall develop a permanent solution to this security vulnerability, which shall proceed through the ordinary certification process. Once the permanent solution is certified, Diebold shall make that solution available to its customers through the normal software upgrade process.

3. In order to mitigate any immediate risk, all counties using the Diebold AccuVote-TSX shall re-install the authorized software during system startup prior to installing, testing, and sealing the election data PCMCIA card into the unit. The Department of State will furnish the authorized software to the counties on a PCMCIA card along with instructions for its installation.

One of the first counties in the state to embrace electronic voting is headed back to paper -- and it's not the only one.

Alameda County residents going to the polls June 6 will be asked for the first time in five years to fill in ovals on paper ballots rather than casting their votes on costly touch-screen machines.

"It's a little bit of back to the future," joked Elaine Ginnold, the county's acting registrar of voters.

The decision to go back to paper stems from changes in state law that toughen requirements for touch-screen machines and render the county's equipment inadequate.

Seven Counties Dismissed from California Voters Lawsuit to Block Use or Purchase of Electronic Voting Machines
Humboldt, Marin, Placer, San Luis Obispo, Trinity, Tulare, and Santa Barbara Counties Opt for Paper Balloting Citing Cost, Accuracy and Security Concerns

For Immediate Release: San Francisco, April 26, 2006 – California Voters marked their latest legal action today by lauding officials in seven California counties for their commitments to use or switch to all paper balloting rather than electronic voting systems. The Counties of Humboldt, Marin, Placer, San Luis Obispo, Trinity, Tulare, and Santa Barbara were dismissed today from the California Voters Lawsuit (Holder v. McPherson), supported by Voter Action, and filed in San Francisco Superior Court last month. The suit seeks to nullify Secretary of State Bruce McPherson’s “conditional” certification authorizing purchase of the Diebold TSx electronic voting system – which has a history of security, verifiability, and disability access problems –for use in California elections.

“These seven counties are leading California “back to the future”, by selecting verifiable, all paper balloting over electronic voting systems with significant security problems, and the risk of fraud and vote manipulation,” said Lowell Finley, Esq., co-director of Voter Action, and co-counsel for the plaintiffs in the California Voters Lawsuit. “These counties appreciate the importance of transparency and verifiability in clean elections. Diebold TSx electronic voting machines contain technology that is easily hacked and nearly impossible to audit or recount, and which is illegal under the California Elections Code”.

The Secretary remains committed to ensuring the reliability and accuracy of every vote, and that is precisely why he has set such high performance criteria to ensure that the integrity of the vote has been protected. With these qualifications for our voting systems, we believe voters can have confidence in the electoral process and the equipment used to capture their votes.

Secretary McPherson shares your concern that we have only the most secure, reliable voting systems, and he is committed to ensuring the accuracy and integrity of every vote cast. That is why he has established the most stringent requirements for voting systems in the nation.