One of the early Dominion related whistleblowers alleged in a video that Dominion system commands to Dominion ballot boxes at precinct levels could emanate from more central remote upstream middleware database locations.
If so, the Dominion systems are on an intranet of some sort.
If so, the intranet can be tapped with listen-only tools such as tcpdump.
If so, the admin commands so generated at a minimum need to be protected by strong encryption.
The allegations were that the remote upstream to downstream commands could be intercepted and mimicked at the local level, with different parameters intended to manipulate the box database to political advantage of a candidate. A trivial example would (presumably) be an admin login and password sequence leading to an emulated “protected level” sequence of admin commands to the Dominion box. IIRC the video did not go into any great detail (not at the level of the example i have just given) but hopefully more info and more definitive info may come out over time, and this is the type of research that can (at least in theory) be discovered by the machine code disassembly process as is said to be proceeding by folks on the internet (eg Code Monkey Z). Also hopefully trump insiders are getting a handle on this as well as some parallel machine code discovery and disassembly efforts.
quick side notes on purported internet admin access capability—
— if the Dominion box can be connected to an intranet it can be connected to the commercial internet
— if the Dominion box can be connected to the commercial internet then anyone on the internet can issue admin commands to the Dominion box from any location with commercial internet access
— hopefully there are some kind of safeguards that prevent this security loophole (which if it exists is huge— perhaps wait and see)
— even without internet safeguards, if there is no local physical security, then all it would take would be an admin login id and password and a laptop to penetrate the Dominion box security and issue admin commands described in what is claimed to be the manual.
all of the above for open review and comment and subject to verification of primary sources (i have no access to any primary sources so my comments should be taken with that in mind)