True, but... I mean this kindly, but seriously:
When was the last time YOU inspected any open-source program source, in enough detail to catch subtle security holes?Me neither.
I love open source stuff, but ultimately, 99.9999% of us rely on "somebody else" to read and analyze the open source code for security problems.
Just sayin', visibility doesn't guarantee either correctness or security.
“When was the last time YOU inspected any open-source program source, in enough detail to catch subtle security holes?”
Good point. But I do believe that the more there is at stake the more people do get involved. Plus, there would be many groups / organizations who would spend money verifying the code. There would be money offered to locate the security holes and publish them in order to fix them.
Big software companies do this now, and some people make a very nice living at it.
Honestly though, the more I think about the issues surrounding voting security the more I realize how woefully ignorant I am about such an important subject.