Posted on 12/05/2020 9:13:41 PM PST by zeugma
I think you mean PKI. Two factor authentication is not secure, nor convenient. You are forced to keep your phone with you and type crap from the phone into the computer. Meanwhile someone can port your phone number and pretend to be you.
The advantage to the voter would be the ability to retain a file showing their ballot choices, and the unique identifier of their ballot.
Illegal and not desirable. People could more easily sell their votes.
Each completed ballot in the database would have metadata showing its unique number/ID, the precinct associated with the voter account, a timestamp showing when it was uploaded,
Not good. Experts could figure out individual voter's votes from that info.
Other commercial and government databases would be periodically cross-checked against the database of online voter accounts, to identify and notify voters who moved without updating their accounts, became felons, or died. (Yes you should be notified if the system thinks you died, in case you didn’t) Voter accounts would expire after ten years unless the voter renews by making another in-person appearance.
Ten years is way too long. But the suggestions there are good. In fact that is what we need to do and is missing from the OP's article. Also third parties need to have the ability to cross check, from both parties. The data must not include people's votes, but all other registration info needs to be given to third parties who can cross check across jurisdictions, other databases, etc.
To: glimmerman70Was trying to give Covid fearing people a chance to vote from home.Fair enough, vote by appointment, show up, get a non-contact temperature measurement, enter by the entrance only door, shove ID into a reader, wait for green light that indicates you actually are on the voter rolls, and have not voted, retrieve ID and wipe down with provided antiviral wipe, grab a pen from the clean pen jar, go to the freshly cleaned voting privacy booth, mark ballot, place pen in the to be cleaned jar, drop ballot into the box, dip finger into the disinfectant purple dye, leave by the separate designated exit.
30 posted on 12/5/2020, 9:15:57 AM by null and void (My President is a Person Of Color, Orange is a Color...)To: null and voidMaybe better? Scan the ID, track against voter rolls, and voted already. Anyone not properly registered, or already voted, is arrested on the spot after they drop their ballot in the box. Otherwise, like a shoplifter arrested in the store claiming they they were going to pay, they could claim they weren’t actually going to vote.
This moves any fraud down to the level of single ballots, not full pallets of ballots.
Also, word gets around, and when Auntie Fah and Bea Al’em, don’t return to the stop-at-every-polling-place ‘No Malarky’ bus, that puts a serious crimp in the “normal” fraud process...
Oh, did I mention Election Day is a holiday? No judges available to set bail...
31 posted on 12/5/2020, 9:34:02 AM by null and void (My President is a Person Of Color, Orange is a Color...)
Thanks for the efforts. Looks good!
Seriously.
Agreed!
I posted this on 10/28:
Mexico has voter ID cards required to vote, and when you vote, they punch a hole in your card to prevent multiple votes in the same election.I don't know if you get a 10% discount after you've accumulated enough punched holes…
Of course, all this would only apply to Federal elections, for federal offices, as that is the legitimate concern of the federal government.
Let the states who have local authority use whatever system they wish to force the elections of their favorite sons and daughters to alderman, mayor or goobernor. They can do it the cheap way, by just following the federal rules for all voting, or they can have separate ballots for local and federal. Their call. It's a free country, ain't it?
Why?
• With the exception of absentee ballots, end early voting. Every voter deserves and has a responsibility to know the latest information before they cast their ballots. H/T WildHighlander57
Ultimately that might be what is required to have honest elections.
I suspect CW2/Rev2 would ultimately cost less treasure and fewer lives than dishonest elections in a country run by dishonest, acquisitive, and craven politicians.
The Carter-Baker report needs some serious study, thanks for posting.
What are ways to kill the machines like Dominion?
Accidental liquid spill?
Taser to a metal part?
Trip and fall into one, knocking it over?
Warehouse fire?
2022 and beyond should be like a Terminator movie. Destroy the machines.
Referencing it, emphasis on Jimmy Carter, could be useful in persuading middle of the roaders.
I'll be darned, Carter might end up being good for something after all!
No need for these (frankly) archaic digital methods and reliance on multiple levels of hardware - points of failure and fraud opportunity.
Abolish the secret ballot. A foreign concept imported into this country in 1890s, it’s the core problem that allows all the ‘decoupling’ of ID from ballot.
Make all the issues of revealing information about who voted for whom a matter of ‘HIPPA’ type privacy violations, with opportunity for these violations to be prosecutable.
I'd have to say that I strongly disagree with this. One of the main strengths of the secret ballot is that it frustrates the concept of verifiability. If a criminal organization, like the democrat party pays Joe to vote. When Joe goes into the voting booth, he could very well vote a straight republican ticket, and no one would know.
It also makes it harder for organizations to target people after the fact because of how they voted. This particular thing has been happening in other ways all over 'social media' for the past several years. People are being hounded for posts that they made years ago that were not even controversial at the time, yet have been decreed by the left to be an anathema.
I don't want to encourage this kind of thing. I think you'll find little support for the concept of doing away with the secret ballot.
No, I mean 2FA. It could be done with Google Authenticator, being emailed a link to click, receiving a PIN via text message, or answering a security question.
People could more easily sell their votes.
That already happens, and the price is usually a couple packs of cigs or beer money. The street people who sell their votes are highly unlikely to go through the procedures to become online voters. They will be paper voters, if anything.
Experts could figure out individual voter's votes from that info.
How? The file connecting the ballet metadata to the voter would not be available to "experts" unless they show cause and obtain a court order for any inquiry.
Those are all insecure. Many security questions were made insecure by China's hack of OPM clearance data which gave them a wealth of previous addresses, cities of birth, mother's maiden name, etc. Being emailed a link is meaningless. I can create an email account in two seconds, pretend to be you, then "verify" I am you with that email. Text messages are a PITA and not secure either. I can ask a phone company to port your number to my phone. Your phone company may stop that from happening but in some cases I can call them and pretend to be you and authorize the switch.
The file connecting the ballet metadata to the voter would not be available to "experts" unless they show cause
I didn't expect that. The unique ID on each ballot can be done securely if it is long enough and random enough. Many mail-in ballots are not. They have a code that's not much longer than the number of residents in the county and even assigned randomly they can figured out through process of elimination.
More on “selling votes” via the online system I propose: The arrangement I propose would actually make it child’s play to defraud a vote buyer.
The ballot image retained by the online voter would be exactly the same as the image you would obtain by downloading a ballot image from the published list. Exactly the same. Therefore a vote buyer would have no way of knowing if the image you provide is yours or one you simply downloaded. The published list would be populated in real-time as ballots come in, so you would be able to download a matching ballot image as quickly as you could actually vote and generate your own. Buying votes from online voters would be begging to be screwed.
Bullshit. 2FA is secure enough for online banking, for access to HIPPA, and for my brokerage and cryto-exchange accounts. How much effort do you think some nefarious entity is willing to expend to gain access to ONE vote?
Being emailed a link is meaningless. I can create an email account in two seconds, pretend to be you, then "verify" I am you with that email.
No, you can't. The email address would be part of the information you provide when appearing in person at a government office to set up or renew your voter account. Changing your email address would have be done while logged in to your account. This is the normal way of doing business online, and it's more than good enough to secure ONE vote.
Absolutely. Registration and validation are a huge part of the problem. I'm a nerd. I'm primarily concerned about the mechanics of how one accurately and transparently tracks valid votes. Making sure that an individual is a valid voter is another whole ball of wax.
Some of that is actually covered on my site at the end of the documents which replicates Nully's voter validation requirements.
One of our biggest problems with voting in this country is that everything is managed individually by the states. Personally, I think that this is as it should be, but there are no standards, and many jurisdictions are actively attempting to maximize fraud, or at least the ability for fraud to occur.
There ought to be national baseline standards for how to validate voters in national elections. That means strong ID requirements. It also means that there must be cooperation amongst the states to make sure that voters only vote in one state. Folk who register in one state should automatically be deregistered to vote in their previous state. Death records should be immediately forwarded to voter registration agencies. Illegal voting should have real punishment, and be swift and sure. I'd support extraordinary penalties for fraud, as every illegal vote disenfranchises a legitimate voter.
Again, this proposal is mostly concerned with mechanics of validation, to make sure that once a voter has been determined (through whatever means) to be eligible, that the casting and recording/tabulation of the vote is as transparent and easily validated.
None of this precludes hand counting. In fact, I'd strongly recommend random spot checks where hand counts are compared against machine tallys.
One thing I didn't mention, which I'm probably going to be adding to the document is the initial validation steps. As designed, it would be trivial to boot up the computer, and have the initial values validated against a printed or electronic document that would demonstrate that the card was virgin, and in it's initial state. It would, as a part of its boot process display those values, and any observer would be able to see what the initial state of the machine was. A similar screen would be displayed, stored and possibly printed when the voting is over. This would be the initial indication of the machine state.
Absolutely agreed. Penalties for gaming and defrauding the system must be great enough to discourage those wanting to do so.
A technical solution alone is great, but it must be backed up with a strong human responsibility and skin-in-the-game approach.
Also agreed. My purpose in writing this up is to demonstrate a possible technical solution to how to gain and enforce confidence in the system. I figure a lot of folks at individual polling locations might not understand why the number strings must match. However I think they can be convinced that to maintain integrity, they must match, for whatever reason.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.