[USA] one more reason why digital voting isn't there yetFrom: email@example.com
Jul 18 2018 14:26:45
US voting systems (in Oregon) potentially could be hacked (11 years
ago) by anybody (in tech support) ES&S admits a handful of systems were
shipped with PCAnywhere tool By Shaun Nichols in San Francisco 17 Jul
2018 at 19:59 22 Reg comments SHARE ▼
Updated A US voting machine manufacturer has admitted some of its
systems sold in the early 2000s had a remote access tool installed.
In a letter (PDF) sent to Senator Ron Wyden (D-OR) in April, and
revealed today, voting systems vender ES&S said that, from 2000-2006, a
handful of machines it sold to local governments in Wyden's home state
included a specially-configured copy of PCAnywhere, a remote access
tool used for tech support.
The software was not in the voting machines themselves, but rather in
the election management system (EMS) terminals used to manage the
voting machines to do things like configuring scanning equipment or
formatting ballots. Those systems, said ES&S, were configured to only
allow the customer to initiate link up with its support staff as a last
resort for troubleshooting.
The use of the PCAnywhere machines was stopped in 2007, when the US
Election Assistance Commission (EAC) adopted guidelines that require
all election management terminals be air-gapped.
"It is also critical to understand that this remote connection support
model was never used, nor was it ever possible to be used, on any
voting devices (tabulators and/or ballot marking devices), as voting
devices do not contain the required operating system or remote
connection software necessary to enable a remote connection," the
vendor tells Wyden.
"To be clear, ES&S never installed remote connection software on any
vote tabulation device it has ever delivered to a customer, nor has it
ever been possible to do so- either before or after the creation of the
RS Wood <firstname.lastname@example.org>