ietf
[Top] [All Lists]

Re: internet voting -- ICANN, SmartInitiatives, etc.

2001-01-14 10:20:02
In message <1084(_dot_)979476468(_at_)cs(_dot_)ucl(_dot_)ac(_dot_)uk>, Jon 
Crowcroft writes:

the bggest problems with security ssytems are generally 90% to do with
design errors at level 10 (human, not policitcal, economic,
application, transport etc)


Mostly right, though one shouldn't rule out the possibility of layer 
10-inspired insider tampering with the software.  Nor should one ignore 
the possiblity of simple bugs -- the electronic equivalent of hanging 
chad.  See http://www.notablesoftware.com/evote.html for more details.

But the hard parts of the electronic voting problem have nothing to do 
with crypto, firewalls, protocols, DDoS attacks and the like -- and I 
say that as an expert in those fields.


                --Steve Bellovin, http:/www.research.att.com/~smb