The key to maintaining security against election fraud is to use the same two fundamental methods that are used for ultra-high-security computer systems - an air gap, and separation of control of incoming and outgoing data.
Ultra-high security systems do not allow outside direct access to the core of the system. Data is input directly either from a keyboard or from intermediate media (CD, tape, etc.) that has been scrutinized when not under the control of the originating system. For high security communications, the incoming and outgoing communication paths are kept separate and monitored to detect attempts to control both paths simultaneously. Systems that don't use air gaps will always be vulnerable to electronic tampering.
The application of an air gap and separate communication paths will provide secure voting, and can be accomplished with off-the-shelf technology.
Below is an outline of the protocol:
Voting |
Internet Line to Centralized Vote Recorder |
Record Vote |
→ |
Print Ballot |
Machine |
→ |
Electronically |
for Record | |
Air Gap! |
↓ Air Gap! | |||
Print Ballot |
Return Phone Line to Voting Booth |
Scan | ||
for Voter |
← |
Printed Ballot |
Each voting station is equipped with two basic laptops, one printer, a broadband internet connection, and a phone line.
One laptop would be used for transmitting the vote over the internet, and the other for receiving confirmation of the vote over the phone line. Any attempts by hackers to control both paths for even a single voting station would be both highly difficult and easily detectable.
These could be inexpensive laptops currently being produced for distribution to third-world children, or laptops provided by donors for the purpose of public relations and that would be subsequently donated to local schools. The same could apply to the printers.
Each laptop would be prepared by erasing and reformatting the hard drive, and installing an open operating system such as Linux and open internet communication software such as Firefox. The vote transmission laptop would have internet broadband connection and point-&-click balloting software installed. The vote confirmation laptop would have internet phone-connection and printing software installed. There is no connection between the two laptops. More intensive security measures should be considered, such as tests to detect hardware viruses or other tampering not eliminated by standard erasing and reformatting procedures.
Freely available or donated software would record the votes and also monitor the incoming signal for signs of tampering and take the appropriate action.
Each incoming ballot is printed or otherwise visibly displayed at the recording facility.
The printout or display of each incoming ballot is scanned by a system not connected to the incoming system. This is the key air gap. Scanners have become relatively inexpensive, and could also be donated for subsequent donation to local schools. Standardization of ballot formats would simplify the scanning software requirements and speed up the entire process by allowing a text scan/print rather than an image scan/print.
The scanning system transmits the scanned ballot via the phone-line internet connection to the confirming laptop, where two copies are printed (one for the voter, one for the precinct).
The confirmation signal would also be monitored for signs of tampering. The separation of the signal paths would require perpetrators to simultaneously control both the transmission signal and the confirmation signal, which in itself should be sufficiently difficult that the voting system could be expected to remain secure.
Cost of components: Initially the number of voting stations would be virtually the same as the current number of voting stations, and each voting station would require the same set of components as described below, ideally with the components being donated by manufacturers or other parties for later distribution to schools. Each polling station could be set up by volunteers according to established standards, and then each station would be certified by traveling teams of reviewers (as I assume they are currently). While some polling stations may need inexpensive temporary wiring and adapters to multiplex the use of multiple stations over single phone lines and internet lines, polling stations in schools could be generally expected to have the necessary capacity in place.
Timing: The system would be composed almost entirely of available off-the-shelf software and hardware, and could be put in place very quickly. The first step would be to determine the feasibility of the system, then establish minimum standards for the hardware and software at the polling stations and the ballot recording facility, followed by a campaign to solicit donors and volunteers.
The future: As the public becomes familiar and comfortable with the concept of secure voting using air gaps and separation of communication paths, it would be expected that online voting would substantially replace voting in person at a poll station, allowing reduction in the number of physical stations required. The separation of paths for online voting would be in the form of a confirming email that is transmitted by an internet path that is electronically verified to be sufficiently separate from the ballot transmission path to ensure that both paths cannot be simultaneously controlled by any perpetrator for the purpose of altering a statistically significant number of votes. This would also enable real-time polling on a wide variety of issues and reduce the ability of special interests to claim greater support for their agenda than actually exists. This would also enable voters to have access to thoughtful pro and con consideration of issues at a central resource well in advance of an election, instead of basing their vote on sound bites, biased media offerings, and brash conflicting claims in State-issued voter pamphlets. While it is not expected that an extremely high number of eligible voters would devote sufficient time to understanding the issues, it can be expected that a high proportion of those who actually vote would do so.
We have the opportunity and the responsibility to lead the way to elimination of election fraud nationwide and ultimately worldwide, and changing apathetic or repressed societies into involved societies.
The very purpose of gerrymandering is to make our democracy less representative, which is fundamentally unconstitutional.
The Justice Department should go after every guilty legislature, Rep or Dem, and impose non-partisan redistricting plans nationwide.
Here's your zero-politics starting point:
http://www.census.gov/dmd/www/pdf/512popdn.pdf
Use a 3D version of the map, like the one below, to draw new Federal election districts - child's play for a topological expert, might take a whole afternoon. Could also be done as an online game like gene folding.
http://visualeconsite.s3.amazonaws.com/wp-content/uploads/2008/09/ams-usa-population.png
Draw a circle around each population peak to include about 700,000 people. Surround each of those circles with other approximate circles each including about 700,000 people until the whole country is covered. Refine the lines based on legal borders (just as soon skip this step, but big ducks ...). Use Google Maps etc. to further refine the borders along street lines, natural barriers such as rivers, lakes, mountains, etc. Finally refine the lines based on common community interests, with input from the public, being very, very careful to avoid introducing partisan contamination. These are your new Federal election districts, each including essentially the same number of persons. (~700,000), courtesy of simple mathematics.
Require states to justify (to a Federal court) using any other districting plan, strictly prohibiting any attempt to impose political advantage.