31 July 2006

Diebold

Another interesting flaw has been discovered in the Diebold paperless voting machines used in many US states.

The Diebold machines are supposedly secure because they run software from an EPROM, software that has been independently audited and certified for use by election board officials.

Except it turns out that if you change a single jumper inside the machine, it will boot any code you care to supply on a standard flash memory card instead. The jumper switch can be adjustedusing a screwdriver or (better) a pair of needle-nose pliers. Once you’ve booted the machine with your suspect software, simply reset the jumper and remove your memory card. When the machine is turned off, any evidence of tampering will vanish and it will go back to booting from the EPROM.

How ingenious. How…convenient.

© mathew 2017