While I'm all for things like this, locality needs to be addressed. For instance, my local (city/state) issue, is maybe something the whole (country) should not vote on.
Have to say, I didn't really see any actual point being made by this author. Maybe its just a misleading headline, but as far as I could tell his argument boiled down to 1.) We can't let the Estonians beat us in the election technology race 2.) We live in the future, its time our election system was futuristic. The rest is just quotes from security experts about why he's wrong.
The solution to the one genuine problem mentioned in the article--that many people don't vote because the logistics are too difficult--is not online voting; it's early voting. (Which, btw, is what I believe President Obama was referring to when he said "we have to fix that" in reference to the long lines at the polls.)
The article says the inherent security problems with online voting are "not impossible" to fix. In this sense, it's "not impossible" to keep Windows computers virus-free.
As always, security is intimately tied to economics. How many people are interested in breaking into the Estonian elections, versus how many are interested in gaining power over the US elections? It's quite a stark contrast. This is why you can't lock your Ferrari in an rusty shed with a cheap master lock on it. (Though the shed will probably be excellent security for a 2nd hand bike.)
E-voting in Estonia is probably a good idea. E-voting in the US is a catastrophically bad one until we get trusted execution infrastructure as described in Vernor Vinge's sci-fi books. (Yes, that's DRM, but DRM in the hands of individuals is very different from DRM in the hands of governments and large corporations.)
EDIT: Right now, we don't need an ID to vote. That's because creating zombie voters isn't yet possible with paper technology, unless you game the counting, which has better security. Keeping such a conspiracy secret would be difficult, though. Gaming the system and getting away with it would be possible with e-voting machines. Given that only a few swing states need to be affected, organizations that can command 100's of millions of dollars could pull such a thing off.
It's funny that you mention this. In most American states, you don't even need ID to vote. We take vote security much less seriously than other countries.
FYI to sibling responder 'anewguy': looks like your comments are going auto-dead... so many readers can't see, reply, or vote on them. See the guidelines (http://ycombinator.com/newsguidelines.html) to inquire about this status.
How many people are interested in breaking into the Estonian elections, versus how many are interested in gaining power over the US elections?
You think there is no corruption or organised gangs or corrupt politicians in Estonia (or any other country)? Anywhere there is political office, someone'll want to scam their way in.
Yes a small country can be less of a target, but they also need less votes to swing it, and have less money to protect against it.
> You think there is no corruption or organised gangs or corrupt politicians in Estonia (or any other country)? Anywhere there is political office, someone'll want to scam their way in.
I never said that. What I'm saying is that the potential payoff is much smaller.
> Yes a small country can be less of a target, but they also need less votes to swing it, and have less money to protect against it.
There's a big difference between the ROI on the control of Estonia vs. the ROI on control of the US. The ROI is geometrically greater in the second case, which means that Estonia can hope to afford to protect itself, whereas it's probably hopeless for the US.
Help America Vote Act (HAVA) ushered in the touchscreens in a massive turf grab. Insecure, unreliable, untested touch screens were rushed to market.
The same forces are now at work pushing vote by mail and then electronic balloting.
For the vendors, is about charging for the upgrade and switchover costs. Anything to make a buck.
Election integrity is barely considered.
During the hearings to permit casting ballots VIA EMAIL in my state, a retired general now lobbying for the vendors claimed "internet security has gotten really good." Well, shit, if a general says it's cool, that's good enough for me. Bill sailed through legislature unanimously. Because its for the children, err, troops.
I talked to many of the legislators about electronic voting and casting ballots via the internet. First, they didn't understand that email was delivered via the internet in the clear. Second, if you're explaining, you're losing. Meaning once you start talking policy, their eyes glaze over, oops, sorry, your five minutes are up. Next!
The only way the legislators vote against this stuff is if they feel the heat. Meaning stuff the hearings and their inboxes with opposition.
I could go on and on, but I have pancakes waiting for me.
On-line voting is not impossible, but people tend to see the "I
marked my ballot" part and ignore the rest of the voting ecosystem.
Registering voters implies maintaining a registration DB, and
handling moves, deaths, changes of name, changes of
civil status that may disenfranchise or re-enfranchise a voter.
Preparing ballots, paper or otherwise, implies matching voters to
the appropriate ballot, precinct, or voting center.
Avoiding or invalidating multi-voting (in the same jurisdiction)
implies knowing whether a voter has or has not voted, and keeping
them from voting multiple times.
Counting paper ballots implies accounting for spoiled and unused
ballots and dealing with faint or unintended marks.
Secrecy of ballot implies that nobody else knows or can find out how
a voter actually voted (currently unless they show someone a mail-in
ballot before mailing it.)
Imagine the result of a smartphone app that wrapped around a voting
app, and offered to pay voters $50 to vote for or against a
candidate or ballot measure - even if the payoff app completely failed to
work, just the purported existence of such a tool might cast doubt
on a election result.
Voting online is not a "greenfield" problem - it would have to
subsume a lot of previous experience and knowledge before being
thoroughly trusted by its users.
I would suggest to anyone exploring online voting that they get a
grassroots look at the current process - volunteer to be a elections
clerk (judge, watcher, etc.) at your next local election, and/or
become a voter registrar if your jurisdiction allows citizens to
fill that role.
PS - my voting preference is that voters mark scannable ballots,
that are scanned immediately in the voter's presence. You get
the persistence of paper, immediate feedback for mismarks or
unscannable ballots, and good reproducibility of count if needed.
Also, if a surge of people arrives at a polling place, paper ballot
marking can be done in parallel, rather than having a bottleneck of a
few (expensive) machines that all voters must use (registration
look-up and ballot scanning are still bottlenecks).
> I would suggest to anyone exploring online voting that they get a grassroots look at the current process...
Exactly.
I've worked as poll judge, poll inspector, poll observer, central count observer. I have yet to work central count, but I have mean colleagues who have.
When I got started on this issue, I had many many misconceptions about election administration. I mark my ballot, drop in the mail, it gets counted. What could be more simple?
Now I know that central count and mail ballot processing is like making sausage. And that electronic voting requires a religious style belief that everything just works.
> Secrecy of ballot implies...
Voter privacy has traditionally meant before and after casting one's ballot. The "before" part is completely ignored by all the proposed online voting systems. Ditto postal balloting (vote by mail).
The Australian Ballot system permits marking one's ballot in private and prevents linking that ballot to the voter during counting. It's the gold standard. We may divine something better. Until then, I'm sticking to what works.
Like you imply, that's paper ballots cast at poll sites read by mark sense style optical scanners.
There is 1 good reason for electronic voting (among many reasons against).
If electronic voting is implemented then conceivably it would be much easier to convince your base to actually cast their ballots, reducing emphasis on the "ground game" and having a big operation, and thus reducing costs, and more easily allowing third parties to be viable and less well funded candidates to make a bigger impact during primaries.
I use "trivial" in the hacker sense to mean a problem that, while it might be difficult, large and lengthy, has already been thoroughly explored and a set of solutions and best practices is known, and should easily be accomplished by implementors of average or above skill levels.
We do things similar to online voting all the time. When Superbowl or Lady Gaga tickets go on sale, many people flood limited database servers and have to be put in a queue. I can transfer hundreds of thousands of dollars with my smartphone - that's not a problem, but a vote which is worth nothing is going to be a target? When Census forms are sent out, a code is sent by physical mail to addresses - that code, when entered online, can be used to fill out the form. Or just fill out the paper form and drop it in the mail. Trivial either way. For that matter, thousands of organizations, not just Estonia, have binding internet votes every year.
When you read about people waiting seven hours in line, it's not unforeseen problems or incompetence; it's malice. If you show me a story about people waiting seven hours in line, I'll show you a Democratic district in a state with Republican, partisan election officials. Every time. Those sorts of problems can't be solved by technology; they're people problems, not tech problems. Right now, internet voting is a people problem, not a tech problem. Internet voting might encourage more people to vote - and that's why Republicans are against it.
> When you read about people waiting seven hours in line, it's not unforeseen problems or incompetence; it's malice. If you show me a story about people waiting seven hours in line, I'll show you a Democratic district in a state with Republican, partisan election officials.
I'd love a citation on this, or at least a few anecdotal examples. Granted, it does fit with the general perception of party strategies (Democrats try to buy voters, Republicans try to prevent voters), but I'd still like to see some evidence.
I disagree. Online voting is highly non-trivial once you factor in that any voting system must be (1) verifiably accurate, and that (2) voting must be secret.
Secret from whom? Requirement 2 does not actually exist in any significant form.
The change from public voting to secret voting involved a change from a system where people generally came forward and shouted their vote in front of a roomful of people who would cheer or boo as appropriate, to a system where people deposited their ballot in am opaque box. That's the only change.
Anyone who wishes to can vote non-secretly today, by shouting or waving their ballot around, by voting by mail, whatever they want. The "secret" ballot is a misnomer. In fact the shift was from "mandatory open ballot" to "optional open ballot". It is not and never has been "mandatory secret ballot".
TL;DR: There's nothing LESS secret about voting online than voting by mail, which is already legal for anyone in any state to do.
And here is one such system (http://www.wombat-voting.com/) compatible with paper-based voting too. With the added feature that the voter can verify their vote was recorded correctly, making election fraud incredibly hard.
Yeah, but the very first step in it is "voter suppression":
> 1.Identification
> The voter enters the polling station and identifies himself/herself using an id card. The voting committee checks the voter appears in the registered voters list and has not voted yet. The committee tells the voter to proceed to the voting booth.
And, on a more serious note, it is quite complicated compared to just dropping a piece of paper marked with a pen into a box.
> We do things similar to online voting all the time.
Name one.
The huge difference between voting and all the other transactions online is that the ballot is supposed to be secret. A lot of security online relies on review. That's largely how credit card fraud is being dealt with.
The other reason, why voting online or in any sort of electronic way is less secure and difficult to be made secure, is that electronic exploits scale well. Anyone can write a fake ballot but it's very difficult to do in numbers that can actually sway the elections. Once you break the electronic voting scheme, you can change thousands of votes at a time.
I brought this up in a thread on election day. Unless I'm very misinformed there is no requirements in federal or state law of which I am aware that requires a secret ballot.
It is more important to have a verifiable result than an anonymous one. Both would be optimal but introduces complexity.
If donors to political campaigns cannot be anonymous for amounts exceeding some small value like $50 to promote transparency, seems trivial to ditch the tradition of secret ballot to promote participation.
A lack of secret ballot could easily be challenged by businesses that threaten or have 'layoffs' for those candidates or positions that workers vote for.
I'm not as worried about the mob showing up and telling me 'vote this way or Jimmy here will say hi', but instead "candidate X will benefit your job. We're not sure you'll have your position if he's not voted in"
There have been a few high-profile reports in this election cycle of people threatening layoffs with a secret ballot. They tinge it with, if these policies are enacted we will cut hours, not hire, etc to hedge. The Papa Johns CEO was fairly candid, I also think I read of a coal mine announcing layoffs the day after the election, etc.
I'm fairly certain it is a violation of most state civil right laws and probably explicit state constitutional guarantees to discriminate in employment on the basis of political affiliation just as it is race, gender, etc. I know it is in the state in which I reside.
The salient point being that having a "secret" ballot has not stopped it from happening either. My employer can easily verify if they choose if I have donated to the "correct" candidate already and rampant job discrimination seems not to occur in a significant amount.
So, one has to balance the risk of someone acting illegally in either case to discriminate against/coerce versus the increase in voter participation that would naturally occur in having online voting that was verifiable.
I think it's an easy case to make, but perhaps I'm overlooking something.
I'd give up my secrecy for the convenience of casting my vote online. If I had friends that would judge me for my political beliefs...well, they wouldn't be my friends very long anyways. :)
This isn't the roaring 20's; Mobsters aren't going to come lean-on me to sway my vote. I will however, call the police on any who do.
But in all reality, give my IP Address/Identifiable information to the government to be able to cast my vote online? Yes. In a heartbeat yes. The NSA & CIA probably already have everything on me anyway. Young, home-owner, broke as shit just like the rest of the country, average job, average family, average affiliations, I'm a boring dude-nothing to worry about.
I do agree about security though, some big players would pay to have the election cracked...and the real stink is all it would take is a politician complaining about a suspected malfunction and the entire online process is review'd for WEEKS. Messy, but I'd still vote online if it was available.
I think you hit it on the head. You are a perfectly down the middle, average, American. You have time to read and post on HackerNews. You are almost certainly not in the population to which the secret ballet is most beneficial.
The moment a non-secret ballet becomes a large-scale option, then the most vulnerable will be targetted. One there is a way to confirm that someone infact did vote the way you wanted, then you're good to go buying the votes of those desperate enough. You might be 'broke as shit', but you're also average, which means you're not -really- broke as shit.
I understand yours and Lukifer's point of view except 'buying votes' is already being done. We have billion of dollars at play into the elections. We have history on top of history to know which districts vote which way and we target the swing states to help decide the outcome of the election. Sure the money is going into mass mailing marketing campaigns, TV ads, community support, but it's the same result.
Everyone talks about buying votes but does anyone have any concrete examples? (Not saying it doesn't happen, simply that I don't have any good examples to learn from atm.) All I'm getting back from Google are accusations against Obama (no surprise given the recent election) and a mention from Wikipedia about Vote Buying in 'ye old England'. I'd do a more detailed search except it's late and I'm off to bed. This discussion is getting interesting.
> The moment a non-secret ballet becomes a large-scale option, then the most vulnerable will be targetted.
Since voting by mail is available in all 50 states to anyone, this threat you describe should have materialized, no? But it hasn't. At all. There are zero cases of it.
Coercion by threat is only part of the problem; the bigger risk is buying votes. The threat of prosecution can be dodged by taking offers "off-grid", farming it out to people on the street who have no official connection to the campaign. And to those who are cynical about politics and/or struggling to make ends meet, getting paid for your vote would be mighty tempting.
I do believe secure and secret electronic voting is possible, but I have little faith in the current government-industrial complex to give a shit about getting it right. At least paper voting works, and has a lot of eyeballs on it to prevent fraud.
A vote which is worth nothing is going to be a target?
A vote is worth a lot. In fact, the basic problem with all online voting schemes, at least according to a dissertation I reviewed, is that vote selling is too easy.
No Internet-based voting system can prevent voter privilege trading (buying/selling) without removing its principle advantages, like voting anywhere at any time with minimum friction.
Since voting by mail is already available to anyone in any state, this widespread vote-selling should already occur, no? "Send my $100 and I'll send you my unmarked absentee ballot for the 2012 elections - you can fill it out and mail it in." But it doesn't happen. At all. Possibly because it's illegal.
Just use multi-step authentication, one of which is sometime during the year showing up somewhere in person.
Let one of the required authentication methods be designating a close friend or relative that is also a voter who can confirm that you actually voted. So they would get an electronic message with a url they would have to click after speaking with you and confirming that you did vote on the day in question.
Make it so people have to be home to vote.
And if we required the same process to confirm changes in address, we could cut down on identity fraud in general.
Using multiple methods will make it harder to game the process. Its very hard to steal someone's password AND steal their phone AND kidnap a relative AND camp out at their house.
Those that can't manage all of the required steps can keep voting the way they do now. They'll have much shorter lines to deal without everyone else there.
I'm an expat... Showing up somewhere in person once a year is unlikely to be an option for me when you take into account that I visit the US every other year on average. And before you suggest using embassies as an option, you're assuming you live in a city with an embassy, or that you should be required to travel to one, regardless of the cost.
How do you guarantee that the mail server will be up after you vote? Or that the server sending out the email won't be hit by a denial of service attack?
For that matter, how do you determine if someone is at home? --Most people don't have fixed IP addresses, and they can be spoofed anyway.
Finally, how do you determine that the vote logged in the database is what the person actually voted for and wasn't changed at a later time? With a paper ballot, you can always recount. Recounting database information is less easy.
Hey tech community! Remember the time before the eye of Sauron gazed here, demanding a superficial veneer of progress to demonstrate "its" society's advancement? Remember when one informed and well-reasoned opinion was worth more than twenty idiotic and entitled ones? (kind of the opposite of democracy. oops, that wasn't meant to last!) Remember when we dreamed of engineering actual solutions, rather than shoehorning all problems into what can be solved using html+http+database, resultant deficiencies be damned? Well I guess only about a tenth of you do, and of those only a tenth care. sigh.
I'll just point out that top security experts like Ronald Rivest (co-inventor of RSA) expressed extreme skepticism that we would be able to implement electronic voting without seriously endangering our elections during the MIT-Caltech voting project. I'm not trying to discourage anyone from working towards it, but it has a lot of issues.
I believe that the only way that online or electronic voting could work would be as an freely distributed "open source" community built & tested solution. If open source is secure enough to run the Whitehouse website it is likely secure enough to manage recording a vote.
Maybe we could engineer a situation where we use thin virtual clients from a master server and the actual "complete operating system" of the voting device could be imaged or have a current snapshot stored on the same media as the vote reciept itself for possible later verification or even independent verification on the spot by interested code developers.
The article is just mind-bogglingly silly: The author quotes a number of experts, explaining why it is a really bad idea and why it would compromise the integrity of the election. Then he goes and, around those quotes, puts some fluff where he suggests we should do it anyway, cause he'd find it convenient to vote on his smartphone.
Here's a basic check for the author of the article: If you want to demonstrate how online voting is the future, but you can't find any experts supporting your point of view, and don't have anything refuting their serious arguments against it, maybe it just isn't such a good idea after all.
The issue is the fraud cannot be undone. Unlike your IRS taxes online, there is no IRS to audit trail the vote. And even if there were (cost/privacy logistics aside), the harm is irreprable. If the wrong guy is given power for 2-3 years, its too late to then switch over (justice delayed=justice denied). That is the nutshel of why this "obvious" idea is fatally flawed, IMHO. You are concentrating political power in a black-box not subject to checks/balances, etc. Odd, but paper ballots are the simpler/smarter choice. We just need to lose the clowns administering the elections. Perhaps this should be handed off to a the judiciary or something? Dunno. A good Compromise seems to be (1) national holiday to vote (to increase turnout); (2) IDs (to maintain semblance of legitimacy); (3) simple paper ballot (secure, private, verifiable); (4) computerized registration (to ensure any problems sorted out in advance re(#2).
47 comments
[ 3.1 ms ] story [ 123 ms ] threadhttp://imgur.com/a/PK69j
Then again, baby steps right?
The article says the inherent security problems with online voting are "not impossible" to fix. In this sense, it's "not impossible" to keep Windows computers virus-free.
E-voting in Estonia is probably a good idea. E-voting in the US is a catastrophically bad one until we get trusted execution infrastructure as described in Vernor Vinge's sci-fi books. (Yes, that's DRM, but DRM in the hands of individuals is very different from DRM in the hands of governments and large corporations.)
EDIT: Right now, we don't need an ID to vote. That's because creating zombie voters isn't yet possible with paper technology, unless you game the counting, which has better security. Keeping such a conspiracy secret would be difficult, though. Gaming the system and getting away with it would be possible with e-voting machines. Given that only a few swing states need to be affected, organizations that can command 100's of millions of dollars could pull such a thing off.
You think there is no corruption or organised gangs or corrupt politicians in Estonia (or any other country)? Anywhere there is political office, someone'll want to scam their way in.
Yes a small country can be less of a target, but they also need less votes to swing it, and have less money to protect against it.
I never said that. What I'm saying is that the potential payoff is much smaller.
> Yes a small country can be less of a target, but they also need less votes to swing it, and have less money to protect against it.
There's a big difference between the ROI on the control of Estonia vs. the ROI on control of the US. The ROI is geometrically greater in the second case, which means that Estonia can hope to afford to protect itself, whereas it's probably hopeless for the US.
Help America Vote Act (HAVA) ushered in the touchscreens in a massive turf grab. Insecure, unreliable, untested touch screens were rushed to market.
The same forces are now at work pushing vote by mail and then electronic balloting.
For the vendors, is about charging for the upgrade and switchover costs. Anything to make a buck.
Election integrity is barely considered.
During the hearings to permit casting ballots VIA EMAIL in my state, a retired general now lobbying for the vendors claimed "internet security has gotten really good." Well, shit, if a general says it's cool, that's good enough for me. Bill sailed through legislature unanimously. Because its for the children, err, troops.
I talked to many of the legislators about electronic voting and casting ballots via the internet. First, they didn't understand that email was delivered via the internet in the clear. Second, if you're explaining, you're losing. Meaning once you start talking policy, their eyes glaze over, oops, sorry, your five minutes are up. Next!
The only way the legislators vote against this stuff is if they feel the heat. Meaning stuff the hearings and their inboxes with opposition.
I could go on and on, but I have pancakes waiting for me.
Registering voters implies maintaining a registration DB, and handling moves, deaths, changes of name, changes of civil status that may disenfranchise or re-enfranchise a voter.
Preparing ballots, paper or otherwise, implies matching voters to the appropriate ballot, precinct, or voting center.
Avoiding or invalidating multi-voting (in the same jurisdiction) implies knowing whether a voter has or has not voted, and keeping them from voting multiple times.
Counting paper ballots implies accounting for spoiled and unused ballots and dealing with faint or unintended marks.
Secrecy of ballot implies that nobody else knows or can find out how a voter actually voted (currently unless they show someone a mail-in ballot before mailing it.)
Imagine the result of a smartphone app that wrapped around a voting app, and offered to pay voters $50 to vote for or against a candidate or ballot measure - even if the payoff app completely failed to work, just the purported existence of such a tool might cast doubt on a election result.
Voting online is not a "greenfield" problem - it would have to subsume a lot of previous experience and knowledge before being thoroughly trusted by its users.
I would suggest to anyone exploring online voting that they get a grassroots look at the current process - volunteer to be a elections clerk (judge, watcher, etc.) at your next local election, and/or become a voter registrar if your jurisdiction allows citizens to fill that role.
If you'd rather just web-browse, I can recommend https://en.wikipedia.org/wiki/Avi_Rubin as a useful and thoughtful source.
PS - my voting preference is that voters mark scannable ballots, that are scanned immediately in the voter's presence. You get the persistence of paper, immediate feedback for mismarks or unscannable ballots, and good reproducibility of count if needed.
Also, if a surge of people arrives at a polling place, paper ballot marking can be done in parallel, rather than having a bottleneck of a few (expensive) machines that all voters must use (registration look-up and ballot scanning are still bottlenecks).
Exactly.
I've worked as poll judge, poll inspector, poll observer, central count observer. I have yet to work central count, but I have mean colleagues who have.
When I got started on this issue, I had many many misconceptions about election administration. I mark my ballot, drop in the mail, it gets counted. What could be more simple?
Now I know that central count and mail ballot processing is like making sausage. And that electronic voting requires a religious style belief that everything just works.
> Secrecy of ballot implies...
Voter privacy has traditionally meant before and after casting one's ballot. The "before" part is completely ignored by all the proposed online voting systems. Ditto postal balloting (vote by mail).
The Australian Ballot system permits marking one's ballot in private and prevents linking that ballot to the voter during counting. It's the gold standard. We may divine something better. Until then, I'm sticking to what works.
Like you imply, that's paper ballots cast at poll sites read by mark sense style optical scanners.
If electronic voting is implemented then conceivably it would be much easier to convince your base to actually cast their ballots, reducing emphasis on the "ground game" and having a big operation, and thus reducing costs, and more easily allowing third parties to be viable and less well funded candidates to make a bigger impact during primaries.
I use "trivial" in the hacker sense to mean a problem that, while it might be difficult, large and lengthy, has already been thoroughly explored and a set of solutions and best practices is known, and should easily be accomplished by implementors of average or above skill levels.
We do things similar to online voting all the time. When Superbowl or Lady Gaga tickets go on sale, many people flood limited database servers and have to be put in a queue. I can transfer hundreds of thousands of dollars with my smartphone - that's not a problem, but a vote which is worth nothing is going to be a target? When Census forms are sent out, a code is sent by physical mail to addresses - that code, when entered online, can be used to fill out the form. Or just fill out the paper form and drop it in the mail. Trivial either way. For that matter, thousands of organizations, not just Estonia, have binding internet votes every year.
When you read about people waiting seven hours in line, it's not unforeseen problems or incompetence; it's malice. If you show me a story about people waiting seven hours in line, I'll show you a Democratic district in a state with Republican, partisan election officials. Every time. Those sorts of problems can't be solved by technology; they're people problems, not tech problems. Right now, internet voting is a people problem, not a tech problem. Internet voting might encourage more people to vote - and that's why Republicans are against it.
I'd love a citation on this, or at least a few anecdotal examples. Granted, it does fit with the general perception of party strategies (Democrats try to buy voters, Republicans try to prevent voters), but I'd still like to see some evidence.
I disagree. Online voting is highly non-trivial once you factor in that any voting system must be (1) verifiably accurate, and that (2) voting must be secret.
edit: The article does mention coercion as being a problem.
The change from public voting to secret voting involved a change from a system where people generally came forward and shouted their vote in front of a roomful of people who would cheer or boo as appropriate, to a system where people deposited their ballot in am opaque box. That's the only change.
Anyone who wishes to can vote non-secretly today, by shouting or waving their ballot around, by voting by mail, whatever they want. The "secret" ballot is a misnomer. In fact the shift was from "mandatory open ballot" to "optional open ballot". It is not and never has been "mandatory secret ballot".
TL;DR: There's nothing LESS secret about voting online than voting by mail, which is already legal for anyone in any state to do.
Secret from everyone else except the voter. There should be no way that I can prove to anyone how I voted.
The purpose of this is to make it impossible fro anyone to bribe or blackmail a voter into voting a particular way.
> Anyone who wishes to can vote non-secretly today, by shouting or waving their ballot around
This would probably be illegal in the UK.
> by voting by mail
That's true. Postal voting does prevent voting being secret.
Yeah, but the very first step in it is "voter suppression":
> 1.Identification
> The voter enters the polling station and identifies himself/herself using an id card. The voting committee checks the voter appears in the registered voters list and has not voted yet. The committee tells the voter to proceed to the voting booth.
And, on a more serious note, it is quite complicated compared to just dropping a piece of paper marked with a pen into a box.
Are identity requirements also "driver suppression", "banking suppression", "2nd amendment suppression", etc?
No, of course not, that's why I used quotes, and then qualified the next point with "on a more serious note".
Name one.
The huge difference between voting and all the other transactions online is that the ballot is supposed to be secret. A lot of security online relies on review. That's largely how credit card fraud is being dealt with.
The other reason, why voting online or in any sort of electronic way is less secure and difficult to be made secure, is that electronic exploits scale well. Anyone can write a fake ballot but it's very difficult to do in numbers that can actually sway the elections. Once you break the electronic voting scheme, you can change thousands of votes at a time.
It is more important to have a verifiable result than an anonymous one. Both would be optimal but introduces complexity.
If donors to political campaigns cannot be anonymous for amounts exceeding some small value like $50 to promote transparency, seems trivial to ditch the tradition of secret ballot to promote participation.
I'm not as worried about the mob showing up and telling me 'vote this way or Jimmy here will say hi', but instead "candidate X will benefit your job. We're not sure you'll have your position if he's not voted in"
I'm fairly certain it is a violation of most state civil right laws and probably explicit state constitutional guarantees to discriminate in employment on the basis of political affiliation just as it is race, gender, etc. I know it is in the state in which I reside.
So I think this is a red-herring.
So, one has to balance the risk of someone acting illegally in either case to discriminate against/coerce versus the increase in voter participation that would naturally occur in having online voting that was verifiable.
I think it's an easy case to make, but perhaps I'm overlooking something.
I'd give up my secrecy for the convenience of casting my vote online. If I had friends that would judge me for my political beliefs...well, they wouldn't be my friends very long anyways. :)
This isn't the roaring 20's; Mobsters aren't going to come lean-on me to sway my vote. I will however, call the police on any who do.
But in all reality, give my IP Address/Identifiable information to the government to be able to cast my vote online? Yes. In a heartbeat yes. The NSA & CIA probably already have everything on me anyway. Young, home-owner, broke as shit just like the rest of the country, average job, average family, average affiliations, I'm a boring dude-nothing to worry about.
I do agree about security though, some big players would pay to have the election cracked...and the real stink is all it would take is a politician complaining about a suspected malfunction and the entire online process is review'd for WEEKS. Messy, but I'd still vote online if it was available.
The moment a non-secret ballet becomes a large-scale option, then the most vulnerable will be targetted. One there is a way to confirm that someone infact did vote the way you wanted, then you're good to go buying the votes of those desperate enough. You might be 'broke as shit', but you're also average, which means you're not -really- broke as shit.
Everyone talks about buying votes but does anyone have any concrete examples? (Not saying it doesn't happen, simply that I don't have any good examples to learn from atm.) All I'm getting back from Google are accusations against Obama (no surprise given the recent election) and a mention from Wikipedia about Vote Buying in 'ye old England'. I'd do a more detailed search except it's late and I'm off to bed. This discussion is getting interesting.
Since voting by mail is available in all 50 states to anyone, this threat you describe should have materialized, no? But it hasn't. At all. There are zero cases of it.
I do believe secure and secret electronic voting is possible, but I have little faith in the current government-industrial complex to give a shit about getting it right. At least paper voting works, and has a lot of eyeballs on it to prevent fraud.
A vote is worth a lot. In fact, the basic problem with all online voting schemes, at least according to a dissertation I reviewed, is that vote selling is too easy.
No Internet-based voting system can prevent voter privilege trading (buying/selling) without removing its principle advantages, like voting anywhere at any time with minimum friction.
Let one of the required authentication methods be designating a close friend or relative that is also a voter who can confirm that you actually voted. So they would get an electronic message with a url they would have to click after speaking with you and confirming that you did vote on the day in question.
Make it so people have to be home to vote.
And if we required the same process to confirm changes in address, we could cut down on identity fraud in general.
Using multiple methods will make it harder to game the process. Its very hard to steal someone's password AND steal their phone AND kidnap a relative AND camp out at their house.
Those that can't manage all of the required steps can keep voting the way they do now. They'll have much shorter lines to deal without everyone else there.
How do you guarantee that the mail server will be up after you vote? Or that the server sending out the email won't be hit by a denial of service attack?
For that matter, how do you determine if someone is at home? --Most people don't have fixed IP addresses, and they can be spoofed anyway.
Finally, how do you determine that the vote logged in the database is what the person actually voted for and wasn't changed at a later time? With a paper ballot, you can always recount. Recounting database information is less easy.
Maybe we could engineer a situation where we use thin virtual clients from a master server and the actual "complete operating system" of the voting device could be imaged or have a current snapshot stored on the same media as the vote reciept itself for possible later verification or even independent verification on the spot by interested code developers.
Here's a basic check for the author of the article: If you want to demonstrate how online voting is the future, but you can't find any experts supporting your point of view, and don't have anything refuting their serious arguments against it, maybe it just isn't such a good idea after all.