Skip to main content

Microsoft’s ElectionGuard a Trojan Horse for a military-industrial takeover of US elections

“The fact that we are handing over the keys of American democracy to the military-industrial complex — it’s like giving the keys to the henhouse to a fox and saying, ‘here come in and take whatever you want.’ It’s obviously dangerous.” — Investigative journalist Yasha Levine

by Whitney Webb 

Part 5 - ElectionGuard isn’t immune to manipulation

Microsoft’s press release announcing ElectionGuard highlights its claim that its system would make elections more verifiable, secure, and auditable; be open source-based; and improve the voting experience. While all of these things sound nice enough, there is reason to believe — based on the description given by Microsoft — that some of these claims are dubious and misleading. Unfortunately, for now, analysis of ElectionGuard is restricted to Microsoft’s description of the software as it is not yet available for public examination. The ElectionGuard software kit is expected to be released later this year on the GitHub platform.

The first aspect of the “verifiable” claim relates to a voter tracking system, where each voter is given a unique tracking ID which allows them “to follow an encrypted version of the vote through the entire election process via a web portal provided by election authorities.” Voters can choose the option of confirming “that their trackers and encrypted votes accurately reflect their selections.

Yet Microsoft notes that “once a vote is cast, neither the tracker nor any data provided through the web portal can be used to reveal the contents of the vote,” meaning that while a person can track whether their vote was counted, they cannot verify whether the content of the vote (i.e., who they voted for) is counted correctly or not. Microsoft goes on to note that only “after the election is complete” will the tracker page allow the content of the vote to be seen.

The second “verifiability” component of ElectionGuardis an open specification – or a road map – which allows anyone to write an election verifier.” Microsoft then notes that this open specification would mean that “voters, candidates, news media and any observers can run verifiers of their own or downloaded from sources of their choosing to confirm tabulations are as reported.

Microsoft describes these two features as constituting “end-to-end verifiability” (E2E-V), which Free & Fair describes as “cryptographic technology that enables voters to vote in a normal fashion in a polling place and have evidence that the election is trustworthy.

Another focus of ElectionGuard is security, for which the system employs “homomorphic encryption, which enables mathematical procedures – like counting – to be done with fully encrypted data” and this allows individually encrypted votes to be “combined to form an encrypted tabulation of all votes which can then be decrypted to produce an election tally that protects voter privacy.”  Notably, homomorphic encryption is the only ElectionGuard security measure named in the press release.

Election forensics analyst Jonathan Simon, author of CODE RED: Computerized Elections and the War on American Democracy, was not fully persuaded by the E2E-V claim. “Pardon my skepticism,” Simon told MintPress, “but I’ve read Microsoft’s ‘good news’ ElectionGuard flyer and it reminds me very much of the flyers and PR material long served up by the vendors and programmers of the current voting equipment — the very computers that IT experts discovered could be hacked by outsiders and programmed to add, delete, and shift votes by insiders.

Simon continued:

"Right now, for example, they’re hawking expensive and completely unnecessary ballot-marking devices (BMDs) that turn your votes into a barcode, a code that no voter can read or verify. Very slick but yet another level of non-transparency, another step away from public, observable vote-counting, and another vector for fraud."

"I’ve spent the last 17 years examining vote-count patterns and drawing attention to a parade of egregious red flags indicative of computerized vote-count manipulation. It has been a system designed for concealment and about as non-transparent as a process can be. It would be great if more advanced technology would bring transparency at last, as Microsoft seems to promise."

"But what I see so far is even more complexity — encryption that, whether open source or not, requires the most rarefied experts to penetrate or understand. And just a short step to full-on internet voting — even more convenient and about as secure as, say, Facebook."

"Pending a demonstration showing with perfect layperson-accessible clarity how a third-party entity can verify aggregate vote-counts without having to take on faith some step in the pipeline (individual verification that ‘your’ vote was ‘counted’ is a useless bell-and-whistle), it still feels like the same old ‘trust us’ game. I’m willing to be persuaded but the historical context here is very cautionary.

Simon’s concerns reflect some controversial aspects of the ElectionGuard approach. While encryption would ostensibly protect votes from tampering and thus elections results, it is important to point out that homomorphic encryption is a malleable form of encryption.

According to Brilliant.org:

"A malleable crypto-system is one in which anyone can intercept a cipher text, transform it into another cipher text, and then decrypt that into a plain text that makes sense. Malleability is generally considered undesirable in a crypto-system. Imagine you’re trying to send the message ‘I love you’ to your friend using encryption. You encrypt it and send it off. But, it is intercepted by a hacker on the way. All they see is some cipher text, but they can change that cipher text to something that will decrypt to ‘I hate you’ when your friend tries to decrypt it. That is why malleability is not usually wanted.

If that’s the case, then what stops a “hacker” or another third party — say a U.S. government agency like the NSA or a political operative with access to the electoral cyber-pipeline — from changing a person’s vote from Democrat to Republican or vice versa, or altering the encrypted tabulation of all votes?

While homomorphic encryption seems a reasonable choice in one sense, for allowing votes to be tallied without decrypting, there is an added layer of concern given Microsoft’s past, particularly Microsoft’s history of actually working with U.S. government agencies to bypass encryption. 

Indeed, documents leaked by Edward Snowden revealed that Microsoft actually helped the National Security Agency bypass its own encryption so the agency could decrypt messages sent via certain Microsoft platforms including Outlook.com Web chat, Hotmail email service, and Skype. In addition, in 2009, a senior NSA official testified before Congress that Microsoft and the NSA worked together to create its Windows 7 operating system, leading some to worry that Microsoft had built a “backdoor” into the operating system to aid government surveillance activities. Now that Microsoft’s ties to the U.S. military and intelligence community are deeper than ever, it begs the question whether Microsoft’s covert cooperation with government agencies to the detriment of consumers is also a factor guiding its role in creating and promoting ElectionGuard.

Furthermore, with Microsoft’s president having vowed to hand over all its technologies to the U.S. military, one wonders if this type of encryption and methodology was not chosen on purpose, especially given the fact that the NSA is quite accomplished at breaking much more secure types of encryption even without help from Microsoft.

Another of Microsoft’s talking points used to promote ElectionGuard is the fact that it will be open source, meaning the program’s code will be publicly available, a move apparently aimed at assuaging concerns that ElectionGuard’s code could contain hidden manipulations or vulnerabilities.

However, investigative journalist Yasha Levine likened Microsoft’s promotion of ElectionGuard’s still unreleased open source code to a “PR move.” Levine told MintPress:

"Open source inevitably has bugs and vulnerabilities that are there accidentally because all code has vulnerabilities. This is true for open source and closed source systems. Open source just means that people can look at it, but then that code has to be run through a compiler that actually runs an executable program. So there you already have a degree of abstraction and separation from the open source code. But even if the executable code and the source code are the same, there are bugs which can be exploited."

"So, what open source does is give a veneer of openness that leads one to think that thousands of people have probably vetted the code and flagged any bugs in it. But, actually very few people have the time and the ability to look at this code. So this idea that open source code is more transparent isn’t really true because few people are looking at it.

Levine went on to note that there are many examples of open source systems — including widely used open source systems — having major vulnerabilities that go undetected for years. One of the best examples, in Levine’s opinion, is the “Heartbleed” bug, which was a security vulnerability in the open source OpenSSL software, a system that allows for the basic encryption of web traffic by encrypting “http” connections. The Heartbleed allowed hackers access to the memory of data servers for an estimated half a million websites and went undetected for years, despite the fact that OpenSSL is an open source system.

Levine also underscored the fact that both American and foreign intelligence agencies “more than any other person or group” are involved in seeking out such vulnerabilities and exploits, which they keep hidden from the public in order to give themselves an advantage in cyberwarfare. Some of the CIA’s lists of such exploits or vulnerabilities were revealed in the WikiLeaks Vault 7 release.

Source, links:


[1] [2] [3] [4] [6] [7]



Comments

Popular posts from this blog

Day 1828: After five years, Julian Assange still in prison and under slow-motion execution by the Anglo-American imperialist criminals

failed evolution   On 11 April 2019, the Ecuadorian government of traitor Lenin Moreno, invited the Metropolitan Police into the Ecuadorian embassy in London, and they arrested Julian Assange . Since then, Assange is kept in Belmarsh high security prison in London, without actual charges.   The real reason world's number one political prisoner is still kept in this high security prison, is because he exposed horrendous war crimes carried out by the US imperialists and their allies.   The ruthless Western imperialist regime wants to punish the No1 real journalist in the world and make him an example for any Whistleblower or real journalist who will attempt to expose its big crimes in the future.   And the Anglo-American axis has now become officially a fascist coalition , framed by the rest of its Western pets. UK's Home Secretary Priti Patel, one of the most ruthless ever, decided to extradite Julian Assange to US. No surprise of course. The only question we had in mind is

Seymour Hersh - CIA Covers Up Nord Stream Bombing & Corruption Continues in Ukraine

davidekyo    

Zionist criminals admit on camera genocide & destruction of UN facilities

The Grayzone   Journalist Jeremy Loffredo joins The Grayzone to discuss his shocking and highly revelatory video report from inside the ranks of the Israeli nationalists blocking aid to Gaza with the quiet support of their government. Loffredo explains how he gained access to the demonstrators and the unsettling scenes he witnessed while filming his exclusive Grayzone documentary.

US sends troops & weapons to Taiwan. Is it preparing war on China?

Geopolitical Economy Report   The US government has sent troops to Taiwan, just a few kilometers from mainland China, while also selling billions of dollars of weapons and military equipment. Is Washington preparing for war? Ben Norton analyzes the geopolitical situation.  

Η μαύρη επταετία του καθεστώτος Μητσοτάκη

globinfo freexchange   Όπως έχουμε ήδη αναφέρει σε προηγούμενο άρθρο , η παντοδυναμία του καθεστώτος Μητσοτάκη στηρίζεται σε πήλινα πόδια. Τώρα, σε κανονικές συνθήκες, (έτσι βέβαια όπως τις αντιλαμβάνονται τα κέντρα αποφάσεων της Ευρωπαϊκής Ένωσης), οι γραφειοφασίστες των Βρυξελλών και το διευθυντήριο του Βερολίνου φροντίζουν όλο και πιο συχνά να διαμηνύουν στις κυβερνήσεις ότι "το πάρτι τελείωσε".  Αυτό σημαίνει καταρχήν σκληρή λιτότητα. Και επειδή κανείς δεν ξέρει στην πραγματικότητα πόσο χρήμα μοιράστηκε στην προηγούμενη θητεία Μητσοτάκη, πάνω και κάτω από το τραπέζι, προς διάφορες κατευθύνσεις, προκειμένου το καθεστώς να ανανεώσει το ραντεβού του με την εξουσία, είναι πολύ πιθανό να αρχίσει να εμφανίζεται στον ορίζοντα ένας σοβαρός εκτροχιασμός των δημοσιονομικών στόχων και άρα των πολύ σκληρών όρων που επιβλήθηκαν στην κυβέρνηση Τσίπρα με αντάλλαγμα τη ρύθμιση του χρέους. Αυτό, με λίγα λόγια, σημαίνει δεύτερη επίσημη χρεοκοπία.   Και αυτό, με τη σειρά του, σ

The Invasion of Gaza's Resources Begins: Jared Kushner, the EU, Egypt & US

Richard Medhurst   Jared Kushner, Donald Trump's son in law who previously tried to steal land in the Middle East from Arabs has said that Israel should empty the Gaza strip of civilians. He said that " Gaza's waterfront property could be very valuable ". He then proceeded to suggest ethnic cleansing: " move the people out and clean it [Gaza] up " Simultaneously, the transfer of billions of dollars from the European Union (7.4b EUR), the International Monetery Fund ($8b) and the United Arab Emirates ($32b) to Egypt: an attempt to buy Sisi's silence perhaps? The United States is also shipping 1000 troops and a firm "Fogbow", owned by a former CIA officer and USMC veteran, in order to build a pier in Gaza. These events do not seem like a coincidence. Medhurst explains why this relates to theft of gas and building of a canal in Gaza.   Related: Zionist and US imperialist criminals are about to grab the natural gas off shore Gaza

Πως θα καταλάβετε ότι το καθεστώς Μητσοτάκη είναι ότι χειρότερο έχει κυβερνήσει τη χώρα στη μεταπολίτευση

Από τον μέγα ηγέτη Μωυσή ως τον αντίπαλο λαό, μια θητεία Μητσοτάκη δρόμος     globinfo freexchange   Αν ακόμα δεν έχετε πάρει χαμπάρι με τι άθλια διακυβέρνηση έχουμε να κάνουμε.   Αν δεν σας έπεισε η καταστροφική διαχείριση της πανδημίας, οι υποκλοπές, τα Τέμπη, το ρεκόρ καμένων δασών, η ακρίβεια, τα υπερκέρδη των καρτέλ, η διάλυση του συστήματος υγείας και τόσα άλλα.  Τότε μάλλον ανήκετε στην κατηγορία των ανθρώπων που είναι εξαιρετικά επιρρεπείς στην επικοινωνιακή καταιγίδα του καθεστώτος Μητσοτάκη, με την οποία επιχειρεί να κρύψει τον όλεθρο που σπέρνει στο διάβα του. Όμως αν είναι όντως έτσι, ίσως να σας πείσει η δραματική αλλαγή του επικοινωνιακού αφηγήματος του μιντιακού προπαγανδιστικού μηχανισμού, που απεικονίζει το μέγεθος της αποτυχίας της διακυβέρνησης Μητσοτάκη. Θυμηθείτε ότι με την έναρξη της πρώτης θητείας Μητσοτάκη, ο μηχανισμός προπαγάνδας παρουσίαζε τον ίδιο τον Μητσοτάκη ως τον μέγα ηγέτη που βγάζει την Ελλάδα από το περιθώριο, χρησιμοποιώντας πολλές φορές και υπερβολ

Yanis Varoufakis Banned from Germany as Berlin Police Raid & Shut Down Palestinian Conference

Democracy Now!   As Germany intensifies its crackdown on pro-Palestinian voices, Democracy Now! spoke with Greek economist and politician Yanis Varoufakis, one of the planned speakers at a conference in Berlin last weekend that was forcibly shut down by police. The Palestine Congress was scheduled to be held for three days, but police stormed the venue as the first panelist spoke.    Germany's Interior Ministry had also banned some conference speakers from even entering the country, including Varoufakis, the Palestinian British surgeon Ghassan Abu-Sittah and the Palestinian researcher Salman Abu Sitta.    " This is not about protecting Jewish lives and Jews from antisemitism. It's all about protecting the right of Israel to commit any war crime of its choice, " says Varoufakis.    Varoufakis speaks also about freeing Julian Assange and his new book Technofeudalism .      Related: Germany again on a dark path towards fascism

Τυχαία γεγονότα στην τριτοκοσμική μπανανία των Βαλκανίων

failed evolution   1) Συμβαίνει το μεγαλύτερο σιδηροδρομικό δυστύχημα στην ιστορία της χώρας. 2) Γίνεται αστραπιαία επιχείρηση μοντάζ των συνομιλιών του σταθμάρχη από μηχανισμό του καθεστώτος, πριν ακόμα φτάσει στα χέρια των αρχών, προκειμένου να αποδοθεί η τραγωδία αποκλειστικά σε ανθρώπινο λάθος και να βγουν από το κάδρο οι πολιτικές ευθύνες ανώτατων κυβερνητικών αξιωματούχων. 3) Αναπαράγεται το παραποιημένο υλικό αστραπιαία από ναυαρχίδα της καθεστωτικής προπαγάνδας. 4) Τοποθετείται επικεφαλής στην επιτροπή-παρωδία πρωτοπαλίκαρο του καθεστώτος Μητσοτάκη που εργάζονταν παλιά στην ίδια αυτή ναυαρχίδα. 5) Η επιτροπή κλείνει άρον-άρον την υπόθεση αποκλείοντας ουσιώδεις μάρτυρες που είχαν προειδοποιήσει επανειλημμένα τον αρμόδιο υπουργό για τον κίνδυνο μεγάλου δυστυχήματος. Σταματάει έτσι και η όποια σε βάθος διερεύνηση για την απόπειρα συγκάλυψης του εγκλήματος.   

LEAKED: How Israel Calculates the Non-Value of Civilian Life in Gaza

Glenn Greenwald