Roundup We all made it through another week – and here's a treat: another Register security roundup.
OmniBallot takes heat in uni security assessment
The eggheads at MIT produced a report [PDF] detailing their probing of OmniBallot, a web-based ballot-issuing and voting system made by Democracy Live for US state elections – and warned the software doesn't do enough to ensure the integrity of its technology. There are no checks to make sure ballot or vote-altering malware is not present on the voter's computer or handheld device, or the servers running the OmniBallot backend, for instance.
"We find that OmniBallot uses a simplistic approach to internet voting that is vulnerable to vote manipulation by malware on the voter’s device and by insiders or other attackers who can compro ..
Support the originator by clicking the read the rest link below.
