How To Make Internet Voting Secure

Network Computing Dark Reading

Advertise

About Us

Newest First | Oldest First | Threaded View

[close this box]

ODA155,
User Rank: Ninja
7/14/2015 | 11:25:06 AM

Re: Excited, but problematic

Whoopty,

While you might be correct about getting those people (who absolutely live in Cyberspace) to do that very arduous task of "voting", which is a plus, it absolutely frightens the hell out of me that we as a society want to move in this direction. Why you ask... well I can go on for a while with multiple reasons but since this is a blog on information security I say this. We haven't proven that we can secure the simplest of data stored, connected to or traversing the Internet so why would we want to trust something as precious as our rights to determine our own future to these very technologies that have proven unequal to the task or more often, why should we trust people to maintain, manage and care for those systems in a responsible way? If the plan is to get more people to vote, then make the current system we have easier, but not by saying "since you don't want to leave the house you can vote on-line".

Personally, I think on-line voting is a major hack or even an inside job of biblical proportions just waiting to happen. But that's just me, I tend not to trust.

Reply | Post Message | Messages List | Start a Board

Whoopty,
User Rank: Ninja
7/13/2015 | 7:54:44 AM

Excited, but problematic

I'm really excited by the prospect of internet based voting, as I think it will not only make a lot more people vote, but specifically young people who have grown up with an interenet based culture - the ease of it will bring about a lot more involvement and interest in voting in general.

However we're unlikely to see that here in the UK. The prevailing right-wing government knows that its supporters are mainly older and unlikely to use a digital voting system, so I don't expect to see it come in to play until well into the 2020s, which is embarassingly slow.

Reply | Post Message | Messages List | Start a Board

Editors' Choice

I Smell a RAT! New Cybersecurity Threats for the Crypto Industry

David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP, 7/9/2021

Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours

Robert Lemos, Contributing Writer, 7/7/2021

It's in the Game (but It Shouldn't Be)

Tal Memran, Cybersecurity Expert, CYE, 7/9/2021

Live Events

Webinars

Black Hat Europe - December 5-8 - Learn More

Black Hat Middle East & Africa - November 15-17 - Learn More

SecTor - Canada's IT Security Conference Oct 1-6 - Learn More

More Informa Tech Live Events

White Papers

6 Elements of a Solid IoT Security Strategy

Incorporating a Prevention Mindset into Threat Detection and Response

AppSec Considerations For Modern Application Development

The Many Risks of Modern Application Development

Endpoint Detection Net Suite Use Cases

More White Papers

Cartoon

Latest Comment: I've heard of people walking right out the front door with entire servers...

Cartoon Archive

Current Issue

Black Hat USA 2022 Attendee Report

Black Hat attendees are not sleeping well. Between concerns about attacks against cloud services, ransomware, and the growing risks to the global supply chain, these security pros have a lot to be worried about. Read our 2022 report to hear what they're concerned about now.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

Incident Readiness and Building Response Playbook

In this special report, learn the Xs and Os of any good security incident readiness and response playbook.

Download Now!

Battle for the Endpoint

0 comments

How Enterprises are Developing Secure Applications

0 comments

Assessing Cybersecurity Risk in Today's Enterprises

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2022-2867
PUBLISHED: 2022-08-17

libtiff's tiffcrop utility has a uint32_t underflow that can lead to out of bounds read and write. An attacker who supplies a crafted file to tiffcrop (likely via tricking a user to run tiffcrop on it with certain parameters) could cause a crash or in some cases, further exploitation.

CVE-2022-2868
PUBLISHED: 2022-08-17

libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds read and ultimately cause a crash if an attacker is able to supply a crafted file to tiffcrop.

CVE-2022-2869
PUBLISHED: 2022-08-17

libtiff's tiffcrop tool has a uint32_t underflow which leads to out of bounds read and write in the extractContigSamples8bits routine. An attacker who supplies a crafted file to tiffcrop could trigger this flaw, most likely by tricking a user into opening the crafted file with tiffcrop. Triggering t...

CVE-2022-28751
PUBLISHED: 2022-08-17

The Zoom Client for Meetings for MacOS (Standard and for IT Admin) before version 5.11.3 contains a vulnerability in the package signature validation during the update process. A local low-privileged user could exploit this vulnerability to escalate their privileges to root.

CVE-2022-28752
PUBLISHED: 2022-08-17

Zoom Rooms for Conference Rooms for Windows versions before 5.11.0 are susceptible to a Local Privilege Escalation vulnerability. A local low-privileged malicious user could exploit this vulnerability to escalate their privileges to the SYSTEM user.

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]