245
Dominion is a BASIC INFOSEC VIOLATION: If your system is black boxes, and one in thousands comes back catastrophically in error, the ONLY SAFE ASSUMPTION is that they are ALL CATASTROPHICALLY IN ERROR.
posted ago by Monty_Cello +245 / -0

First of all, election security is dependent on 100% transparency from top-to-bottom, so that chain of custody and chain of trust can be guaranteed. Dominion's machines are closed-source and proprietary. That transparency axiom has been violated.

Now we're dealing with a situation where thousands of precincts were tabulated with closed-source, proprietary black boxes. The only limp-wristed assertion being made is that they all are equivalent in hardware and software versioning.

One black box in thousands comes back from audit catastrophically in error. It is supposed to share hardware and software versions with every other black box. I will state this plainly: THE ONLY SAFE ASSUMPTION IS THAT THEY ARE ALL CATASTROPHICALLY IN ERROR.

Anyone claiming otherwise has never worked in a domain where information security is important. In my field of computer science, processing of information is representable and provable via math; concepts such as blockchain and election security actually fall under the mathematical umbrella of the field. Anyone claiming black boxes don't violate chain of custody and trust, or that one black box being catastrophically in error says nothing about the rest, is a layperson speaking with the surety only a layperson can have.

First of all, election security is dependent on 100% transparency from top-to-bottom, so that chain of custody and chain of trust can be guaranteed. Dominion's machines are closed-source and proprietary. That transparency axiom has been violated. Now we're dealing with a situation where thousands of precincts were tabulated with closed-source, proprietary black boxes. The only limp-wristed assertion being made is that they all are equivalent in hardware and software versioning. One black box in thousands comes back from audit catastrophically in error. It is supposed to share hardware and software versions with every other black box. I will state this plainly: THE ONLY SAFE ASSUMPTION IS THAT THEY ARE ALL CATASTROPHICALLY IN ERROR. Anyone claiming otherwise has never worked in a domain where information security is important. In my field of computer science, processing of information is representable and provable via math; concepts such as blockchain and election security actually fall under the mathematical umbrella of the field. Anyone claiming black boxes don't violate chain of custody and trust, or that one black box being catastrophically in error says nothing about the rest, is a layperson speaking with the surety only a layperson can have.
4 comments
4 comments share save hide report block hide child comments
Comments (4)
sorted by:
4
jealousminarchist 4 points ago +4 / -0

Dude, they had a communal super user account with root access.

We're not talking infosec mistake here. We're talking so dumb it's hard to believe.

permalink save report block reply
4
deleted 4 points ago +4 / -0
3
Monty_Cello [S] 3 points ago +3 / -0

I'm not sure how I missed this. But...wow. There are no words.

permalink parent save report block reply
4
ConradSum3r 4 points ago +5 / -1

Posts like this make this site a fantastic resource.

permalink save report block reply