Professional Documents
Culture Documents
Dr. Buell To Mecklenburg BoE Re: Audit Files
Dr. Buell To Mecklenburg BoE Re: Audit Files
BUELL
PROFESSOR
NCR CHAIR IN COMPUTER SCIENCE AND ENGINEERING
DEPARTMENT OF COMPUTER SCIENCE
AND ENGINEERING
not know the exact workings of the software inside the iVotronics, I do not believe this is
a true statement. The EL155 is printed from a Microsoft computer at county
headquarters, using the Unity package, and taking data from the cast vote record loaded
into the county-wide database, almost certainly from the flash memory chips pulled from
the machines after closing. The VVPAT is printed from a different computer (the
iVotronic itself), running a different operating system, and thus using a different software
print routine. The data used for the VVPAT comes from the internal memory chips, I
believe, and is not randomized in its ordering as is the 155. It is thus almost certainly
false to argue that the VVPAT and the EL155 are the same record.
I am also given to believe that Mecklenberg is arguing with the unfortunate myth that just
because the iVotronics are not connected to the Internet, they cannot be hacked. This is,
as anyone versed in computer security is aware, simply not true. It has been alleged that a
joint US-Israel computer virus (Stuxnet) was able to destroy a large number of
centrifuges that were part of the Iranian nuclear program, and thus that Stuxnet seriously
crippled the Iranian program to develop nuclear weapons. The centrifuges, however, were
also never connected to the Internet; they were apparently destroyed because Stuxnet was
loaded on flash memory drives that were scattered around the facilities; by plugging in
the drives, the unconnected computers were infected, and thus the centrifuges were
infected and destroyed.
It was demonstrated in the work of the EVEREST report for the Ohio Secretary of State
(report released December 2007) that a virus could be loaded into an iVotronic from a
hacked PEB, and that the virus could affect vote totals not just in that machine but in the
rest of the machines in the precinct and eventually all the way to county headquarters. In
order to assert that the machines have never been connected to the Internet, it must be
verified that neither the iVotronics, nor the flash memory cards, nor the PEBs, have ever
been plugged into a computer that has ever been connected to the Internet. This also
means that the computer at county headquarters running Unity must never have been
connected to the Internet, not even for an operating system update.
I am happy to provide further information if your board deems it helpful.
Sincerely,
Duncan A. Buell