Wednesday, March 25, 2009

Most of electronic Voting Isn't Secure

CIA discovers hot water :D !

Actually, it's true. I'm working in security of electronic voting system from some time and of course, I agree with CIA. Actually I don't believe that Electronic Voting System will be trustable as paper voting is, in fact you cannot demonstrate that the software you're written is free from bugs and you cannot proof that your device does what ever you want. People doesn't feel the "record" on the table "votes", people feels the paper dropped in the box ! Actually I'm skeptical about evote systems, of course I like them properties, like for example: usability, counting speed, accessibility and so forth .. ...

Tuesday, March 17, 2009

Keep Update Google Calendar Through iCal !

Hi folks,
as I told you, during these months I got no time, due to writing papers, reviewing and research, so a little but very useful post on how to sync your google calendar with your iCal. Maybe lots of you already known that, but for me it's a great utility !

Everything has due to Google Collaboration program,  download it here. Run it. It will ask your google credentials just to take and to put your events. Select the calendars you'd like to import in your iCal and click to Add To iCal. 

Your Google Calendar will now appear in iCal's list of calendars, and changes you make to your Google Calendar calendars in iCal will show up in Google Calendar.

Event information will automatically refresh every 5 minutes. You can change this interval by opening the iCal > Preferences > Accounts menu and selecting a new refresh interval under the 'Refresh calendars' drop-down. Keep in mind you can also force a refresh by selecting a calendar and pressing the Apple and R keys at the same time.

Remember, you can only add calendars that you're allowed to make changes to in Google Calendar.
Calendars that are checked but disabled have already been added to iCal - you can remove them from within iCal.



That's very cool !

Monday, March 9, 2009

Report: Diebold Voting System Has 'Delete' Button for Erasing Audit Logs

Again, mistakes by Diebold. Here the original link




An investigation by California's secretary of state into why a product made by e-voting system vendor Premier Election Solutions (formerly Diebold Election Systems) lost about 200 ballots in Humboldt County during the U.S. presidential election revealed the presence of a "clear" button in some versions of the machine's Global Election Management System (GEMS) software that allows someone to permanently erase audit logs from the system. The secretary of state's report says the logs "contain--or should contain--records that would be essential to reconstruct operator actions during the vote tallying process." The proximity of the clear button to the "print" and "save as" buttons raises the risk of the logs being erased accidentally, and the system provides no warning to operators of the danger of clicking on the button. Premier/Diebold retained the button despite an apparent warning from a system developer, and though the button was removed from subsequent iterations of the software, the version with the button is still used in three California counties and other U.S. states. The report says that under the voting system standards "each of the errors and deficiencies in the GEMS version 1.18.19 software...standing alone would warrant a finding by an Independent Testing Authority (ITA) of 'Total Failure' (indicated by a score of 1.0) had the flaw been detected." The California report's findings bring up issues about the auditing logs on voting systems made by other vendors, and about what course of action states that use the Premier system will follow now that they are aware that their voting software fails to produce a sufficient audit trail to guarantee the integrity of an election.

Tuesday, March 3, 2009

The return of L0phtCrack

Hi folks,
sorry for slow posting, but during this month (and probably the next one) I've been very busy on papers' revisioning.
Today I'd like to spread this amazing news regarding L0phtCrack. L0phtCrack, one of the oldest windows password cracker is back !



I believe that the most old "security man" want remember this amazing tool which helped us during lots of sleepless nights ... []
Looking forward to see the new version.