I have to confess to being appalled by the number of times recently that I have heard people talk about potential benefits of "security by obscurity" for voting systems. It’s one of those bad old ideas that just won’t die: if you hide the inner workings (source code) of a complex device (a voting system), that makes it harder for an adversary to break (hack, steal elections).

Read Full Post »

Well, the issue of "source code disclosure" just keeps coming back at us. Here is the latest variant that needs some de-confusion: how are open source practices different from proprietary-systems vendors who voluntarily choose to disclose the source code of their software?

Read Full Post »