[hvdhh7]

This isn't a remote vulnerability, btw. The attach involves picking the lock a and inserting a device to a parallel port.

[ganoushoreilly]

The surprising part of most of these vulnerabilities is they are hardware attacks. I had a talk with someone the other day that said she heard people were hacking votes from iPhones. The over simplification of the topic is doing just as much harm as good.

I don't know any security professional that would tell you physical access isn't equal to the ability to hack a device.

The reality is subversion of people managing processes is of a higher probability that attacks of the machines themselves. It's also not unique to electronic voting, people are always the weak link in security and will always be the weak link.

[hvdhh7]

The first new attack described in last year's report was that you could DoS a machine by removing its CPU.

Which, sure, is something to think about. But it's not what I think people are imagining when you say "voting machine hacking."

[ganoushoreilly]

Right!! It's like saying you could DoS a car by removing it's spark plugs.