, 7 tweets, 2 min read Read on Twitter
20 Minuten - «Kein Land kann sicheres E-Voting garantieren» - News 20min.ch/schweiz/news/s… via @20min
Some of this interview got a little lost in translation, but the gist remains the same. I can't see a path towards secure evoting that doesn't feature a full detailed investigation into how the Swiss Post system came to feature so many critical cryptographic flaws.
These issues shouldn't just be patched up, we need to understand how they came to exist in the first place, why internal reviews at Scytl, and external audits by Swiss Post, KPMG et al didn't uncover them.
(Or as in the case of the first critical vulnerability, why it was apparently discovered but never fixed - did we ever get a straight story from Scytl/Swiss Post on that one?)
When designing secure systems the process is as important as, if not more important than, the product. It's not enough to demonstrate a secure system (they didn't), you have to be able to demonstrate how your process catches errors before they become issues.
And, no, relying on an international team of uncompensated researchers to tear your code apart on twitter is not a "process"
btw, I was absolutely serious about this bet

Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Sarah Jamie Lewis
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!