How could one go about creating a trustworthy platform for electronic voting based on commodity hardware?
Closed-source solutions create security through obscurity. An open source application (application chain) would be better, allowing security experts to critique and improve the application.
Could one create a LiveCD or installable distro for voting purposes?
Some ideas (all of these can be expanded to several man years):
- Allow the distro to verify its hardware/Bios, reinstall the Bios
- Allow the distro to check another CD.
- Run the computer with the voting software.
- Send the data to be aggregated.
- Publish the result.