-
> Other tools (supabase, ...) may have similar [compromising] powers in this environment
> [...]
> The goal is not to cast aspersions on the vendor, but to point out that the system is fundamentally…
-
-
# HACK SIV — End of Day 3 Report (8/8)
### 1. DEF CON officially opened. What a hurricane of energy.
Here are some *Frequently Asked Questions* from discussions in the DEF CON halls:
#### a) …
-
Can an election administrator and the public be assured that a deployed SIV instance has not been tampered with post-installation, and matches the publicly viewable repository?
I'm under the assump…
-
**Describe the bug**
Hi! I am writing my own version of the project [github.com/kognise/arpchat](https://github.com/kognise/arpchat) for educational purposes. I encountered an issue where strange sym…
-
> Remediation & Dispute Resolution Need Work. There is little documentation as to what is supposed to happen if/when a voter notices something wrong.
>
> Let’s say I’m a voter, and I notice my ball…
-
I'm concerned that voter extortion is made easier by SIV.
Sample size one, but where I've voted the use of cameras is not allowed in the voting room.
However I understand SIV enables the voter…
-
> Google’s tag manager is loaded on every page, and can entirely control the election
>
> This JS is just loaded on every page and can therefore entirely control the DOM.
>
> [...]
>
> The go…
-
This collection name was originally picked early on.
But now that we also have `votes-pending`, and `votes-invalidated`, it would be more clear if this collection was called `voters-approved` or s…
-
Don't have their email yet at time-of-submission, so can't send it in `/submit-vote`.
Good solution would be to add it to the verification-email that gets sent out after they fill out the next aut…