On Thu, Jul 16, 2009 at 8:57 PM, Unicka Sta. Ana <[email protected]>
wrote:
What does source code for poll machines as what JJ said mean? Does it also
include the source code for the CCS as well?
Comelec seeks ideas for source code review
By Anna Valmero
INQUIRER.net
First Posted 08:40:00 07/14/2009
Filed Under: Elections, Eleksyon 2010, Computing & Information Technology
MANILA, Philippines—The Commission on Elections (Comelec) has started to
solicit suggestions on how to form the guidelines for the conduct of the source
code review for the 2010 elections automation project, a poll official said.
“Preparations are underway for the review of the source code that will be
installed in the poll machines. The Technical Evaluation Committee (TEC) has
started meeting today (Monday) to draft guidelines for the conduct of the code
review,” Comelec spokesperson James Jimenez told INQUIRER.net.
“The code review is a transparency measure to make sure public is appraised
of the operating instructions to be installed in the poll machines. We believe
there is no monopoly on knowledge or insight so we want to solicit input from
the public especially our local IT experts,” said Jimenez.
Specifically, the guidelines will tackle mechanics of code review, answer
questions on how to resolve adverse observations and provide means on how to
input beneficial suggestions, said Jimenez.
The source code or human readable programmed instructions will be installed
in poll machines to carry out specific commands such as recognition of security
keys needed to operate the machines, counting votes from scanned paper ballots,
consolidation of data and electronic transmission of results from a polling
precinct to Comelec-designated servers.
After the customization of poll automation software, the poll automation
law mandates the provider to promptly have its code open for review by all
political parties, excluding bidder to polish the program before final
installation on the poll machines.
“For its part, TEC has yet to decide on the guidelines, the number of
copies to be disseminated and to whom, and implementation of changes on the
source code. The body will request additional information on best practices
with regards to source code review from international agencies involved with
code review,” added Jimenez.
Asked if the code to be reviewed can be posted on the Internet or sent via
e-mail to individual reviewers, Jimenez said there are “no defined guidelines
on this yet.”
Jimenez said TEC will “likely” release preliminary guidelines on the
conduct of source code review by the end of the month. No date has been
scheduled for the code review, which could take between two to three months.
“We aim to have the code review finished before end of this year and have
the final code before delivery of poll machines finishes,” he said.
Meanwhile, Smartmatic-Total Information Management Corp., the joint venture
formed by the wining bidder consortium, has started the customization of its
automated election system software and acquisition of parts needed to fabricate
the machines and other related hardware, said Cesar Flores, Smartmatic
international sales director.
Jimenez clarified that although the source code review was not reflected in
the implementation calendar for the automation project, it follows a “parallel
track” and is “independent from other preparations” such as the fabrication of
poll machines and related hardware, contingency planning and voter's education.
TEC, a body created by Republic Act 9369 or the poll automation law, shall
certify through an established international certification entity chosen by
Comelec that the poll automation system is operating properly and securely
according to provisions of the law, not later than three months before Election
Day.
All Filipinos, especially local IT experts, are encouraged to email their
suggestions to Comelec at [email protected]
MY REACTIONS:
"After the customization of poll automation software" -- means the software
already exists, so why wait to finish customizing it (setting parameters)
before getting the thing reviewed? The source code already exists, and will
not be affected by customization, so why not review the code now?
If they are going to add new code, then that's a different story altogether.
I'd like the following added to the code:
1) During initialization (hour zero on election day), i'd like both PCOS and
CCS computers to print out filenames of all executables in /bin, /sbin,
/usr/bin, /usr/sbin, /usr/local/bin, /usr/local/sbin, together with their
SHA-256 checksums. Also all configuration files in /etc and their SHA-256
checksums. These are needed to compare with the originals that have been
approved by source code review. In particular, /etc/securetty must specify that
the root user must never be allowed to log in from remote. To make checking
simple for the BEI on election day, this printout must be in lexicographic
order of filenames, and must be digitally clear-signed by Smartmatic so that
the BEI need only compare the signature part (two lines of text)
2) The option to SSL-sign or GPG-sign should be put in the code, so that the
teachers have a choice of getting their public keys signed by a CA or signed by
a peer.
The signing part should be during the end of the voting period, not at the
beginning when there is nothing to sign yet (this is the way the current
version of the program looks to me).
3) Support for Java smartcards (with CPU) in the PCOS and CCS hardware
(smartcard slot) and new program for signing, so that using Java smartcards for
signing, the teachers' secret keys never leave the card, and is never copied
over to the computer.
4) Others?
//PManalastas
_________________________________________________
Philippine Linux Users' Group (PLUG) Mailing List
http://lists.linux.org.ph/mailman/listinfo/plug
Searchable Archives: http://archives.free.net.ph
