By John Gideon on 7/31/2007, 11:42am PT  

Guest Blogged by John Gideon, VotersUnite.Org

To date the "Red Team" reports have been released; a preliminary report on audits has been released; and the accessibility report has been released. Our cup nearly runneth over.

But wait, there's more?

Yes, there are still 6 more reports that have not been released. There are three reports, one for each vendor, on the source code review. There are also three reports, one for each vendor, on the document review. All six of these reports are important to the total picture and all of them will be used in the final decision making process.

We encourage the Secretary of State to let the voters see those remaining reports. If the reports are 100 pages each, that's 600 pages of information that we need time to read and study.

Secretary Bowen, release the reports, please.

UPDATE 01 August: Today Princeton Prof. Ed Felten of Diebold Accuvote TS hack fame, asked on his blog, FreedomToTinker, "Where are the California E-Voting Reports". In his blog Prof. Felten says:

With the Secretary having until Friday to decide whether to decertify any e-voting systems for the February 2008 primary election, the obvious question arises: Why is the Secretary withholding the other reports?

Here’s the official explanation, from the Secretary’s site:

The document review teams and source code review teams submitted their reports on schedule. Their reports will be posted as soon as the Secretary of State ensures the reports do not inadvertently disclose security-sensitive information.

This explanation is hard to credit. The study teams were already tasked to separate their reports into a public body and a private appendix, with sensitive exploit-oriented details put in the private appendix that would go only to the Secretary and the affected vendor. Surely the study teams are much better qualified to determine the security implications of releasing a particular detail than the lawyers in the Secretary’s office are.

More likely, the Secretary is worried about the political implications of releasing the reports. Given this, it seems likely that the withheld reports are even more damning than the ones released so far.

If the red team reports, which reported multiple vulnerabilities of the most serious kind, are the good news, how bad must the bad news be?

We ask again; Secretary Bowen, release the reports, please.

UPDATE 02 AugustAnother set of reports, source code review, has been released today. Thank you Secretary Bowen.