Election commission orders top voting machine vendor to correct misleading claims

Kim Zetter

August 13, 2020 at 5:00 PM·8 min read

The federal Election Assistance Commission has rebuked the nation’s top voting-machine maker over marketing materials that the panel says deceptively implied the company’s voting machines are EAC-certified.

The commission admonished Election Systems & Software over promotional literature and statements on its website that appear to assert, falsely, that voting machines the company sells with embedded modems have been sanctioned by the EAC under its testing and certification program. The statements put ES&S in violation of the EAC’s testing and certification rules, the commission wrote in a previously unreported March 20 letter to the company that POLITICO obtained, and directed ES&S to revise the literature and notify customers that the systems are not certified.

POLITICO reported earlier this year that the EAC was looking into the matter but hadn’t yet determined whether ES&S had violated its rules.

Some state laws require voting machines used in their jurisdictions to be certified by the EAC. That means that if jurisdictions in those states are using the noncertified systems, it could potentially put election officials in violation of their state law.

“The action by the EAC is welcome, but it’s not enough, vendors need to be held accountable for their deceptions and it’s time for Congress to exercise oversight of this industry to protect our democracy,” said Susan Greenhalgh, senior adviser on election security for Free Speech for People, an election integrity group that brought the issue to the EAC’s attention.

The EAC did not respond to a request for comment.

What the dispute is about: The issue involves ES&S’ DS200 precinct-based optical-scan machines, which come in two versions — one of which has an optional modem for transmitting results after an election.

The EAC certified the DS200 version without modem capability in 2009, but it has never certified the modem capability that comes with the second version, although the remaining components in that system are certified. In 2011, ES&S submitted a DS200 system with modem and network capability to the EAC for testing and certification, but after the testing lab created a protocol for evaluating this capability, ES&S withdrew those parts of the system from the testing plan; the remainder of the system was tested and certified without them in 2013.

ES&S markets the DS200 as an EAC-certified system, and in literature for the system it offers the modem capability as an optional feature — without indicating that the EAC has not certified this feature. Any component that is not EAC-certified and is added to an EAC-certified system effectively voids the certification of that system.

Under the EAC’s testing and certification rules, manufacturers can label a system EAC-certified only if the whole system is certified. “The certification of individual components or modifications shall not be independently represented by a Mark of Certification,” the EAC’s certification manual says. The rules also require that a company’s user manuals “warn purchasers that any changes or modifications to the system not tested and certified by the EAC will void the EAC certification of the voting system.”

How this came to light: Lawyers for Free Speech for People and another election integrity group — the National Election Defense Coalition — sent a letter to the EAC in January pointing out misrepresentations in the ES&S literature, as POLITICO reported at the time. POLITICO subsequently reported that the commission had opened a probe into the complaints, and that ES&S had updated one of its advertising brochures to remove references to the modem.

In one example the groups cited, marketing literature for the DS200 with an optional add-on modem is stamped with an “EAC certified” logo. And a diagram the company gave Rhode Island election officials in 2015 shows a DS200 system with an embedded modem among components marked as EAC-certified.

A different ES&S document submitted to Rhode Island states that the “modem transmission of results” is not EAC-certified, nor is the back-end server that receives the transmitted results. But the diagram suggests that the DS200 with modem is certified, while the cellular network the votes traverse after they leave the machine and the server receiving them are not certified.

What the commission found: The EAC agreed with the two election integrity groups and sent ES&S a letter in January indicating it was violating the EAC testing and certification program rules.

ES&S responded that it never meant to imply that the modem capability was certified, and said that regardless of what appears in the literature it always makes clear to states that the modem configuration is not EAC-approved. Nonetheless, the company agreed to remove all references to optional modems from its marketing documents.

But in a followup letter from the EAC on March 20, the commission indicated this was an insufficient remedy. It instructed the company to recall all misleading marketing materials already in circulation and to directly notify current and potential customers who received the “misrepresented information” that it had been inaccurate. It gave the company 15 days to do this.

“Failure to comply will result in the EAC publicly announcing that the voting system no longer complies with its original certification, and could include initiating decertification actions and/or suspension of manufacturer registration,” wrote Jerome Lovato, director of the EAC’s testing and certification program.

ES&S agreed to send a letter only to customers who use the DS200 with modems, informing them that the version is not EAC-certified, and to post a note to its customer portal advising the same. It indicated that the coronavirus could delay these efforts, though it would make “commercially reasonable efforts” to do this by April 15.

ES&S told POLITICO it sent a letter via email the first week of April to “all applicable modem customers (89 in total),” and posted a notice on its customer portal.

When asked, ES&S did not identify those 89 customers, saying it could not release specific information about customers without their permission. A spokesperson for the Wisconsin Election Commission, whose state is known to use DS200 machines with modems, told POLITICO it did receive the letter from ES&S in early April. Other jurisdictions known to have purchased DS200 systems with modems and contacted by POLITICO did not respond to inquiries.

Key background: This isn’t the first time ES&S has faced accusations of making fabricated or misleading assertions about its voting machines. In 2018, the company denied to The New York Times that it had ever installed remote-access software on any of its election management systems. But after being pressed by Sen. Ron Wyden (D-Ore.) about the matter, the company admitted it had installed the software on systems in at least 300 election jurisdictions. (The company has refused to identify which jurisdictions had the software.)

Election-management systems are critical components that are used to tally official results and in some cases program voting machines before each election. Remote-access software, which ES&S was using to access those systems over the internet or via modem for troubleshooting, exposed those systems to potential hacking by intruders.

Similarly, the company has long insisted, along with its election customers, that none of its voting systems ever connect to the internet. But researchers found what they believed to be more than three dozen ES&S systems connected to the internet, in a story published last year. Company diagrams showing the configuration of modem-enabled DS200 systems clearly depict the modems transmitting election results over the internet to ES&S election-management systems that also are connected to the internet.

Although ES&S has said the modems are secured and would prevent anyone from using them to hack the voting machines, the modem configurations have never undergone a security assessment by an EAC-approved lab to measure those claims.

ES&S told POLITICO it did obtain a security assessment this year from a Canadian-based security firm called Bulletproof Solutions. An ES&S spokesperson said the firm performed a penetration test of the DS200’s communication methods for transmitting election results — a penetration test involves attempts to hack or penetrate a system — and said that Bulletproof was “unable to penetrate any of the systems.”

An assessment done by a third-party company, however, is not transparent in the way that assessments done by EAC labs are. The labs follow a published protocol, and their reports are submitted to the EAC. ES&S declined to provide POLITICO with a copy of Bulletproof’s security report, saying it’s still in draft form and not ready for public release. The company spokesperson said they would have to look into why the company previously withdrew the modem transmission configuration from EAC testing and certification done on the DS200 in 2013.

What’s next: ES&S will play a major role in the November election. The company has previously said that more than 33,000 DS200 optical scan machines with modems are in use in 11 states and the District of Columbia but has never identified which jurisdictions this includes beyond D.C.

Yahoo Sports
Juan Soto’s unapologetic intensity and showmanship are captivating the Bronx and rubbing off on teammates: ‘Literally every pitch is theater’
The 2024 Yankees have rediscovered their bravado and hold the second-best record in the AL, thanks in large part to the superstar outfielder.
Yahoo Finance
The FDIC change that leaves wealthy bank depositors with less protection
Affluent Americans may want to double-check how much of their bank deposits are protected by government-backed insurance. The rules governing trust accounts just changed.
Yahoo Sports
Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race
The value of the Dolphins and Formula One racing is enormous.
Yahoo Sports
The best RBs for 2024 fantasy football, according to our experts
The Yahoo Fantasy football analysts reveal their first running back rankings for the 2024 NFL season.
Yahoo Sports
Timberwolves coach Chris Finch calls Jamal Murray's heat-pack toss on court 'inexcusable and dangerous'
Murray made a bad night on the court worse during a moment of frustration on the bench.
Yahoo Sports
Six quarterback situations to worry about & three that are on the precipice | Zero Blitz
Jason Fitz, Charles Robinson and Frank Schwab talk about which quarterback rooms concern them and which they find interesting heading into the 2024 NFL season.
Yahoo Sports
Former NBA guard Darius Morris dies at 33
Former NBA guard Darius Morris has died at the age of 33. He played for five teams during his four NBA seasons. Morris played college basketball at Michigan.
Yahoo Sports
Golf’s moment of truth is here, and the sport is badly flailing
Nonexistent negotiations and missed opportunities for reconciliation between the PGA Tour and LIV Golf have the sport stuck in place.
Yahoo Sports
2024 Fantasy Football Mock Draft, 1.0
The Yahoo Fantasy football crew got together for their very first mock draft of 2024. Andy Behrens recaps the results.
Autoblog
Which pickup trucks get the best fuel economy? Here are the tops for gas mileage (or diesel)
Trucks aren't known for being fuel efficient, though times are changing. These are the trucks with the best gas mileage in various segments.
Yahoo Finance
Former House Speaker Paul Ryan says he’s not voting for Trump : 'Character is too important'
Ryan says he would be writing in a Republican candidate instead of voting for Donald Trump.
Yahoo Sports
Yahoo Fantasy staff's Mock Draft 1.0: Shocking picks are plentiful
Teams have made their big splashes in free agency and made their draft picks, it's time for you to do the same. It's fantasy football mock draft time. Some call this time of year best ball season, others know it's an opportunity to get a leg up on your competition for when you have to draft in August. The staff at Yahoo Fantasy did their first mock draft of the 2024 season to help you with the latter. Matt Harmon and Andy Behrens are here to break it all down by each round and crush some staff members in the process.
Yahoo Sports
Ranking the best situations for the rookie quarterbacks: Start with Michael Penix in Atlanta at No. 1
It’s key to note that we’re not saying the “best team” or “best roster.” Instead, we’re talking about the best confluence of factors that can outline a path for survival and then success.
Yahoo Sports
Post-draft NFL fantasy power rankings: Offenses we love, like and want to stay away from
With free agency and the draft behind us, what 32 teams look like today will likely be what they look like Week 1 and beyond for the 2024 season. Matt Harmon and Scott Pianowski reveal the post-draft fantasy power rankings. The duo break down the rankings in six tiers: Elite offensive ecosystems, teams on the cusp of being complete mixed bag ecosystems, offensive ecosystems with something to prove, offenses that could go either way, and offenses that are best to stay away from in fantasy.
Yahoo Sports
Cardinals lose C Willson Contreras after left arm fractured by J.D. Martinez's swing
The Cardinals' nightmare season continues.
Yahoo Sports
Blockbuster May trade by Padres, MVP Ohtani has arrived, Willie Mays’ 93rd birthday & weekend recap
Jake Mintz & Jordan Shusterman discuss the Padres-Marlins trade that sent Luis Arraez to San Diego, as well as recap all the action from this weekend in baseball and send birthday wishes to hall-of-famer Willie Mays.
Yahoo Finance
These 3 stocks are poised to benefit from the massive energy transition
The energy transition will benefit companies providing electrical needs for surging demand. Analysts point to these three stocks as a Buy.
Yahoo Sports
What's wrong with the Denver Nuggets? | Devine Intervention
Dan Devine and Adam Mares discuss the Denver Nuggets and Minnesota Timberwolves after Monday night’s game 2.
Yahoo Finance
Recession-proof stocks are leading the market's latest leg higher
The Utilities and Consumer Staples sectors have popped since mid-April as investors search for value.
Yahoo Sports
Wide receiver rankings for 2024 fantasy football
The Yahoo Fantasy football analysts reveal their first wide receiver rankings for the 2024 NFL season.

News

Life

Entertainment

Finance

Sports

New on Yahoo

Election commission orders top voting machine vendor to correct misleading claims

Recommended Stories

Juan Soto’s unapologetic intensity and showmanship are captivating the Bronx and rubbing off on teammates: ‘Literally every pitch is theater’

The FDIC change that leaves wealthy bank depositors with less protection

Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race

The best RBs for 2024 fantasy football, according to our experts

Timberwolves coach Chris Finch calls Jamal Murray's heat-pack toss on court 'inexcusable and dangerous'

Six quarterback situations to worry about & three that are on the precipice | Zero Blitz

Former NBA guard Darius Morris dies at 33

Golf’s moment of truth is here, and the sport is badly flailing

2024 Fantasy Football Mock Draft, 1.0

Which pickup trucks get the best fuel economy? Here are the tops for gas mileage (or diesel)

Former House Speaker Paul Ryan says he’s not voting for Trump : 'Character is too important'

Yahoo Fantasy staff's Mock Draft 1.0: Shocking picks are plentiful

Ranking the best situations for the rookie quarterbacks: Start with Michael Penix in Atlanta at No. 1

Post-draft NFL fantasy power rankings: Offenses we love, like and want to stay away from

Cardinals lose C Willson Contreras after left arm fractured by J.D. Martinez's swing

Blockbuster May trade by Padres, MVP Ohtani has arrived, Willie Mays’ 93rd birthday & weekend recap

These 3 stocks are poised to benefit from the massive energy transition

What's wrong with the Denver Nuggets? | Devine Intervention

Recession-proof stocks are leading the market's latest leg higher

Wide receiver rankings for 2024 fantasy football