This book examines the security of electronic voting systems with reference to a specific incident. Although it has interesting things to say about the interface between science, politics and the media, the definitive book on e-voting has yet to be written.

Paper is retail: it might be easy to interfere with a single ballot or polling place, but it's difficult to commit fraud on any large scale when election counts rely on many polling places and many ballot boxes. DRE is wholesale: it's comparatively difficult to rewrite voting machine software — but if you can, that software can end up being deployed on every machine in the country.

Rubin's public involvement in e-voting began in July 2003, when a phone call from fellow computer scientist and e-voting expert David Dill alerted him to the fact that a copy of the source code for e-voting machines from the leading manufacturer, Diebold, had been posted to the internet. Assembling a couple of graduate students to work on the project with him, Rubin downloaded the code, studied it, and wrote a report detailing the many security flaws they found. Posting that report set off a lengthy public controversy that persists to this day.

Rubin spends a fair chunk of the book outlining the details of the media storm in which he found himself and his many interviews and public appearances. Unless you've just become unexpectedly famous and require pointers on how to handle the experience, this is disappointing: Rubin's personal story is less interesting than more technical material would be. In particular, more detail on the early criticisms Rubin's work received from his scientific peers would have been valuable.

In the end, what ought to have been a question of science and truth rapidly degenerated into a maelstrom of spin and hostility. Why, Rubin asks at some point, should some election officials react with as much hostility as the manufacturers when computer security experts point out flaws in election system design? You'd think that officials would be eager to ensure as fair and accountable elections as possible. Brave New Ballot does a pretty good job of showing how computer security design can become mired in politics and media.

Because UK elections tend to be so much simpler, it seems unlikely that this country will jettison paper ballots any time soon. But there is a big push to add internet, postal and mobile phone voting. Rubin's book cautions that we should be cautious about the security risks involved, and makes it clear that we should be demanding transparent paper audit trails. The definitive book on electronic voting, however, remains to be written.

Copyright © 1995-2009 CBS Interactive Limited. All rights reserved
ZDNET is a registered service mark of CBS Interactive Limited. ZDNET Logo is a service mark of CBS Interactive Limited.