Re: Is source code necessary to validate correctness?
Having an open codebase does squat against a hardware subversion (and El Reg has had articles about that such as subverted hard drive firmware), and given the importance of elections, you have to assume someone will have the resources to secretly subvert any voting machine maker to hide a secret code in a normal-looking chip that only gets activated on a secret code set at the hardware level, otherwise totally invisible. How do you battle something that resourceful?