ASOG Dominion Report, Review Part 2

Here, in Part 2, I’m picking up where I left off in the first posting:

https://chiefio.wordpress.com/2020/12/17/asog-dominion-report-a-review/

This is where the Tech Talk gets thicker as it is “process” stuff. It starts off with the “chain of custody” head end. Where you went, what you got.

C. PROCESS

We visited Antrim County twice: November 27, 2020 and December 6, 2020. On November 27, 2020, we visited Central Lake Township, Star Township, and Mancelona Township. We examined the Dominion Voting Systems tabulators and tabulator roles.

On December 6, 2020, we visited the Antrim County Clerk’s office. We inspected and performed forensic duplication of the following:

1. Antrim County Election Management Server running Dominion Democracy Suite 5.5.3-002;
2. Compact Flash cards used by the local precincts in their Dominion ImageCast Precinct;
3. USB memory sticks used by the Dominion VAT (Voter Assist Terminals); and
4. USB memory sticks used for the Poll Book.

The phrase “forensic duplication” has specific term of art meaning. You use software and hardware to do the copy that prevents writing to the media in question. You do NOT boot up the device (as various malware can scrub it). You document everything and every step. In serious cases you have two parties involved, one doing the work and a second, usually management level, observing and documenting and doing QA / policing. Chain of custody is documented and assured. Often the copy is put under seal and / or in a locked container when not actively being forensically inspected. Think NCIS Crime Lab…

So went to the right Government offices and picked up an EMS Election Management Server (with specific software), a Compact Flash with the “Dominion ImageCast Precinct” software on it. Plural, so a couple of versions. Then USB memory sticks (the ubiquitous “thumb drive”) for the actual voter terminal (VAT) and poll station “Poll Book”.

Again we have critical bits on easily palmed / swapped plug in devices. THE best way to hijack machines, inject malware, swap OS, etc.

Dominion voting system is a Canadian owned company with global subsidiaries. It is owned by Staple Street Capital which is in turn owned by UBS Securities LLC, of which 3 out of their 7 board members are Chinese nationals. The Dominion software is licensed from Smartmatic which is a Venezuelan owned and controlled company. Dominion Server locations have been determined to be in Serbia, Canada, the US, Spain and Germany.

Defining where all the company in question does things. What legal domains to you necessarily cross, what’s the likely network traffic flow, what “reputationally bad” places might be involved.

First issue is we’re using a FOREIGN ACTOR (company) to tally our votes? OK, pull in “foreign influence” EO. Then we start getting Shell Companies. Staple Street Capital with 3 CCP (ANY Chinese national who gets great posts outside China must be a Chinese Communist Party member…) board members. (Who, we know, mysteriously resigned right after folks started asking questions about Dominion).

Again we have “Foreign Influence” issues. AND a major antagonist country. The software comes from unsavory sources too, Venezuela. Not our friend and not trustworthy At All. Locations in Serbia? WT? And our votes go off to Spain and / or Germany too? Not like the EU isn’t in love with Trump, now is it.

Remember that pretty much every nation, and certainly the E.U., has their own Secret Services / TLAs that have legal authority to screw with your stuff… Once again, Foreign Influence comes into play.

D. CENTRAL LAKE TOWNSHIP

1. On November 27, 2020, part of our forensics team visited the Central Lake Township in Michigan to inspect the Dominion ImageCast Precint for possible hardware issues on behalf of a local lawsuit filed by Michigan attorney Matthew DePerno on behalf of William Bailey. In our conversations with the clerk of Central Lake Township Ms. Judith L. Kosloski, she presented to us “two separate paper totals tape” from Tabulator ID 2.
• One dated “Poll Opened Nov. 03/2020 06:38:48” (Roll 1);
• Another dated “Poll Opened Nov. 06/2020 09:21:58” (Roll 2).

2. We were then told by Ms. Kosloski that on November 5, 2020, Ms. Kosloski was notified by Connie Wing of the County Clerk’s Office and asked to bring the tabulator and ballots to the County Clerk’s office for re-tabulation. They ran the ballots and printed “Roll 2”. She noticed a difference in the votes and brought it up to the clerk, but canvasing still occurred, and her objections were not addressed.

3. Our team analyzed both rolls and compared the results. Roll 1 had 1,494 total votes and Roll 2 had 1,491 votes (Roll 2 had 3 less ballots because 3 ballots were damaged in the process.)

4. “Statement of Votes Cast from Antrim” shows that only 1,491 votes were counted, and the 3 ballots that were damaged were not entered into final results.

In Central Lake Township, they inspected a “Precinct” machine (though they misspelled it, unless that’s a brand name ‘cutsy’ thing). They got 2 distinct poll tapes, both different. The difference is traced to damaged ballot handling.

5. Ms. Kosloski stated that she and her assistant manually refilled out the three ballots, curing them, and ran them through the ballot counting system – but the final numbers do not reflect the inclusion of those 3 damaged ballots.

6. This is the most preliminary report of serious election fraud indicators. In comparing the numbers on both rolls, we estimate 1,474 votes changed across the two rolls, between the first and the second time the exact same ballots were run through the County Clerk’s vote counting machine – which is almost the same number of voters that voted in total.

• 742 votes were added to School Board Member for Central Lake Schools (3)
• 657 votes were removed from School Board Member for Ellsworth Schools (2)

The clerk says they replaced the damaged ballots, so both tapes ought to match, but they don’t. That’s an indication of something being “not right” right there.

Then, in the School Board votes, some major WT? changes happened, flipping the votes to very different numbers. Something seriously wrong with that. Another “Never the same way twice” thing (or perhaps a pre-made bogus tape swapped in, that missed the “cured” ballots?)

• 7 votes were added to the total for State Proposal 20-1 (1) and out of those there were 611 votes moved between the Yes and No Categories.

7. There were incremental changes throughout the rolls with some significant adjustments between the 2 rolls that were reviewed. This demonstrates conclusively that votes can be and were changed during the second machine count after the software update. That should be impossible especially at such a high percentage to total votes cast.

Then an OMG on State Proposal 20-1 with LOTS of votes flipped between NO and YES. It would be interesting to know what the measure was, if this changed the winner, and who was advocating for or against it.

The the percent changes are so large clearly indicates either the software was grievously broken, or tuned for fraud.

For the images, you will have to hit the link to the original as cut /past on PDF images doesn’t seem to be working for me (or at all?):

https://www.depernolaw.com/uploads/2/7/0/2/27029178/antrim_michigan_forensics_report_%5B121320%5D_v2_%5Bredacted%5D.pdf

8. For the School Board Member for Central Lake Schools (3) [Image 1] there were 742 votes added to this vote total. Since multiple people were elected, this did not change the result of both candidates being elected, but one does see a change in who had most votes. If it were a single-person election this would have changed the outcome and demonstrates conclusively that votes can be and were changed during the second machine counting. That should be impossible.

So perhaps the “diddle” was hitting wider than the intended target? Or one guy just paid a bit more to come in first?

9. For the School Board Member for Ellsworth Schools (2) [Image 2]

• Shows 657 votes being removed from this election.
• In this case, only 3 people who were eligible to vote actually voted.

Since there were 2 votes allowed for each voter to cast.

• The recount correctly shows 6 votes.
But on election night, there was a major calculation issue:

Image 2 shows 663 votes counted on Election Night when the recount (and real) total is just 6. Something seriously amiss there.

10. In State Proposal 20-1 (1), [Image 3] there is a major change in votes in this category.
• There were 774 votes for YES during the election, to 1,083 votes for YES on the recount a change of 309 votes.
• 7 votes were added to the total for State Proposal 20-1 (1) out of those there were 611 votes moved between the Yes and No Categories.

That’s a whole lot of Vote Diddle right there. I wonder if this was a Majority Wins Proposal or a “needs 2/3” Proposal? I.e. did this change the result?

11. State Proposal 20-1 (1) is a fairly technical and complicated proposed amendment to the Michigan Constitution to change the disposition and allowable uses of future revenue generated from oil and gas bonuses, rentals and royalties from state-owned land. Information about the proposal:
https://crcmich.org/publications/statewide-ballot-proposal-20-1-michigan-naturalresources-trust-fund

12. A Proposed Initiated Ordinance to Authorize One (1) Marihuana (sic) Retailer Establishment Within the Village of Central Lake (1). [Image 4]
• On election night, it was a tie vote.
• Then, on the rerun of ballots 3 ballots were destroyed, but only one vote changed on the totals to allow the proposal to pass.

When 3 ballots were not counted and programming change on the tabulator was installed the proposal passed with 1 vote being removed from the No vote.

OK, issues, but no “smoking gun” (so to speak ;-)

13. On Sunday December 6, 2020, our forensics team visited the Antrim County Clerk. There were two USB memory sticks used, one contained the software package used to tabulate election results on November 3, 2020, and the other was programmed on November 6, 2020 with a different software package which yielded significantly different voting outcomes. The election data package is used by the Dominion Democracy Suite software & election management system software to upload programming information onto the Compact Flash Cards for the Dominion ImageCast Precinct to enable it to calculate ballot totals.

14. This software programming should be standard across all voting machines systems for the duration of the entire election if accurate tabulation is the expected outcome as required by US Election Law. This intentional difference in software programming is a design feature to alter election outcomes.

You have critical software floating around on USB thumb drives. It gets loaded onto the Compact Flash to be put into the machines. Quasi makes sense in that most folks do not have a CF drive or adapter. (I do, but that’s just me ;-)

But number 14 is the big one. In a secure machine, software would be Very Hard To Change, require special authorities and leave a huge audit trail / chain of custody. You do it the way Dominion did if you want to be able to palm a USB thumb drive and change elections on the fly, then cover the act by swapping back after the election. As was done. And, oh yeah, this is a violation of US Election Law on the face of it.

IMHO, this alone makes the Dominion machines unfit for purpose of an accurate election.

15. The election day outcomes were calculated using the original software programming on November 3, 2020. On November 5, 2020 the township clerk was asked to re-run the Central Lake Township ballots and was given no explanation for this unusual request. On November 6, 2020 the Antrim County Clerk, Sheryl Guy issued the second version of software to re-run the same Central Lake Township ballots and oversaw the process. This resulted in greater than a 60% change in voting results, inexplicably impacting every single election contest in a township with less than 1500 voters. These errors far exceed the ballot error rate standard of 1 in 250,000 ballots (.0008%) as required by federal election law.

• The original election programming files are last dated 09/25/2020 1:24pm
• The updated election data package files are last dated 10/22/2020 10:27 am.

They ran the count twice. Once with the original Diddle Software, then an updated version from just after the election was used. They gave dramatically different results. (Later a 3rd run with other software gives the correct result matching the hand count per the NYT, so suspicion would be that both runs were DiddleWare, but trying to shape the results differently, or more likely, run 2, where Trump won, was so wrong on total counts that a “fix” to the “cover up ware” was needed.) It is also possible that the difference was a fix to the XML “bug” tossing ballots to the Diddle Box (adjudication) process.

16. As the tabulator tape totals prove, there were large numbers of votes switched from the November 3, 2020 tape to the November 6, 2020 tape. This was solely based on using different software versions of the operating program to calculate votes, not tabulate votes. This is evidenced by using same the Dominion System with two different software program versions contained on the two different USB Memory Devices.

The tabulator paper tape for the two runs proves the software was a bit daft. Used the same machine, so not the hardware.

Next we cite the laws this violates:

17. The Help America Vote Act, Safe Harbor provides a 90-day period prior to elections where no changes can be made to election systems. To make changes would require recertification of the entire system for use in the election. The Dominion User Guide prescribes the proper procedure to test machines with test ballots to compare the results to validate machine functionality to determine if the Dominion ImageCast Precinct was programmed correctly. If this occurred a ballot misconfiguration would have been identified. Once the software was updated to the 10/22/2020 software the test ballots should have been re-run to validate the vote totals to confirm the machine was configured correctly.

So they violated the 90 days prescribed by law for software changes. Then they skipped the required “recertification” process (can’t certify a diddle after all… so looks a lot like deliberate). NO testing / QA done that would demonstrate the failure.

So “process crimes” in that the staff were either, again, Idiots or Criminals, your choice.

18. The November 6, 2020 note from The Office of the Secretary of State Jocelyn Benson states: “The correct results always were and continue to be reflected on the tabulator totals tape and on the ballots themselves. Even if the error in the reported unofficial results had not been quickly noticed, it would have been identified during the county canvass. Boards of County Canvassers, which are composed of 2 Democrats and 2 Republicans, review the printed totals tape from each tabulator during the canvass to verify the reported vote totals are correct.”

• Source: https://www.michigan.gov/sos/0,4670,7-127-1640_9150-544676–,00.html

So SoS Jocelyn is again ducking, dodging, and weaving, and spouting falsehoods. First off, notice it is always “tape” singular. I ask “WHICH Tape of the tapeS?” So all the Board of Canvassers could do is look at the hand chosen tape and say, uh, yeah, matches the numbers you reported from the same run of the machine. Pretty lame.

19. The Secretary of State Jocelyn Benson’s statement is false. Our findings show that the tabulator tape totals were significantly altered by utilization of two different program versions, and not just the Dominion Election Management System. This is the opposite of the claim that the Office of the Secretary of State made on its website. The fact that these significant errors were not caught in ballot testing and not caught by the local county clerk shows that there are major inherent built-in vulnerabilities and process flaws in the Dominion Election Management System, and that other townships/precincts and the entire election have been affected.

And they noticed it too. Nice. But at least now we know why Soros ran an SoS Secretary of State grooming and funding program. To have “the right people” in place to assure no action was taken to find fraud and election machine corruption of the election.

Then a reference to the “process” issues that are broken (likely broken by design. So find out who was in charge of that process and either fire or arrest them.)

They also point out this means anywhere these machines are in use with that software is a huge issue affecting the entire election.

20. On Sunday December 6, 2020, our forensics team visited the Antrim County Clerk office to perform forensic duplication of the Antrim County Election Management Server running Dominion Democracy Suite 5.5.3-002.

21. Forensic copies of the Compact Flash cards used by the local precincts in their Dominion ImageCast Precinct were inspected, USB memory sticks used by the Dominion VAT (Voter Assist Terminals) and the USB memory sticks used for the Poll Book were forensically duplicated.

They got good, clean, forensic class copies of the software on the machines on Dec. 6, 2020 and the USB thumb drives. Note that there are “levels” of Dominion. VAT at the polling place. ImageCast for the polling Precinct. Then the Management Server at the County Clerk office. Any or all could be involved, and potentially in different ways in different places.

22. We have been told that the ballot design and configuration for the Dominion ImageCast Precinct and VAT were provided by ElectionSource.com which is which is owned by MC&E, Inc of Grand Rapids, MI.

These folks designed the actual ballot used. Does that matter? Maybe, maybe not. Does your felt pen bleed through to somewhere important, spoiling your ballot?

E. MANCELONA TOWNSHIP

1. In Mancelona township, problems with software versions were also known to have been present. Mancelona elections officials understood that ballot processing issued were not accurate and used the second version of software to process votes on 4 November, again an election de-certifying event, as no changes to the election system are authorized by law in the 90 days preceding elections without re-certification.

2. Once the 10/22/2020 software update was performed on the Dominion ImageCast Precinct the test ballot process should have been performed to validate the programming. There is no indication that this procedure was performed.

So another township had issues with wrong numbers, but noticed, and tried other software. This decertifies the results, violates election law, and they did no testing either.

F. ANTRIM COUNTY CLERK’S OFFICE
1. Pursuant to a court ordered inspection, we participated in an onsite collection effort at the Antrim County Clerk’s office on December 6, 2020. [Image 5]:

Among other items forensically collected, the Antrim County Election Management Server (EMS) with Democracy Suite was forensically collected.
[Images 6 and 7].

The EMS (Election Management Server) was a:

Dell Precision Tower 3420.
Service Tag: 6NB0KH2

The EMS contained 2 hard drives in a RAID-1 configuration. That is the 2 drives redundantly stored the same information and the server could continue to operate if either of the 2 hard drives failed. The EMS was booted via the Linux Boot USB memory sticks and both hard drives were forensically imaged. At the onset of the collection process we observed that the initial program thumb drive was not secured in the vault with the CF cards and other thumbdrives. We watched as the County employees, including Clerk Sheryl Guy searched throughout the office for the missing thumb drive. Eventually they found the missing thumb drive in an unsecured and unlocked desk drawer along with multiple other random thumb drives. This demonstrated a significant and fatal error in security and election integrity.

The election server is a garden variety DELL computer. RAID is a way to use 2 drives (or more) storing the data with enough duplication you can recover it if a drive dies. Nice, but somewhat irrelevant.

They were able to take over the box using Linux on an external USB thumb drive (memory stick). This shows anyone with a pocket can take over the box in the dead of night and do whatever they want. I’ve done this regularly as Systems Administrator to recover crashed machines. It is not hard at all.

Again, “forensically imaged” means with ro (Read Only) disk mount, no write possible, not booting the operating system on the box, and with complete audit trail and chain of custody of the copy process on the disks. Both disks were copied, so “compare and contrast” can be done.

So the relevant software was just kicking around in someone’s desk drawer where ANYONE could find it, duplicate it, replace it. It could get lost. No chain of custody. Just OMG stupid. And world class insecure.

Next a few listings of tools used.

G. FORENSIC COLLECTION

We used a built for purpose Linux Boot USB memory stick to boot the EMS in a forensically sound mode. We then used Ewfacquire to make a forensic image of the 2 independent internal hard drives. Ewfacquire created an E01 file format forensic image with built-in integrity verification via MD5 hash. We used Ewfverify to verify the forensic image acquired was a true and accurate copy of the original disk. That was done for both forensic images

So used a USB stick to boot the box, then a forensic class copy software that does an “MD5 Hash”. That’s a sum across all digits using a fancy method that means if ANY bits change, the “hash” will no longer be the same. It assures your copy is EXACTLY right.

H. ANALYSIS TOOLS

X-Ways Forensics: We used X-Ways Forensics, a commercial Computer Forensic tool, to verify the image was useable and full disk encryption was not in use. In particular we confirmed that Bit locker was not in use on the EMS. Other tools used: PassMark – OSForensics, Truxton – Forensics, Cellebrite – Physical Analyzer, Blackbag-Blacklight Forensic Software, Microsoft SQL Server Management Studio, Virtual Box, and miscellaneous other tools and scripts.

OK, the thing you care about here is they are using high class validated tools (software mostly) to look at things, and prove the disk had no disk level encryption to break (or be blocked trying…)

Good kit, and lucky for them (and for any systems cracker…) no disk encryption.

So what did they do with this stuff?

I. SERVER OVERVIEW AND SUMMARY

1. Our initial audit on the computer running the Democracy Suite Software showed that standard computer security best practices were not applied. These minimum-security standards are outlined the 2002 HAVA, and FEC Voting System Standards – it did not even meet the minimum standards required of a government desktop computer.

In other words, this highly important very critical infrastructure server did not meet the standards required for the building Janitor email reading desktop.

2. The election data software package USB drives (November 2020 election, and November 2020 election updated) are secured with bitlocker encryption software, but they were not stored securely on-site. At the time of our forensic examination, the election data package files were already moved to an unsecure desktop computer and were residing on an unencrypted hard drive. This demonstrated a significant and fatal error in security and election integrity. Key Findings on Desktop and Server Configuration: – There were multiple Microsoft security updates as well as Microsoft SQL Server updates which should have been deployed, however there is no evidence that these security patches were ever installed. As described below, many of the software packages were out of date and vulnerable to various methods of attack.

So the USB drives have “bitlocker” encryption security (I presume “data software” means actual vote tallies?) BUT they copied that data onto entirely insecure desktops. So the Janitor could get into it if desired. (No knock on Janitors. I ran the Janitorial service at one company…)

Then comes the litany of AwShits:

a) Computer initial configuration on 10/03/2018 13:08:11:911
b) Computer final configuration of server software on 4/10/2019
c) Hard Drive not Encrypted at Rest
d) Microsoft SQL Server Database not protected with password.
e) Democracy Suite Admin Passwords are reused and share passwords.
f) Antivirus is 4.5 years outdated
g) Windows updates are 3.86 years out of date.
h) When computer was last configured on 04/10/2019 the windows updates were 2.11 years out of date.
i) User of computer uses a Super User Account.

a) Initially configured a few years ago.
b) Last configuration was about 1 year 6 months ago.
c) Hard drive anyone can read, write, or clone. No encryption.
d) NO PASSWORD on the database, anyone can read or change it.
e) Antivirus software functionally useless against present threats.
g) OMG are they back level on Windows patches.
h) And have been for a long while.
i) When in use, a fumble fingered user can destroy anything, change anything.

This is just a horribly insecure and drain bammaged machine.

Then there’s a bunch of detail on each of those. I’ll only comment if it’s different than the list I’ve already given.

3. The hard drive was not encrypted at rest – which means that if hard drives are removed or initially booted off an external USB drive the files are susceptible to manipulation directly. An attacker is able to mount the hard drive because it is unencrypted, allowing for the manipulation and replacement of any file on the system.

4. The Microsoft SQL Server database files were not properly secured to allow modifications of the database files.

5. The Democracy Suite Software user account logins and passwords are stored in the unsecured database tables and the multiple Election System Administrator accounts share the same password, which means that there are no audit trails for vote changes, deletions, blank ballot voting, or batch vote alterations or adjudication.

Anyone with a tiny bit of clue can get the passwords from a wide open database. Everyone shares a password so no way to say who logged on and did the Diddle (or just screwed up).

6. Antivirus definition is 1666 days old on 12/11/2020. Antrim County updates its system with USB drives. USB drives are the most common vectors for injecting malware into computer systems. The failure to properly update the antivirus definition drastically increases the harm cause by malware from other machines being transmitted to the voting system.

7. Windows Server Update Services (WSUS) Offline Update is used to enable updates the computer – which is a package of files normally downloaded from the internet but compiled into a program to put on a USB drive to manually update server systems.

8. Failure to properly update the voting system demonstrates a significant and fatal error in security and election integrity.

9. There are 15 additional updates that should have been installed on the server to adhere to Microsoft Standards to fix known vulnerabilities. For the 4/10/2019 install, the most updated version of the update files would have been 03/13/2019 which is 11.6.1 which is 15 updates newer than 10.9.1

This means the updates installed were 2 years, 1 month, 13 days behind the most current update at the time. This includes security updates and fixes. This demonstrated a significant and fatal error in security and election integrity.

• Wed 04/10/2019 10:34:33.14 – Info: Starting WSUS Offline Update (v.10.9.1)
• Wed 04/10/2019 10:34:33.14 – Info: Used path
“D:\WSUSOFFLINE1091_2012R2_W10\cmd\” on EMSSERVER (user:EMSADMIN)
• Wed 04/10/2019 10:34:35.55 – Info: Medium build date: 03/10/2019
• Found on c:\Windows\wsusofflineupdate.txt
• *WSUS Offline Update (v.10.9.1) was created on 01/29/2017
*WSUS information found herehttps://download.wsusoffline.net/
10. S

Anyone who can download the current set of hacker tools (i.e. any “script kiddy”) can break into these boxes and do whatever they want. Even leave behind persistent threat appliances.

Note that in the news is the latest Big Hack Scandal and Dominion used their product, so any internet connected machines were subject to “walk right in” for about 3 to 6 months. It is also widely used at various levels of governments.

https://chiefio.wordpress.com/2020/12/14/huge-solarwinds-systems-hack-of-government/

10. Super User Administrator account is the primary account used to operate the Dominion Election Management System which is a major security risk. The user logged in has the ability to make major changes to the system and install software which means that there is no oversight to ensure appropriate management controls – i.e. anyone who has access to the shared administrator user names and passwords can make significant changes to the entire voting system. The shared usernames and passwords mean that these changes can be made in an anonymous fashion with no tracking or attribution.

This is just sooo wrong. ANYONE who can get on the box can change ANYTHING.

From here on down, they go into the data differences, and a lot of redactions. We’re in the home stretch.

J. ERROR RATES

1. We reviewed the Tabulation logs in their entirety for 11/6/2020. The election logs for Antrim County consist of 15,676 total lines or events.

• Of the 15,676 there were a total of 10,667 critical errors/warnings or a 68.05% error rate.

• Most of the errors were related to configuration errors that could result in overall tabulation errors or adjudication. These 11/6/2020 tabulation totals were used as the official results.

Error rate was 68%, more than correct votes. These were used as official results. Then a bunch of details of what was bogus. We also get some specs on what the system is expected to do.

2. For examples, there were 1,222 ballots reversed out of 1,491 total ballots cast, thus resulting in an 81.96% rejection rate. Some of which were reversed due to “Ballot’s size exceeds maximum expected ballot size”.

• According to the NCSL, Michigan requires testing by a federally accredited laboratory for voting systems. In section 4.1.1 of the Voluntary Voting Systems Guidelines (VVSG) Accuracy Requirements a. All systems shall achieve a report total error rate of no more than one in 125,000.

• https://www.eac.gov/sites/default/files/eac_assets/1/28/VVSG.1.1.VOL.1.FINAL1.pdf

• In section 4.1.3.2 Memory Stability of the VVSG it states that Memory devices used to retain election management data shall have demonstrated error free data retention for a period of 22 months.

• In section 4.1.6.1 Paper-based System Processing Requirements subsection a. of the VVSG it states “The ability of the system to produce and receive electronic signals from the scanning of the ballot, perform logical and numerical operations upon these data, and reproduce the contents of memory when required shall be sufficiently free of error to enable satisfaction of the system-level accuracy requirement indicated in Subsection 4.1.1.”

• These are not human errors; this is definitively related to the software and software configurations resulting in error rates far beyond the thresholds listed in the guidelines.

Ballot size can bugger an election tally? OK, so who decides how big it is? Maybe that ballot design company does need a closer look.

3. A high “error rate” in the election software (in this case 68.05%) reflects an algorithm used that will weight one candidate greater than another (for instance, weight a specific candidate at a 2/3 to approximately 1/3 ratio). In the logs we identified that the RCV or Ranked Choice Voting Algorithm was enabled (see image below from the Dominion manual). This allows the user to apply a weighted numerical value to candidates and change the overall result. The declaration of winners can be done on a basis of points, not votes. [Image 8]:

So the machine was set up to make votes for one candidate count for more, and another candidate less. A “feature” of the software. IMHO that alone makes them unsuited for purpose.

4. The Dominion software configuration logs in the Divert Options, shows that all write-in ballots were flagged to be diverted automatically for adjudication. This means that all write-in ballots were sent for “adjudication” by a poll worker or election official to process the ballot based on voter “intent”. Adjudication files allow a computer operator to decide to whom to award those votes (or to trash them).

5. In the logs all but two of the Override Options were enabled on these machines, thus allowing any operator to change those votes. [Image 9]:

Ok, probably not a lot of write in ballots, but they were set so anyone can change them.

6. In the logs all but two of the Override Options were enabled on these machines,thus allowing any operator to change those votes. This gives the system operators carte blanche to adjudicate ballots, in this case 81.96% of the total cast ballots with no audit trail or oversight. [Image 10]:

BUT the same override ability was available for the other ballots as well. So basically poll workers get to decide who wins. Who chooses poll workers?

7. On 12/8/2020 Microsoft issued 58 security patches across 10+ products, some of which were used for the election software machine, server and programs. Of the 58 security fixes 22, were patches to remote code execution (RCE) vulnerabilities. [Image 11]:

“RCE” is just what it sounds like. It lets someone far far away run software on your machine. Basically, it’s a hackers delight that lets them take over your machine.

Then there’s a very nice picture of how all the different levels connect, so hit the link, with the different classes of Dominion machines illustrated.

8. We reviewed the Election Management System logs (EmsLogger) in their entirety from 9/19/2020 through 11/21/2020 for the Project: Antrim November 2020. There were configuration errors throughout the set-up, election and tabulation of results. The last error for Central Lake Township, Precinct 1 occurred on 11/21/2020 at 14:35:11 System.Xml.XmlException System.Xml.XmlException: The ‘ ‘ character, hexadecimal value 0x20, cannot be included in a name. Bottom line is that this is a calibration that rejects the vote (see picture below). [Image 12]:

Interesting. So possibly an Xml hex character is all you need to bugger votes? Easy peasy.

https://en.wikipedia.org/wiki/XML

Extensible Markup Language (XML) is a markup language that defines a set of rules for encoding documents in a format that is both human-readable and machine-readable. The World Wide Web Consortium’s XML 1.0 Specification of 1998 and several other related specifications—all of them free open standards—define XML.

So in the “document description”. I wonder if this means that just putting the right character into the ballot description can turn on a “bugger the vote” feature? “Hex” just means a base 16 number describing a character in this case.

Update: A bit on what that Hex value is. It is “white space”:

https://social.msdn.microsoft.com/Forums/vstudio/en-US/ff3d9806-b6fa-4ee6-a903-67f919b98d83/hexadecimal-value-0x20-cannot-be-included-

This is the hexadecimal code for the white space you have in “Account Number”. Just use “AccountNumber” instead .
[…]
XML Naming Rules

XML elements must follow these naming rules:
•Names can contain letters, numbers, and other characters
•Names cannot start with a number or punctuation character
•Names cannot start with the letters xml (or XML, or Xml, etc)
•Names cannot contain spaces

Any name can be used, no words are reserved.

So essentially, have your fields in the xml ballot description contain a blank in the middle, the ballot is toasted and the votes go to the Diddle box, it seems…

After some more redactions:

Notably 42 minutes earlier on Nov 21 2020 at 13:53:09 a user attempted to zero out election results. Id:3168 EmsLogger – There is no permission to {0}- Project: User: Thread: 189. This is direct proof of an attempt to tamper with evidence.

So someone remote was trying to remove evidence. Interesting. Suggests not just a local screw-up, but a systems hack by a skilled actor OR the vendor.

Next we again are informed of the law being broken by the software update, and that it happened. But now they include a pointer to where they found the information, in a log file.

9. The Election Event Designer Log shows that Dominion ImageCast Precinct Cards were programmed with updated new programming on 10/23/2020 and again after the election on 11/05/2020. As previously mentioned, this violates the HAVA safe harbor period. Source: C:\Program Files\Dominion Voting Systems\Election Event Designer\Log\Info.txt

• Dominion Imagecast Precinct Cards Programmed with 9/25/2020 programming on 09/29/2020, 09/30/2020, and 10/12/2020.

• Dominion Imagecast Precinct Cards Programmed with New Ballot Programming dated 10/22/2020 on 10/23/2020 and after the election on 11/05/2020

Excerpt from 2020-11-05 showing “ProgramMemoryCard” commands.

Whole lot of programming being changed for a “locked down” system, eh?

Then a line by line on all the information they collected. Mostly just housekeeping and leaving an audit trail on themselves.

10. Analysis is ongoing and updated findings will be submitted as soon as possible. A summary of the information collected is provided below.
10|12/07/20 18:52:30| Indexing completed at Mon Dec 7 18:52:30 2020
12|12/07/20 18:52:30| INDEX SUMMARY
12|12/07/20 18:52:30| Files indexed: 159312
12|12/07/20 18:52:30| Files skipped: 64799
12|12/07/20 18:52:30| Files filtered: 0
12|12/07/20 18:52:30| Emails indexed: 0
12|12/07/20 18:52:30| Unique words found: 5325413
12|12/07/20 18:52:30| Variant words found: 3597634
12|12/07/20 18:52:30| Total words found: 239446085
12|12/07/20 18:52:30| Avg. unique words per page: 33.43
12|12/07/20 18:52:30| Avg. words per page: 1503
12|12/07/20 18:52:30| Peak physical memory used: 2949 MB
12|12/07/20 18:52:30| Peak virtual memory used: 8784 MB
12|12/07/20 18:52:30| Errors: 10149
12|12/07/20 18:52:30| Total bytes scanned/downloaded: 1919289906

And finally a signature and date by the guy on the hook for it all.

Dated: December 13, 2020
_____________________________________
Russell Ramsland

His signature is there, but I can’t copy / paste it.

And that’s all folks!

Hope it was helpful.

Subscribe to feed