A good article on voter ID & voting machine software vulnerability:
https://turcopolier.typepad.com/sic_semper_tyrannis/2018/11/voter-id-card-laws-miss-the-point-the-fraud-risk-is-in-electronic-voting-machines-1.html
nugget:
"As the old saying goes, "The people who vote decide nothing. The people who count the votes decide everything". HAVA does better than that. The people who vote do not even vote; the electronic voting machine’s executable computer program does. And the local election officials don’t even count the votes; the computer program in the tabulating computer does.
An electronic voting machine is simply a computer. And a computer is basically electrical engineering and binary math (the base 2 number system). Computer programmers write source code that is converted by an executable program called a compiler into a binary program the computer can execute (a compiler is probably used rather than an interpreter). In addition, inside the computer are more executable programs, hard-wired into one or more chips that are sometimes called hardware microcode.
Within this system, the potential for fraud is unlimited. HAVA’s use of “non-Federal laboratories” to certify the voting system hardware and software is worthless. No one knows if the source code observed at the “laboratory” is the same source code that is compiled later at the voting machine company, or whether it or the executable program was switched before placement in the voting device.
Then it gets deeper…"