• (function() { (function(){function b(g){this.t={};this.tick=function(h,m,f){var n=f!=void 0?f:(new Date).getTime();this.t[h]=[n,m];if(f==void 0)try{window.console.timeStamp("CSI/"+h)}catch(q){}};this.getStartTickTime=function(){return this.t.start[0]};this.tick("start",null,g)}var a;if(window.performance)var e=(a=window.performance.timing)&&a.responseStart;var p=e>0?new b(e):new b;window.jstiming={Timer:b,load:p};if(a){var c=a.navigationStart;c>0&&e>=c&&(window.jstiming.srt=e-c)}if(a){var d=window.jstiming.load; c>0&&e>=c&&(d.tick("_wtsrt",void 0,c),d.tick("wtsrt_","_wtsrt",e),d.tick("tbsd_","wtsrt_"))}try{a=null,window.chrome&&window.chrome.csi&&(a=Math.floor(window.chrome.csi().pageT),d&&c>0&&(d.tick("_tbnd",void 0,window.chrome.csi().startE),d.tick("tbnd_","_tbnd",c))),a==null&&window.gtbExternal&&(a=window.gtbExternal.pageT()),a==null&&window.external&&(a=window.external.pageT,d&&c>0&&(d.tick("_tbnd",void 0,window.external.startE),d.tick("tbnd_","_tbnd",c))),a&&(window.jstiming.pt=a)}catch(g){}})();window.tickAboveFold=function(b){var a=0;if(b.offsetParent){do a+=b.offsetTop;while(b=b.offsetParent)}b=a;b<=750&&window.jstiming.load.tick("aft")};var k=!1;function l(){k||(k=!0,window.jstiming.load.tick("firstScrollTime"))}window.addEventListener?window.addEventListener("scroll",l,!1):window.attachEvent("onscroll",l); })(); .comment-link {margin-left:.6em;}

    Repiglican Roast

    A spirited discussion of public policy and current issues

    About Me

    Name:
    Location: The mouth of being

    I'm furious about my squandered nation.

    Links

    Friday, November 04, 2005

    Go See For Yourself



    GAO
    United States Government Accountability Office
    Report to Congressional Requesters
    September 2005
    ELECTIONS
    Federal Efforts to Improve Security and
    Reliability of
    Electronic Voting
    Systems Are Under
    Way, but Key Activities
    Need to Be Completed

    What GAO Found
    United States Government Accountability Office
    Why GAO Did This Study
    www.gao.gov/cgi-bin/getrpt?GAO-05-956.

    To view the full product, including the scope
    and methodology, click on the link above.
    For more information, contact David Powner
    at (202) 512-9286 or pownerd@gao.gov.
    Highlights of GAO-05-956, a report to
    congressional requesters
    Federal Efforts to Improve Security and Reliability of Electronic Voting Systems
    Are Under Way, but Key Activities Need to Be Completed While electronic voting systems hold promise for improving the election process, numerous entities haveraised concerns about their security and reliability, citing instances of weak security controls, system design flaws, inadequate system version control, inadequate security testing, incorrect system configuration, poor security management, and vague or incomplete voting system standards (see below for examples). It is important to note that many of these concerns were based on specific system makes and models or a specific jurisdiction’s election, and there is no consensus among election officials and other experts on their pervasiveness. Nevertheless, some have caused problems in elections and therefore merit attention.

    Federal organizations and nongovernmental groups have issued both election-specific recommended practices for improving the voting process and more general guidance intended to help organizations manage information systems’ security and reliability. These recommended practices and guidelines (applicable throughout the voting system life cycle) include having vendors build security controls and audit trails into their systems during development, and having election officials specify security
    requirements when acquiring systems. Other suggested practices include testing and certifying systems against national voting system standards.

    The federal government has begun efforts intended to improve life cycle management of electronic voting systems and thereby improve their security and reliability. Specifically, EAC has led efforts to (1) draft changes to existing federal voluntary standards for voting systems, including provisions addressing security and reliability; (2) develop a process for certifying voting systems; (3) establish a program to accredit independent laboratories to test electronic voting systems; and(4) develop a library and clearinghouse for information on state and local elections and systems. However, these actions are unlikely to have a significanteffect in the 2006 federal election cycle because important changes to the voting standards have not yet been completed, the system certification and laboratory accreditation programs are still in development, and a system software library has not been updated or improved since the 2004 election. Further, EAC has not consistently defined specific tasks, processes, and time frames for completing these
    activities; as a result, it is unclear when their results will be available to
    assist state and local election officials.

    Examples of Voting System Vulnerabilities and Problems
    • Cast ballots, ballot definition files, and audit logs
    could be modified.
    • Supervisor functions were protected with weak
    or easily guessed passwords.
    • Systems had easily picked locks and power
    switches that were exposed and unprotected.
    • Local jurisdictions misconfigured their
    electronic voting systems, leading to
    election day problems.
    • Voting systems experienced operational
    failures during elections.
    • Vendors installed uncertified electronic
    voting systems.

    Source: GAO analysis of recent reports and studies.
    The Help America Vote Act of 2002
    established the Election Assistance
    Commission (EAC) to help improve
    state and local administration of
    federal elections and authorized
    funding for state and local
    governments to expand their use of
    electronic voting systems. EAC
    began operations in January 2004.
    However, reported problems with
    electronic voting systems have led
    to questions about the security and
    reliability of these systems. GAO
    was requested to (1) determine the
    significant security and reliability
    concerns identified about
    electronic voting systems,
    (2) identify recommended practices
    relevant to ensuring the security
    and reliability of these systems, and
    (3) describe actions taken or
    planned to improve their security
    and reliability.
    What GAO Recommends
    To help ensure the security and
    reliability of electronic voting
    systems, GAO is recommending
    that EAC define specific tasks,
    processes, and time frames for
    improving the national voting
    systems standards, testing
    capabilities, and management
    support available to state and local
    election officials. In commenting
    on a draft of this report, EAC
    agreed with the recommendations
    and stated that the commission has
    initiatives under way or planned in
    these areas. The commission also
    sought additional clarification and
    context on reported problems.

    posted by TheFuriousGourmet | 7:03 AM

    0 Comments:

    Post a Comment

    << Home