US Election Assistance Commission - Voluntary Voting System Guidelines Vote
EAC Home
Introduction
View Guidelines
View Comments
Glossary

View Comments

Section CommentsGeneral CommentsGlossary Comments
 
Name :   Aviel D. Rubin
Organization :   ACCURATE
Post Date :   9/30/2005

Section Comments
Section :  4.1.3
Page no. :  4-3
Line no.:  
Comment :  B. THE FRAMEWORK FOR SECURITY EVALUATION  

SPECIFIC RECOMMENDATIONS:

Scope: Exclusions:  
4.1.3 and 5.2 (Design, Construction, and Maintenance)

COTS software is specifically excluded from having to meet  
testing requirements. This is a gaping hole in security-for example, allowing intentional or accidental subversion of the voting system by manipulations of the underlying operating system. Dedicated systems should be used for voting, and all software on the system must be subject to testing.  

*Note, also listed under section 5.2