|

 
|
| | Name : | Aviel D. Rubin | Organization : | ACCURATE | Post Date : | 9/30/2005 |
| Section : | 5.2 | Page no. : | 5-5 | Line no.: | | Comment : | B. THE FRAMEWORK FOR SECURITY EVALUATION
SPECIFIC RECOMMENDATIONS:
Scope: Exclusions:
4.1.3 and 5.2 (Design, Construction, and Maintenance)
COTS software is specifically excluded from having to meet
testing requirements. This is a gaping hole in security-for example, allowing intentional or accidental subversion of the voting system by manipulations of the underlying operating system. Dedicated systems should be used for voting, and all software on the system must be subject to testing.
*Note, also listed under section 4.1.3 | |
|
|