US Election Assistance Commission - Voluntary Voting System Guidelines Vote
EAC Home
Introduction
View Guidelines
View Comments
Glossary

View Comments

Section CommentsGeneral CommentsGlossary Comments
 
Name :   Aviel D. Rubin
Organization :   ACCURATE
Post Date :   9/30/2005

Section Comments
Section :  6.1.1
Page no. :  
Line no.:  
Comment :  B. THE FRAMEWORK FOR SECURITY EVALUATION  
Long-term Goals:
-Security evaluation to include security ratings along multiple axes.
 
-Security that is built into engineering and development of voting systems, instead of security based on patching flaws.
-Requirements to include security evaluation, including threat analysis, code review, architectural review and penetration and parallel monitoring.  

SPECIFIC RECOMMENDATIONS:
New provision:

Independent review of system security by panel of external experts with access comparable to that of fully-informed insiders.