|

 
|
| | Name : | Ian S. Piper | Organization : | Diebold Election Systems, Inc. | Post Date : | 9/29/2005 |
| Section : | 6.4.4.6 | Page no. : | 12 | Line no.: | 1 | Comment : | The requirement, "The testing authority shall retain this record until the voting system ceases to be nationally certified." does not specify how the testing lab will physically store the source code and executable archive. There must be criteria specified in regards to the physical storage of this archive of the vendor's intellectual property and proprietary information. The test lab's storage facility should meet the same requirements as a reputable escrow agent provides. The criteria needs to list such items as, secure storage facilities with video surveillance, restricted physical access, mandatory log entry to the storage facility, audit capability of access records by authorized inspector and verification of the archives contents. When the certification is no longer valid, then the archived materials must be returned to the vendor.
Proposed change: Replace the requirement with the following language, "The testing authority shall retain this record until the voting system ceases to be nationally certified. The test lab's storage facility shall be physically secure with video surveillance, restricted physical access, mandatory log entry to the storage facility, audit capability of access records by an authorized inspector and verification of the archives contents. When the voting system ceases to be nationally certified, the archived materials shall be returned securely to the vendor." | |
|
|