United States. Election Assistance Commission Pilot Program Testing and Certification Manual & UOCAVA Pilot Program Testing Requirements Overview



Similar documents
Appendix F Wyle Laboratories Test Plan and Test Report

U.S. ELECTION ASSISTANCE COMMISSION

EAC Decision on Request for Interpretation (Operating System Configuration)

SECURITY ASSESSMENT SUMMARY REPORT FOR ES&S EVS VOTING SYSTEM. Appendix A.10

Request for Quotation For Information Technology Services

Quality Management Standard BS EN ISO 9001:

Certification Process Requirements

United States Election Assistance Commission. Certificate of Conformance ES&S EVS

Chapter 1. The ISO 9001:2000 Standard and Certification Process

Safeguarding Data Using Encryption. Matthew Scholl & Andrew Regenscheid Computer Security Division, ITL, NIST

U.S. ELECTION ASSISTANCE COMMISSION OFFICE OF INSPECTOR GENERAL

REQUIREMENTS FOR CERTIFICATION BODIES TO DETERMINE COMPLIANCE OF APPLICANT ORGANIZATIONS TO THE MAGEN TZEDEK SERVICE MARK STANDARD

Governor s Ethics and Campaign Finance Reform Task Force Subcommittee Report on Public Financing of Campaigns

International Trade Administration

UNITED STATES DEPARTMENT OF AGRICULTURE FOOD SAFETY AND INSPECTION SERVICE WASHINGTON, DC INFORMATION SYSTEM CERTIFICATION AND ACCREDITATION (C&A)

Certification Process Requirements

ETSI TS V2.1.1 ( )

ETSI EN V2.2.2 ( )

Security audit advice For holders of all remote gambling operator licences including specified remote lottery licences

Questions and Answers (1) to HQ0034-FVAP-11-BAA-0001

Certification Manual. Fair Trade USA V2.0 English Version. SCS Global Services Manual

E-Democracy and e-voting

United States Patent and Trademark Office

Affordable Insurance Exchanges: Plan Management Partnership Guidance

EXAM PREPARATION GUIDE

Security Control Standard

Evaluation Report. Weaknesses Identified During the FY 2013 Federal Information Security Management Act Review. April 30, 2014 Report Number 14-12

South Dakota State Board of Elections ES&S Voting System (EVS) State Certification

EPA Needs to Improve Security Planning and Remediation of Identified Weaknesses in Systems Used to Protect Human Health and the Environment

Committees Date: Subject: Public Report of: For Information Summary

GUYANA No. of 2011 REGULATIONS. Made Under. CREDIT REPORTING ACT (Cap. 84:01)

WYLE REPORT NO. T Appendix A.4. Security TEST CASE PROCEDURE SPECIFICATION (T )

What items constitute an event as it relates to the requirements of a voting system's audit logging?

TREASURY INSPECTOR GENERAL FOR TAX ADMINISTRATION

DIVISION OF INFORMATION SECURITY (DIS) Information Security Policy Threat and Vulnerability Management V1.0 April 21, 2014

TREASURY INSPECTOR GENERAL FOR TAX ADMINISTRATION

Information Technology Security Review April 16, 2012

Canadian Grain Commission

Computer Security Roles and Responsibilities and Training Should Remain Part of the Computer Security Material Weakness.

Security Assessment Report

How To Evaluate Watchguard And Fireware V11.5.1

Compliance and Industry Regulations

NIST Cyber Security Activities

AUDIT OF SBA S SYSTEM AUDIT REPORT NUMBER 4-42 SEPTEMBER 10, 2004

CMS Operational Policy for Infrastructure Router Security

GxP Process Management Software. White Paper: Ten Most Common Reasons for FDA 483 Observations and Warning Letter Citations

Final Audit Report FEDERAL INFORMATION SECURITY MANAGEMENT ACT AUDIT FY Report No. 4A-CI

AS9100 B to C Revision

REPORT 2016/047 INTERNAL AUDIT DIVISION. Audit of the operations in Egypt for the Office of the United Nations High Commissioner for Refugees

American National Standards. value of the ANS designation

Bylaw No The City Administration Bylaw, 2003

IACS QUALITY MANAGEMENT SYSTEM CERTIFICATION SCHEME (QSCS)

CASPR Commonly Accepted Security Practices and Recommendations

FINAL AUDIT REPORT WITH RECOMENDATIONS Information Technology No

Supplier Information Security Addendum for GE Restricted Data

Electoral Process. To Assure Pride and Confidence. in the. Report of the National Commission on Federal Election Reform

OPERATIONAL CAPABILITY TECHNOLOGY QUESTIONNAIRE

Complying with PCI Data Security

Military and Overseas Voters Manual for Election Administrators

DESIGNATED CONTRACT MARKET OPERATIONAL CAPABILITY TECHNOLOGY QUESTIONNAIRE

An Overview of Information Security Frameworks. Presented to TIF September 25, 2013

TABLE OF CONTENTS WHAT TYPE OF SITES CAN OR CANNOT BE CERTIFIED?

Certification Report

THE OFFICE OF THE NATIONAL COORDINATOR FOR HEALTH INFORMATION TECHNOLOGY S OVERSIGHT OF THE TESTING

National Information Assurance Certification and Accreditation Process (NIACAP)

2012 FISMA Executive Summary Report

kamai Technologies Inc. Commonly Accepted Security Practices and Recommendations (CASPR)

Technology Risk Management

Aberdeen City Council IT Security (Network and perimeter)

Administration. april

Transcription:

United States Election Assistance Commission Pilot Program Testing and Certification Manual & UOCAVA Pilot Program Testing Requirements Overview

Why We Developed the Requirements & Manual To meet EAC mandates under the MOVE Act and to begin to address the needs of States that require EAC certification for any voting system used within the State. After final adoption by the Commissioners, the EAC will voluntarily forward these requirements to NIST/TGDC for consideration in the development of any future UOCAVA Guidelines.

Working Group Members Paul Miller (Washington State & TGDC) Jim Silrum (North Dakota) David Wagner (U.C. Berkeley &TGDC) Andrew Regenscheid (NIST) Nelson Hastings (NIST) Carol Paquette (Operation BRAVO & EAC contractor) Manufacturers (Scytl & EveryoneCounts) FVAP EAC Staff & Technical Reviewers

Remote Voting Device This device will not store information locally. It is essentially a dummy terminal. All information will be stored on servers elsewhere via a VPN. Every Remote Voting Device will have a person attending to it. This ensures that physical security is being maintained. A paper record is created and retained.

Points of Interest Cost & Time Manufacturer Declaration of Conformity Penetration Testing Auditability Cryptography

Cost & Time The scope of the project timeline was for a three month testing engagement. Wyle, an EAC accredited VSTL, quoted the Standards at costing ~$300,000 for a 3 month testing engagement. (Costs could potentially be reduced to ~$175,000 for a 6 month testing engagement.)

Penetration Testing Required. An EAC accredited VSTL will put together an experienced penetration testing team to check the system for vulnerabilities. Penetration Testing scope is much narrower than OEVT, which reduces both time and cost.

Auditability A great deal of consideration was given to how auditability will be achieved for the Remote Electronic Voting process. The vote capture device is required to produce a paper record. This record SHALL be available to the voter to review and verify, and SHALL be retained for later auditing or recounts, as specified by state law. Paper records provide an independent record of the voter s choices that can be used to verify the correctness of the electronic record created by the voting device.

Cryptography Extensive use of cryptography Vote data transmission Vote data storage Communications links All cryptographic functionality SHALL be implemented using NIST-approved cryptographic algorithms/schemas, or use published and credible cryptographic algorithms/schemas/protocols. Cryptography used to protect information in-transit over public telecommunication networks SHALL use NISTapproved algorithms and cipher suites.

Pilot Program Manual Highlights: Follows same general format and procedures as Testing and Certification Program Manual The program recognizes that the Federal certification framework should encourage the voting systems industry to pursue technological innovation and experimentation in relation to the design of voting systems. Concept is to provide a quick and cost effective method to certify pilot program voting systems for use by States that require EAC certification.

Definitions: The accepted definition of pilot program means a limited roll out of a new system in order to test it under real world conditions, prior to use by an entire organization. For voting systems, the purpose of any pilot program is to gain first hand experience with the new technology implemented for the pilot program election, and to evaluate the system and its benefits to domestic or overseas voters.

Key Changes: No Decertification. Only Denial of Certification. ( with appeal process for denials) EAC Review process accelerated. (5 business days to review Test Plans, 10 business days to review test Reports)

Key changes, Monitoring and Reporting: Two primary tools for assessing the level of effectiveness of the pilot certification process: manufacturer declaration of conformity audits mandatory post election reporting by manufacturers. One secondary tool: voluntary pilot program monitoring and reporting by State and local election jurisdiction participating in pilot programs.

Manufacturer Declaration of Conformity Audit Each manufacturer shall be subject to a mandatory declaration of conformity audit during every pilot certification test engagement. Audit objectives: Gather information and documentation to insure that the attestation in the declaration of conformance agrees with the actual documented testing done on the pilot voting system by the manufacturer; Review documentation to determine the adequacy of manufacturer conformance testing; Gather information and documentation to insure that the manufacturer adheres to their stated quality management system and configuration management system.

Written Audit Report Drafted by the EAC and provided to the Manufacturer within 10 business days of completion of the audit. Manufacturers that pass these audits may continue in the pilot certification program. If the audit report finds the manufacturers quality program, and/or product testing was deficient, or if the audit finds that required records were missing, inadequate or otherwise falsified or fabricated in order to circumvent the EAC process, the auditors will recommend that the pilot voting system be dismissed from the pilot program pending adequate resolution of the nonconformities found during the audit.

Mandatory Post Election Anomaly Reporting Manufacturers must record each anomaly that affects the pilot voting system during an election. Manufacturer shall identify all root causes for each anomaly, and implement all corrective actions identified for each anomaly. Reporting of these anomalies allows the EAC to better evaluate the performance of pilot systems under real election conditions in order to make recommendations for future use of the system.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information