Voting System Planning and Testing R. Michael Alvarez Caltech/MIT VTP Voting Systems Testing Summit 2005.

Slides:



Advertisements
Similar presentations
The Individual Health Plan Essential to achieve educational equality for students with health management needs Ensures access to an education for students.
Advertisements

S3-1 © 2001 Carnegie Mellon University OCTAVE SM Process 3 Identify Staff Knowledge Software Engineering Institute Carnegie Mellon University Pittsburgh,
Technology Summit Kickoff Kim Wyman Secretary of State April 8, 2014.
SSA’s Electronic Information Data Exchange Information Security Certification and Compliance Monitoring Program Presented by: Michael G. Johnson, Director,
David A. Brown Chief Information Security Officer State of Ohio
TGDC Meeting, July 2011 Review of VVSG 1.1 Nelson Hastings, Ph.D. Technical Project Leader for Voting Standards, ITL
© Copyright 2009 TEM Consulting, LP - All Rights Reserved Presentation To Travis County, TX - May 27, 2009Rev 1 – 05/22/09 - HSB US Voting System Conformity.
Tomas Pivoras - EMS experience1 Environmental management systems – experience from Lithuania Tomas Pivoras Kaunas University of Technology.
TEL382 Greene Chapter /27/09 2 Outline What is a Disaster? Disaster Strikes Without Warning Understanding Roles and Responsibilities Preparing For.
The Need for an Integrated View of Water Quality Modeling and Monitoring Bruce Kiselica USEPA, Region 2 Second Workshop on Advanced Technologies in Real.
Session 3 – Information Security Policies
A Safety Management System (SMS) is: “A systematic approach to managing safety, including the necessary organizational structures, accountabilities,
United States Election Assistance Commission Pilot Program Testing and Certification Manual & UOCAVA Pilot Program Testing and Certification Manual & UOCAVA.
United States 1 Election Assistance Commission 1 Inspiring Change & Modernization in Election Administration Seattle, WA June 10, 2015.
12/9-10/2009 TGDC Meeting TGDC Recommendations Research as requested by the EAC John P. Wack National Institute of Standards and Technology
Services Tailored Around You® Business Contingency Planning Overview July 2013.
Resiliency Rules: 7 Steps for Critical Infrastructure Protection.
NHTSA Cyber Security Best Practices Study Tim Weisenberger December 7, 2011.
Session 16: Distribution of Geospatial Data 1 Distribution of Geospatial Data in the Public Environment Hazard Mapping and Modeling.
United States Election Assistance Commission EAC UOCAVA Documents: Status &Update EAC Technical Guidelines Development Committee Meeting (TGDC)
An Overview of Environmental Management Systems (EMS)
Evolving IT Framework Standards (Compliance and IT)
Distributed Real-Time Systems for the Intelligent Power Grid Prof. Vincenzo Liberatore.
Information Systems Security Computer System Life Cycle Security.
University of Nevada, Reno Data-Driven Organization Governance 1 Governing a data-driven organization (4/24/2014)  Define governance within organizations.
MOBILE AD-HOC NETWORK(MANET) SECURITY VAMSI KRISHNA KANURI NAGA SWETHA DASARI RESHMA ARAVAPALLI.
CRM and Checklists Robert S. Barrett SureSurgery Inc. GreenDot Global Inc.
Foundations of Planning NNA
Implementing the New Reliability Standards Status of Draft Cyber Security Standards CIP through CIP Larry Bugh ECAR Standard Drafting Team.
Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.
12/9-10/2009 TGDC Meeting NIST Research on UOCAVA Voting Andrew Regenscheid National Institute of Standards and Technology
Hardware Independent Voting Systems. Caveats I am not talking about nor endorsing internet voting (or the slippery slope to lead to it) There are many.
Improving U.S. Voting Systems Security Breakout Session Improving U.S. Voting Systems Andrew Regenscheid National Institute.
Interoperability Framework Overview Health Information Technology (HIT) Standards Committee June 24, 2010 Presented by: Douglas Fridsma, MD, PhD Acting.
What Happens Now? From a Local Election Administrator’s Viewpoint.
West Contra Costa USD Presentation to the Facilities Subcommittee December 11, 2012.
Item 5d Texas RE 2011 Budget Assumptions April 19, Texas RE Preliminary Budget Assumptions Board of Directors and Advisory Committee April 19,
Briefing for NIST Acting Director James Turner regarding visit from EAC Commissioners March 26, 2008 For internal use only 1.
DOST and RA 9369 or the Automated Election Law. Background on RA9369  Authorizes the Comelec to implement an end to end nationwide automated election.
TGDC Meeting, July 2010 Security Considerations for Remote Electronic UOCAVA Voting Andrew Regenscheid National Institute of Standards and Technology
The OCIO/PSCD, in collaboration with the Advisory Board’s Long Range Planning Committee, developed this Strategic Plan to foster the leadership and.
How and what to observe in e-enabled elections Presentation by Mats Lindberg, Election Adviser, Organisation for Security and Co-operation in Europe (OSCE)
Client/Server Model: A Business View The different Client/server implementations differ according to: 1.Where the processing for the presentation of information.
Introduction to Information Security
TGDC Meeting, July 2010 Report of the UOCAVA Working Group John Wack National Institute of Standards and Technology DRAFT.
1 The Evolution of Voting Systems Paul DeGregorio Vice Chairman Donetta Davidson Commissioner The U.S. Election Assistance Commission.
NIST Voting Program Page 1 NIST Voting Program Lynne Rosenthal National Institute of Standards and Technology
May 15, 2001 Achieving a High Degree of Data Reliability PHI Data Reliability.
Consultant Advance Research Team. Outline UNDERSTANDING M&E DATA NEEDS PEOPLE, PARTNERSHIP AND PLANNING 1.Organizational structures with HIV M&E functions.
© Copyright 2005 TEM Consulting, LP - All Rights Reserved Presentation To EAC Aug. 23, 2005 Hearing, Denver, CORev 1 – 08/16/05 - HSB Considerations In.
1 DECEMBER 9-10, 2009 Gaithersburg, Maryland TECHNICAL GUIDELINES DEVELOPMENT COMMITTEE Commissioner Donetta Davidson.
10/11/20071 Business Continuity and Disaster Recovery Planning CMPE296T Fall 2007 Final Project Professor Richard Sinn Team Members Li Yang Smita Uniyal.
Team EMS May 1, The time period following traumatic injury, during which there is the highest likelihood that prompt medical treatment will prevent.
TGDC Meeting, Jan 2011 Path Forward for FY11 UOCAVA Activities Nelson Hastings National Institute of Standards and Technology
Dr. Mark Gaynor, Dr. Feliciano Yu, Bryan Duepner.
Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.
Safety Management Systems Session Four Safety Promotion APTA Webinar June 9, 2016.
Election Commissioner Orientation January 2015 SEMS Introduction Madalan Lennep, PMP Election Consultant.
State Board of Elections Computers
Group Decision Support Systems
OSG Computer Security Plans
Preparedness WFP Logistics, We Deliver.
Improving Reliability of Direct Recording Electronic Voting Systems
By: Dr. Visavnath, Lecturer Comp. Engg. Deptt.
Election Security Best Practices
Texas Secretary of State Elections Division
Election Security Best Practices
Larry Bugh ECAR Standard Drafting Team Chair June 1, 2005
Project Management Group
By: Dr. Visavnath, Lecturer Comp. Engg. Deptt.
Presentation transcript:

Voting System Planning and Testing R. Michael Alvarez Caltech/MIT VTP Voting Systems Testing Summit 2005

Alvarez, Voting System Testing Summit 2005 Voting systems The entire process, end-to-end (registration, balloting, tabulation..) –Yes, precinct-voting devices are critical, but so are VR, absentee/early voting, tabulation –Planning and testing should involve the entire process, especially potential points of failure One important concern now are statewide voter registration systems.

Alvarez, Voting System Testing Summit 2005 Security Planning End-to-end security review, threat assessment Protect physical facility, use procedural controls (chain of custody) Software and hardware protection Many eyes involved in each step Openness and transparency

Alvarez, Voting System Testing Summit 2005 Example: L&A, Travis County

Alvarez, Voting System Testing Summit 2005 Contingency Planning Assume bad things will happen! Moynihan (2005), “Leveraging Collaborative Networks in Infrequent Emergency Situations”: 1. Pre-plan, but expect to plan more once emergency occurs 2. Identify necessary resources and match them with organizational competence 3. Create trust where you can, find alternatives when you can’t 4. Take advantage of technology to improve coordination and efficacy 5. Establish, formalize and communicate basic procedures

Alvarez, Voting System Testing Summit 2005 Testing In the US, we generally procure first, experiment later. Testing often only around procurement. We need to develop protocols for testing practices: –Pilot test voting systems, starting small, building to real experiments; using experimental methods, with treatment and control groups (and use real people!) –Field test usability, ballot designs, accessibility –Auditing, monitoring, data analysis from field –Security testing, including “tiger team” and parallel monitoring programs –Think of testing as a continuing and on-going process (before, during and after procurement) –Disseminate testing results, feedback into certification

Alvarez, Voting System Testing Summit 2005 Example: Buenos Aires

Alvarez, Voting System Testing Summit 2005 Conclusions and Questions Need to develop security plans Need to develop contingency plans Need testing protocols for voting systems –Standards or guidelines for plans and testing protocols? –Best practices? –Who should help develop plans and protocols (EAC, NIST, NAS, State/local officials)? –Resources?