Presentation is loading. Please wait.

Presentation is loading. Please wait.

Election Security Presented by: michelle K. tassinari Director and Legal counsel Elections division Office of the secretary of the commonwealth.

Published byGrzegorz Wolski Modified over 4 years ago

Similar presentations

Presentation on theme: "Election Security Presented by: michelle K. tassinari Director and Legal counsel Elections division Office of the secretary of the commonwealth."— Presentation transcript:

1 Election Security Presented by: michelle K. tassinari Director and Legal counsel Elections division Office of the secretary of the commonwealth Date FRIDAY, JUNE 7, 2019

2 Election Security Components of a Voting System: Voting equipment
Statewide database of registered voters Electronic poll books

3 Voting Equipment Federal and state standards for certification of voting equipment Tabulators not connected to the internet Public logic and accuracy testing of tabulators Physical security measures of equipment: Ballot boxes are locked Tabulator locks into the ballot box Program cards locked into tabulator Paper ballots

4 Statewide Database (VRIS)
Can only be accessed through the closed network that connects each of the local election offices to the SOC Users can only access VRIS using the workstations and equipment provided by the SOC Network monitoring Data is backed up nightly Back ups are tested Data audits conducted regularly

5 Electronic Poll Books MA law allows for use in elections, but must be certified by the SOC Currently no systems are certified Used previously for early voting Currently working on security standards and protocols

6 General Cybersecurity
SOC maintains a full cybersecurity team staffed by experienced professionals Use of standards and protocols set by the National Institute of Standards and Technology Passwords, updates, patching, antivirus programs, physical security Requiring cybersecurity training for all users Working with state and federal partners DHS, FBI MA Fusion Center and Executive Office of Technology Services and Security MS-ISAC: Multi-State Information Sharing and Analysis Center

7 Challenges Cybersecurity requires protecting the entire infrastructure, not just elections Providing support to local election officials Many do not have IT staff readily available Technological skills vary Explaining the threats Phishing s Clickjacking DDOS Attacks DNS Compromise SQL Injections Misinformation Campaigns Social Engineering Social Media Compromise Phishing when a scammer uses fraudulent  s or texts, or copycat websites to get you to share valuable personal information. Clickjacking is an attack that tricks a web user into clicking a button, a link or a picture, etc. that the web user didn't intend to click. DDOS is a distributed denial-of-service (DDoS) attack occurs when multiple systems flood the bandwidth or resources of a targeted system. DNS Compromise  is an exploit in which an attacker takes advantage of vulnerabilities in the domain name system. – entire presentation topic DNS is basically PHONEBOOK directory of the internet. SQL injection is a type of attack that can give an adversary complete control over your web application database by inserting arbitrary SQL code into a database query. Misinformation Campaigns or fake news or disinformation meant to confuse or cause distrust or havoc. Social Engineering the use of deception to manipulate individuals into divulging confidential or personal information. Social Media Compromise – Facebook, Twitter, Snapchat, Instagram, Linkedin etc…

8 Contact info: Michelle K. Tassinari Director and Legal Counsel, Elections Division Office of the Secretary of the Commonwealth (617)

Download ppt "Election Security Presented by: michelle K. tassinari Director and Legal counsel Elections division Office of the secretary of the commonwealth."

Similar presentations

Election Night Results and Reporting Webinar 1. Application Overview Election Results Reporting provides an easy and just-in-time reporting of Statewide.

Election Night Results and Reporting Webinar 1. Application Overview Election Results Reporting provides an easy and just-in-time reporting of Statewide.
Social Network Security Issues: Social Engineering and Phishing Attacks Jeffrey Allen, Leon Gomez, Marlon Green, Phillip Ricciardi, Christian Sanabria.

Social Network Security Issues: Social Engineering and Phishing Attacks Jeffrey Allen, Leon Gomez, Marlon Green, Phillip Ricciardi, Christian Sanabria.
Charlie Daniels Arkansas Secretary of State HAVA Compliant Voting Systems Security Considerations General Recommendations to Enhance Security and Integrity.

Charlie Daniels Arkansas Secretary of State HAVA Compliant Voting Systems Security Considerations General Recommendations to Enhance Security and Integrity.
DOs & DON’Ts of EARLY VOTING Michael Winn Director of Elections Travis County Texas.

DOs & DON’Ts of EARLY VOTING Michael Winn Director of Elections Travis County Texas.
Election Observer Training 2008 Elections Certification & Training Program 360.902.4180.

Election Observer Training 2008 Elections Certification & Training Program
Primary Election Process Party Executive Committee Certification Presented by: Elections Division of the Mississippi Secretary of State’s Office.

Primary Election Process Party Executive Committee Certification Presented by: Elections Division of the Mississippi Secretary of State’s Office.
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
Electronic Poll Book Statutory Overview and VSTOP December 18, 2013 Brad King Co-Director, Indiana Election Division 2014 Election Administrators Conference.

Electronic Poll Book Statutory Overview and VSTOP December 18, 2013 Brad King Co-Director, Indiana Election Division 2014 Election Administrators Conference.
Norman SecureSurf Protect your users when surfing the Internet.

Norman SecureSurf Protect your users when surfing the Internet.
External Threats to Healthcare Data Joshua Spencer, CPHIMS, C | EH.

External Threats to Healthcare Data Joshua Spencer, CPHIMS, C | EH.
1 Internet Security Threat Report X Internet Security Threat Report VI Figure 1.Distribution Of Attacks Targeting Web Browsers.

1 Internet Security Threat Report X Internet Security Threat Report VI Figure 1.Distribution Of Attacks Targeting Web Browsers.
Council of Europe e-voting meeting Progress Report – Austria Andreas Ehringfeld INSO - Industrial Software Institute of Computer Aided Automation | Vienna.

Council of Europe e-voting meeting Progress Report – Austria Andreas Ehringfeld INSO - Industrial Software Institute of Computer Aided Automation | Vienna.
Marketing of Information Security Products. The business case for Information Security Management.

Marketing of Information Security Products. The business case for Information Security Management.
MassVetsAdvisor.org An easy to use website that combines Veteran benefits and broadband adoption. CONNECTING THE COMMONWEALTH WWW.MASSBROADBAND.ORG.

MassVetsAdvisor.org An easy to use website that combines Veteran benefits and broadband adoption. CONNECTING THE COMMONWEALTH
ELECTIONS Upcoming Trends. ELECTIONS ADMINSTRATORS Duties o Protect the security and integrity of the elections o Redistricting o Secure polling locations.

ELECTIONS Upcoming Trends. ELECTIONS ADMINSTRATORS Duties o Protect the security and integrity of the elections o Redistricting o Secure polling locations.
Secretary of State Voting System Security Standards Juanita Woods Secretary of State Elections Division HAVA Information Security.

Secretary of State Voting System Security Standards Juanita Woods Secretary of State Elections Division HAVA Information Security.
Georgia Electronic Voting System Testing and Security Voting Systems Testing Summit November 29, 2005.

Georgia Electronic Voting System Testing and Security Voting Systems Testing Summit November 29, 2005.
Maritime Cyber Vulnerabilities in the Energy Sector Center for Joint Operations of the Sea ODU Maritime Institute Students Crow, Fresco, Lee.

Maritime Cyber Vulnerabilities in the Energy Sector Center for Joint Operations of the Sea ODU Maritime Institute Students Crow, Fresco, Lee.
Phishing: Trends and Countermeasures Blaine Wilson.

Phishing: Trends and Countermeasures Blaine Wilson.
How and what to observe in e-enabled elections Presentation by Mats Lindberg, Election Adviser, Organisation for Security and Co-operation in Europe (OSCE)

How and what to observe in e-enabled elections Presentation by Mats Lindberg, Election Adviser, Organisation for Security and Co-operation in Europe (OSCE)

Similar presentations

Ads by Google