https://www.americancityandcounty.com/wp-content/themes/acc_child/assets/images/logo/footer-logo.png
  • Home
  • Co-op Solutions
  • Hybrid Work
  • Commentaries
  • News
  • In-Depth
  • Multimedia
    • Back
    • Podcast
    • Latest videos
    • Product Guides
  • Resources & Events
    • Back
    • Resources
    • Webinars
    • White Papers
    • IWCE 2022
    • How to Contribute
    • Municipal Cost Index – Archive
    • Equipment Watch Page
    • American City & County Awards
  • About Us
    • Back
    • About Us
    • Contact Us
    • Advertise
    • Cookie Policy
    • Privacy Statement
    • Terms of Service
American City and County
  • NEWSLETTER
  • Home
  • Co-op Solutions
  • Hybrid Work
  • Commentaries
  • News
  • In-Depth
  • Multimedia
    • Back
    • Podcasts
    • Latest videos
    • Product Guides
  • Resources/Events
    • Back
    • Webinars
    • White Papers/eBooks
    • IWCE Expo
    • Calendar of Events
    • How to Contribute
    • American City & County Awards
    • Municipal Cost Index
    • Equipment Watch Page
  • About Us
    • Back
    • About Us
    • Contact Us
    • Advertise
    • Cookie Policy
    • Privacy Stament
    • Terms of Service
  • newsletter
  • Administration
  • Economy & Finance
  • Procurement
  • Public Safety
  • Public Works & Utilities
  • Smart Cities & Technology
  • Magazine
acc.com

Commentaries


Commentary

Elections, cyber vulnerabilities and the human factor

Elections, cyber vulnerabilities and the human factor

  • Written by Brad Keenan
  • 31st October 2018

It’s quite possible that the biggest vulnerability of local elections systems are the components that walk around on two feet. All too often, it’s human error giving cyber criminals access into voter registration databases and polling devices. Election officials, agency employees and even election day poll workers may not realize how they may unknowingly provide login credentials through a phishing attempt, or transfer data to an unsecure device like a flash drive. The human factor in cybersecurity can have major consequences, including potentially affecting the outcome of an election.

Public entities face a high level of scrutiny over cybersecurity, and voters expect that their choices will count as cast. Voter registration rolls and election systems security have become a focus of national attention and concern. The Department of Homeland Security reported that during the 2016 general election, 21 state systems were targeted and a “small number of systems” were legitimately penetrated by cyber attacks. A Bloomberg investigative report revealed that 39 states became hacking targets during the 2016 elections, and a successful attack compromised 90,000 voter records in the state of Illinois. Such cyber intrusions are expected to be a major risk during the November 2018 midterm elections.

Cyber security training is an essential part of protecting the integrity of election systems. Election workers need to learn how to create strong passwords, recognize phishing and other malicious emails, avoid dangerous applications, and take necessary precautions when dealing with sensitive information. Following the 2016 elections, many agencies throughout the country invested millions of dollars to help secure their platforms. Even with the millions invested into security software, training everyone who uses these systems is the best way to begin to protect against tampering that could change the outcome of an election. Even with the world’s most secure hardware and software protections, human error or negligence will always be an issue.

Any part of the system connected to the Internet is a possible back door for election meddling. When election officials make Internet-based connections, they must be certain they are sending that data to the right place and the entire route is secured. Employees need to be trained to identify the correct destinations for sensitive registration and polling data and how to keep their communications secure. If a hacker gets into the system with credentials stolen from an unwitting employee or through a compromised communication channel, a lot of bad things can happen:

  • Impersonation of actual voters by others, or vote casting under fake registrations created by hackers
  • Voter suppression
  • Registration information discrepancies requiring provisional ballot casting
  • Denial of service attacks on official web sites that prevent voter registration and discourage election participation
  • “Spoofing,” or the creation of fake web sites, to distribute misleading information about registration or polling locations, or reporting of false election results

California implemented new Poll Worker Training Standards for 2018 that reflect lessons learned since the original standards were issued in 2006. The new training standards, posted on the Secretary of State’s web site, include an extensive section on security and tampering of voting systems and materials used on election day. These standards are designed to provide local jurisdictions a guideline for developing their specific poll worker training.

The Defending Digital Democracy Project at the Harvard Kennedy School outlines five key points every election staffer needs to know and observe about cybersecurity:

  • Everyone is a security official – everyone is responsible for being vigilant and reporting irregularities.
  • Use two-factor authentication to protect your access credentials for elections systems, email and social media, and data storage. The extra step is an effective way to prevent unauthorized access.
  • Create long, strong passwords to thwart automated hacking.
  • Keep credentials secure and never share them with anyone else, regardless of who they are.
  • Use best practices for cyber hygiene, including installing patches and software updates, and up-to-date antivirus software.

Creating and maintaining a strong culture of cybersecurity in your organization is an effective way to help prevent the human factor from compromising your electoral processes. The 2018 midterm elections are only a few weeks away. Your election systems are in place. Are your employees and your poll workers ready to do their part to protect this election’s integrity?

Brad Keenan is an Account Executive at Keenan & Associates specializing in cyber liability and policy administration. His email address is [email protected].

 

Tags: Administration Expert Insights Commentaries Commentaries Commentary

Most Recent


  • materials
    Public buyers have several options to keep problem materials out of the waste stream
    Cities and counties are taking multiple steps towards sustainability, says Curran Hughes, co-founder and president of Renegade Plastics, a fabric product manufacturer that offers an alternative to PVC (polyvinyl chloride)-coated fabrics. Its low carbon coated fabrics curtail plastic waste and reduce greenhouse gas emissions, according to the company. “Local governments are doing a nice job […]
  • environmental
    Seasons change: Addressing environmental issues takes many forms
    With extreme temperatures, increasing natural disasters and seasonal changes that are no longer predictable, environmental concerns are growing across the world. As a result, government and educational institutions, through their political bodies and leadership, are now mandating and prioritizing sustainability for their communities. The measures being taken, and goals being met, take many forms to […]
  • federal grants
    Best laid plans: Here are a few steps cities and counties should take when a federal grant comes their way
    Part 1 of this report on managing federal grants and funds appeared in the June 2023 issue of Government Procurement. In recent years, Congress has approved legislation giving local governments access to new sources of federal grants and funds. The laws include: American Rescue Plan Act (APRA), Coronavirus Aid, Relief, and Economic Security Act (CARES), […]
  • sustainability
    5 ways procurement can lead on government sustainability
    A seat at the table.” “No longer a back-office function.” “Purchasing is tactical, procurement is strategic.” You can’t spend a day diving into the world of public sector procurement without running headlong into this sentiment. Conference keynotes, webinars, certification curricula and more have been dedicated to advancing the premise that procurement is at its best […]

Leave a comment Cancel reply

-or-

Log in with your American City and County account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Lessons from your friendly neighborhood public service employees
  • Harris County deploys next-generation security in 150 public buildings
  • How local governments can get ahead of the infrastructure wave: Strategies to mitigate risk
  • Prioritizing rapid restore leads to stronger ransomware attack recovery

WHITE PAPERS


7 Resources to Level-up Your Federal Grants Administration and Compliance

5th September 2023

Elevator Phone Line Replacement Strategy | A Guide to Reliable, Code-Compliant Solutions

29th August 2023

2023 State of Public Sourcing Report: The Bright Future of Public Procurement

23rd August 2023
view all

Webinars


Grant Preparedness: Unlocking Funding Opportunities for Your Success

10th August 2023

2023 State of Public Sourcing: Taking Local Governments into a Bright Future

1st August 2023

Stop Playing with Fire: How to Manage Infrastructure Asset Risk So You Know You’re Covered

20th June 2023
view all

Podcast


Young Leaders Episode 4 – Cyril Jefferson – City Councilman, High Point, North Carolina

13th October 2020

Young Leaders Episode 3 – Shannon Hardin – City Council President, Columbus, Ohio

27th July 2020

Young Leaders Episode 2 – Christian Williams – Development Services Planner, Goodyear, Ariz.

1st July 2020
view all

GALLERIES


Gallery: Hottest temperatures recorded in American cities during July

12th September 2023

The top 10 Asthma Capitals for 2023

7th September 2023

U.S. cities with the cleanest air from latest “State of the Air” report

5th September 2023
view all

Twitter


Newsletters

Sign up for American City & County’s newsletters to receive regular news and information updates about local governments.

Resale Insights Dashboard

The Resale Insights Dashboard provides model-level data for the entire used equipment market to help you save time and money.

Municipal Cost Index

Updated monthly since 1978, our exclusive Municipal Cost Index shows the effects of inflation on the cost of providing municipal services

Media Kit and Advertising

Want to reach our digital audience? Learn more here.

DISCOVER MORE FROM INFORMA TECH

  • IWCE’s Urgent Communications
  • IWCE Expo

WORKING WITH US

  • About Us
  • Contact Us

FOLLOW American City and County ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2023 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.