"A Plan to Crowdsource Voting Machines’ Security Problems"
The Information Technology-Information Sharing and Analysis Center (IT-ISAC), a northern Virginia infrastructure-threat clearinghouse, is exploring the possibility of creating a coordinated vulnerability disclosure (CVD) program, which would send alerts to voting system companies about security vulnerabilities in their machines. The IT-ISAC is reviewing responses from its request for information in relation to how comprehensive the CVD program should be in scope. The input touches on whether vulnerabilities should only be examined in voting machines or should there also be focus on security flaws contained by other election-related infrastructure. This article continues to discuss what is being considered in the creation of a CVD program to help voting-system manufacturers learn about vulnerabilities in their machines in addition to other efforts to improve election security.
Defense One reports "A Plan to Crowdsource Voting Machines’ Security Problems"