Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Security Test Suite
Notes to Reviewers
Security Test Suite for the VVSG-NI, Version 1.0
April 1, 2009
This documentation available from this page represents a test suite for the security requirements in the next iteration of the Voluntary Voting System Guidelines (VVSG-NI). When the VVSG-NI is approved by the Election Assistance Commission (EAC), the test suites will be available for use by voting system testing laboratories as a common basis for testing voting systems to determine conformance to the VVSG-NI.
Test suite reviewers are advised to first read and understand the VVSG-NI, especially the sections relevant to the test suites under review, before reviewing the test suites. The requirements for security are found in Part 1 Sections 4 and 5 of the VVSG-NI:
- Part 1 Section 4:
http://www.eac.gov/vvsg/part_1_equipment_requirements/chapter_4_security_and_audit_architecture.aspx - Part 1 Section 5: http://www.eac.gov/vvsg/part_1_equipment_requirements/chapter_5_general_security_requirements.aspx
A complete version of the VVSG-NI in HTML, MS-Word, or PDF formats can be found at http://www.eac.gov/vvsg.
Commenting:
Please comment on the test suite by July 1, 2009 using the following list: sts-test [at] nist.gov (subject: Test%20Suite%20for%20VVSG-NI%20Cryptography%20and%20Access%20Control%20Requirements) (sts-test[at]nist[dot]gov).
You may provide comments directly in your email and/or send attachments in MS-Word or PDF. If you wish, you may embed your comments within the PDF documentation using the instructions provided here. In general, please tell us the features you like and provide us with comments, corrections, and suggestions on how to improve the test suites. Please provide the following items:
- Test suite version number (found in the test suite documentation, currently Version 1.0)
- Your name and affiliation (include contact information if desired)
- Identification of the particular tests and requirements in the VVSG-NI for which your comment applies
- If including suggestions for changes to the tests, a description of the suggested change including an adequate justification for the change, or a draft replacement for the test including the justification and any other necessary documentation or commentary
All comments will be considered. After all comments have been received and incorporated into the test suites, a new version of the test suites will be posted on the NIST web site.
The Security Test Suite is available here in PDF.