Skip to main content
U.S. flag

An official website of the United States government

Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock ( ) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Test Assertions for VVSG 1.1, Volume 1, Section 7.6.1, September 23, 2016

VVSG 1.1, Vol 1, Requirement 7.6.1: Data Transmission

  1. All systems that transmit data over public telecommunications networks shall:
    1. Preserve the secrecy of voter ballot selections and prevent anyone from violating ballot privacy
    2. Employ digital signatures for all communications between the vote server and other devices that communicate with the server over the network
    3. Require that at least two authorized election officials activate any critical operation regarding the processing of ballots transmitted over a public communications network, i.e. the passwords or cryptographic keys of at least two authorized election officials are required to perform processing of votes
  2. Cryptography used to provide protection of data transmitted over public telecommunications networks shall use NIST approved algorithms with security strength of at least 112 bits.
  3. Message Authentication Code (MAC) keys shall have a security strength of at least 112 bits. The security strengths of cryptographic algorithms can be found in NIST Special Publication 800-57: Recommendation for Key Management – Part 1 General.

 

Test Assertions

TA761ai-1: IF a voting system transmits data over at least one public transportation network THEN the voting system SHALL preserve the secrecy of voter ballot selections.

TA761ai-2: IF a voting system transmits data over at least one public transportation network THEN the voting system SHALL prevent anyone from violating ballot privacy, including, but not limited to, the identity of the ballot caster.

TA761aii-1: IF a voting system transmits data over at least one public telecommunications network THEN the voting system SHALL employ cryptographic digital signatures for all communications between the vote server and other devices that communicate with the server over that network.

TA761aiii-1: A voting system that transmits data over at least one public transportation network SHALL NOT allow any critical operation regarding the processing of ballots transmitted over a public communications network without the authorization of at least two election officials.          

TA761aiii-1-1: Such critical operations SHALL include, but not be limited to, the aggregation and sending of votes and vote tabulations.

TA761b-1:  Cryptography used to provide protection of data transmitted over public telecommunications networks SHALL use NIST approved algorithms with security strength of at least 112 bits.

TA761c-1:  Message Authentication Code (MAC) keys SHALL have a security strength of at least 112 bits.

 

Created September 22, 2016, Updated October 19, 2016