DOCSLIB.ORG

Cybersecurity in Elections

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Cybersecurity in Elections Cybersecurity in Elections Models of Interagency Collaboration Sam van der Staak and Peter Wolf © 2019 International Institute for Democracy and Electoral Assistance This publication is independent of specific national or political interests. Views expressed in this publication do not necessarily represent the views of International IDEA, its Board or its Council members. The electronic version of this publication is available under a Creative Commons Attribute- NonCommercial-ShareAlike 3.0 (CC BY-NC-SA 3.0) licence. You are free to copy, distribute and transmit the publication as well as to remix and adapt it, provided it is only for non-commercial purposes, that you appropriately attribute the publication, and that you distribute it under an identical licence. For more information on this licence visit the Creative Commons website: <http://creativecommons.org/licenses/ by-nc-sa/3.0/>. International IDEA Strömsborg SE–103 34 Stockholm Sweden Telephone: +46 8 698 37 00 Email: [email protected] Website: <http://www.idea.int> Design and layout: International IDEA Cover image: ID 125793633 © Blackboard373 | Dreamstime.com DOI: <https://doi.org/10.31752/idea.2019.23> ISBN: 978-91-7671-255-9 Created with Booktype: <https://www.booktype.pro> International IDEA Contents Preface ......................................................................................................................... 6 Acknowledgements .................................................................................................... 7 Abbreviations ............................................................................................................. 8 Definitions and scope of this document ................................................................ 10 1. Introduction .......................................................................................................... 12 2. Cyberthreats throughout the electoral cycle ..................................................... 15 2.1. Attacks targeting election-related technologies ................................................ 15 2.2. Vulnerabilities ................................................................................................ 18 2.3. Disinformation targeting the perceived integrity of the electoral process ........ 19 2.4. Adversaries ..................................................................................................... 23 2.5. Mitigation measures ....................................................................................... 24 2.6. The need for interagency collaboration .......................................................... 25 3. Models of interagency collaboration ................................................................. 27 3.1. Number and type of agencies involved ........................................................... 27 3.2. Dedicated forums and administrative bodies .................................................. 29 3.3. Cooperation between different levels of the EMB .......................................... 29 3.4. Cooperation with non-state agencies .............................................................. 30 4. Operationalizing interagency collaboration ..................................................... 32 4.1. Focus areas ..................................................................................................... 32 4.2. Setting up and facilitating interagency collaboration ...................................... 36 5. Conclusions and recommendations .................................................................. 40 Annex A: Case studies ............................................................................................. 43 Australia ................................................................................................................ 43 Austria .................................................................................................................. 45 Bulgaria ................................................................................................................. 46 Canada .................................................................................................................. 49 Denmark ............................................................................................................... 54 Estonia .................................................................................................................. 57 European Union ................................................................................................... 60 Finland ................................................................................................................. 63 Georgia ................................................................................................................. 67 Latvia .................................................................................................................... 69 Mexico .................................................................................................................. 71 Moldova ................................................................................................................ 73 The Netherlands ................................................................................................... 74 Norway ................................................................................................................. 76 Romania ............................................................................................................... 77 South Africa .......................................................................................................... 79 Sweden .................................................................................................................. 81 Ukraine ................................................................................................................. 84 United Kingdom ................................................................................................... 86 United States of America ....................................................................................... 89 References and further reading .............................................................................. 93 About the authors .................................................................................................... 98 About International IDEA ......................................................................................... 99 Cybersecurity in Elections Preface Information and communication technologies are increasingly prevalent in electoral management and democratic processes. These technologies offer numerous new opportunities, but also new threats. Cybersecurity is currently one of the greatest electoral challenges, even for countries without any form of electronic voting. It involves a broad range of actors, including electoral management bodies, cybersecurity expert bodies and security agencies. Many countries have found that interagency collaboration is essential for defending elections against digital threats. In recent years significant advances have been made in organizing such collaboration at the domestic and international levels. This guide tracks how countries are making progress on improving cybersecurity in elections. Based on an extensive collection of 20 case studies from all over the world, it provides lessons for those wanting to strengthen their defences against cyberattacks. As digital developments affect more of our societies every day, all countries will need to invest in protecting their elections from cyberthreats. We hope this guide will succeed in sharing these cybersecurity experiences with audiences far beyond the countries that had an opportunity to participate in our activities. International IDEA 6 International IDEA Acknowledgements Acknowledgements This Guide was developed in cooperation between the International IDEA’s Regional Europe Programme and Global Programme. Invaluable input, case study interviews and presentations were provided by individuals at a range of institutions, including the Australian Electoral Commission, the Austrian Federal Ministry of Interior, the Central Election Commission of the Republic of Bulgaria, Election Canada, the Ministry of Economic Affairs and the Interior in Denmark, the State Electoral Office of Estonia, the Cybersecurity Branch of the Estonian Information System Authority, the Finnish Legal Register Centre, the Georgian Central Election Commission, the State Chancellery of Latvia, the Central Election Commission of Latvia, the Central Election Commission of Lithuania, the Instituto Nacional Electoral of Mexico, the Central Electoral Commission of the Republic of Moldova, the Dutch Electoral Council, the Permanent Election Authority of Romania, the Independent Election Commission of South Africa, the Swedish Election Authority and the Swedish Civil Contingencies Agency, the Security Service of Ukraine, the UK Electoral Commission, the UK National Cybersecurity Centre and the US Election Assistance Commission. The Guide benefited from valuable input and suggestions from colleagues at International IDEA, including Therese Pearce Laanela and Adina Trunk, as well as diligent editing and note taking by Alyssa Bittner-Gibbs, Oliver Joseph, Dominika Michalak and Maryam Safi. We also extend our appreciation to Lisa Hagman and Lucy Smith for overseeing the production of this Guide. International IDEA 7 Cybersecurity in Elections Abbreviations CEC Central
Load more

Recommended publications
  • Regulating “Fake News” and Other Online Advertising
    FOOL ME ONCE: REGULATING “FAKE NEWS” AND OTHER ONLINE ADVERTISING ABBY K. WOOD* AND ANN M. RAVEL† A lack of transparency for online political advertising has long been a problem in American political campaigns. Disinformation attacks that American voters have experienced since the 2016 campaign have made the need for regulatory action more pressing. Internet platforms prefer self-regulation and have only recently come around to supporting proposed transparency legislation. While government must not regulate the content of political speech, it can, and should, force transparency into the process. We propose several interventions aimed at transparency. First, and most importantly, campaign finance regulators should require platforms to store and make available (1) ads run on their platforms, and (2) the audience at whom the ad was targeted. Audience availability can be structured to avoid privacy concerns, and it meets an important speech value in the “marketplace of ideas” theory of the First Amendment—that of enabling counter speech. Our proposed regulations would capture any political advertising, including disinformation, that is promoted via paid distribution on social media, as well as all other online political advertising. Second, existing loopholes in transparency regulations *. Associate Professor of Law, Political Science, and Public Policy at University of Southern California ([email protected]). †. Senior Fellow, Maplight Digital Deception Project and former Chair of the Federal Election Commission and California Fair Political Practices Commission. This article has benefited from insights from Rebecca Brown, Chris Elmendorf, and Rick Hasen. Daniel Brovman, Samantha Hay, Justin Mello, Brandon Thompson, and Caroline Yoon provided fantastic research assistance. Teresa Delgado and Alex Manzanares joyfully created the time and space required to focus on the project.
    [Show full text]
  • Section I – E Xecutive Summary
    SECTION I – EXECUTIVE SUMMARY The mission of the State Election Commission is to ensure every eligible citizen has the opportunity to register to vote, participate in fair and impartial elections, and have the assurance that their vote will count. Over the past decade, the business of conducting elections has become vastly more complex and subject to exceptional scrutiny by voters, candidates, media, and the legal community as never before. This requires everyone involved in the elections process, whether at the municipal, county, or state level, to become more technologically savvy, be better trained, and possess a higher level of election expertise. This is the environment in which the State Election Commission (SEC) must operate and carry out its mission. As the chief election agency in South Carolina, the SEC is tasked with the responsibility of overseeing the voter registration and election processes in the State. Everything that we do as an agency, our programs and our projects, emanates from these responsibilities. The primary mission and goal is to provide the highest level and quality of service possible within our statutory mandates. The SEC maintains the State’s computerized statewide voter registration system. The system contains voter registration data on every registered voter in South Carolina. All county voter registration offices have online access to the database. The SEC is responsible for printing the lists of registered voters for all elections held in the State, which averages approximately 300 each year. In combination with the driver’s license file, the system also serves as the source for jury selection lists in the State.
    [Show full text]
  • Informed Strategies of Political Action in IP-Based Social Media Andrea Knaut
    Informed Strategies of Political Action in IP-Based Social Media Andrea Knaut To cite this version: Andrea Knaut. Informed Strategies of Political Action in IP-Based Social Media. 10th International Conference on Human Choice and Computers (HCC), Sep 2012, Amsterdam, Netherlands. pp.376-386, 10.1007/978-3-642-33332-3_35. hal-01525114 HAL Id: hal-01525114 https://hal.inria.fr/hal-01525114 Submitted on 19 May 2017 HAL is a multi-disciplinary open access L’archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destinée au dépôt et à la diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publiés ou non, lished or not. The documents may come from émanant des établissements d’enseignement et de teaching and research institutions in France or recherche français ou étrangers, des laboratoires abroad, or from public or private research centers. publics ou privés. Distributed under a Creative Commons Attribution| 4.0 International License Informed Strategies of Political Action in IP-based Social Media Andrea Knaut Informatik in Bildung und Gesellschaft, Humboldt University, Berlin, Germany [email protected] Abstract. Political campaigning involves the intense usage of all possible media that the campaigners can afford to reach as many potential supporters as possible. Networked information technologies provide an endless source of applications and means of communication. When using computer technologies as a campaigning medium, it is essential to carefully assess the efforts concerning infrastructural and social requirements in consideration of the benefits gained. Therefore, the intertwined dimensions of political campaigning – content, infrastructure, community, protection of activists, planning, and archiving – are discussed as related to the involvement of IP-based media.
    [Show full text]
  • Building a Personal Political Brand Using Facebook and Instagram Advertising
    BUILDING A PERSONAL POLITICAL BRAND USING FACEBOOK AND INSTAGRAM ADVERTISING Jyväskylä University School of Business and Economics Master’s Thesis 2020 Author: Tommi Puomisto Subject: Digital Marketing and Corporate Communication Supervisor: Heikki Karjaluoto ABSTRACT Author Tommi Puomisto Title Building a personal political brand using Facebook and Instagram advertising Subject Type of work Digital Marketing and Corporate Master’s thesis Communication Date Number of pages 16.6.2020 86 The how and where of political marketing and branding has changed significantly in the past decade. Social networking sites are increasingly used by actors like political parties to brand themselves and interact digitally with voters in real-time. While political branding has been researched extensively from the external perspective of the audience, the internal perspective, “brand identity”, and especially that of individual politicians has remained under-researched, thus presenting a potential research gap. The goal of this thesis is to increase the understanding of the role of Facebook and Instagram advertising in building a personal political brand from the internal perspective of the brand owner and internal stakeholders, therefore addressing the call for further research on the internal perspective of branding. This study is a mixed methods research and was carried out as a single case study. The case was an election campaign of a single political candidate in the Finnish parliamentary elections of 2019. Qualitative data was collected through semi-structured interviews, which were processed through the thematic analysis approach. Quantitative secondary performance data of the campaign’s social media advertising was then analyzed and compared with the findings of the qualitative thematic analysis.
    [Show full text]
  • The Cost of Democracy Essays on Political Finance in Latin America
    The Cost of Democracy Essays on Political Finance in Latin America Kevin Casas-Zamora Daniel Zovatto © 2016 International Institute for Democracy and Electoral Assistance © 2016 Organization of American States © 2016 Inter-American Dialogue International IDEA Organization of American States Inter-American Dialogue Strömsborg 17th Street and Constitution Avenue, NW 1211 Connecticut Ave., NW SE-103 34 STOCKHOLM Washington, DC, 20006 Suite 510 SWEDEN, USA Washington, DC 20036 www.idea.int www.oas.org USA www.thedialogue.org Parts of this publication were first published in Spanish inFinanciamento de los partidos políticos en América Latina (Mexico City: International IDEA/Organization of American States/Universidad Nacional Autónoma de México, 2011) The electronic version of this publication is available under a Creative Commons Attribute-NonCommercial- ShareAlike 3.0 licence. You are free to copy, distribute and transmit the publication as well as to remix and adapt it provided it is only for non-commercial purposes, that you appropriately attribute the publication, and that you distribute it under an identical licence. For more information on this licence see: <http://creativecommons.org/ licenses/by-nc-sa/3.0/>. Translation: Charles Roberts Graphic design: Catalina Rojas Piza Printed in Costa Rica ISBN: 978-91-7671-032-6 We dedicate this book to the memory of Rodolfo Cerdas, an essential intellectual, generous mentor, and dear friend of both authors. CONTENTS Preface by José Woldenberg ......................................................................................................9
    [Show full text]
  • Observing the 2010 Presidential Elections in Guinea
    Observing the 2010 Presidential Elections in Guinea Final Report Waging Peace. Fighting Disease. Building Hope. Map of Guinea1 1 For the purposes of this report, we will be using the following names for the regions of Guinea: Upper Guinea, Middle Guinea, Lower Guinea, and the Forest Region. Observing the 2010 Presidential Elections in Guinea Final Report One Copenhill 453 Freedom Parkway Atlanta, GA 30307 (404) 420-5188 Fax (404) 420-5196 www.cartercenter.org The Carter Center Contents Foreword ..................................1 Proxy Voting and Participation of Executive Summary .........................2 Marginalized Groups ......................43 The Carter Center Election Access for Domestic Observers and Observation Mission in Guinea ...............5 Party Representatives ......................44 The Story of the Guinean Security ................................45 Presidential Elections ........................8 Closing and Counting ......................46 Electoral History and Political Background Tabulation .............................48 Before 2008 ..............................8 Election Dispute Resolution and the From the CNDD Regime to the Results Process ...........................51 Transition Period ..........................9 Disputes Regarding First-Round Results ........53 Chronology of the First and Disputes Regarding Second-Round Results ......54 Second Rounds ...........................10 Conclusion and Recommendations for Electoral Institutions and the Framework for the Future Elections ...........................57
    [Show full text]
  • Automated Coding of Political Campaign Advertisement Videos: an Empirical Validation Study∗
    Automated Coding of Political Campaign Advertisement Videos: An Empirical Validation Study∗ Alexander Tarr† June Hwang‡ Kosuke Imai§ First Draft: April 19, 2019 This Draft: September 26, 2021 Abstract Video advertisements, either through television or the Internet, play an essential role in modern political campaigns. For over two decades, researchers have studied television video ads by analyzing the hand-coded data from the Wisconsin Advertising Project and its successor, the Wesleyan Media Project (WMP). Unfortunately, manually coding more than a hundred of variables, such as issue mentions, opponent appearance, and negativity, for many videos is a laborious and expensive process. We propose to automatically code campaign advertisement videos. Applying state-of-the-art machine learning methods, we extract various audio and image features from each video file. We show that our machine coding is comparable to human coding for many variables of the WMP data sets. Since many candidates make their advertisement videos available on the Internet, automated coding can dramatically improve the efficiency and scope of campaign advertisement research. Open-source software package is available for implementing the proposed methodology. Key Words: audio data, computer vision, image data, machine learning, text data, video data ∗Open-source Python package campvideo is available for implementing the proposed methodology (https:// test.pypi.org/project/campvideo). We thank Dean Knox, Travis Ridout, and seminar participants at Harvard University for helpful comments and discussions. We also thank Austin Colorite, Avner Goldstein, Allison Halter, Vilma Jimenez, Grace Rehaut, David Ribar, Tyler Simko, Rafael Tafur, and Shun Yamaya for their valuable research assistance. †Graduate Student, Department of Electrical Engineering, Princeton University, Princeton NJ 08544.
    [Show full text]
  • PACKAGING POLITICS by Catherine Suzanne Galloway a Dissertation
    PACKAGING POLITICS by Catherine Suzanne Galloway A dissertation submitted in partial satisfaction of the requirements for the degree of Doctor of Philosophy in Political Science in the Graduate Division of the University of California at Berkeley Committee in charge Professor Jack Citrin, Chair Professor Eric Schickler Professor Taeku Lee Professor Tom Goldstein Fall 2012 Abstract Packaging Politics by Catherine Suzanne Galloway Doctor of Philosophy in Political Science University of California, Berkeley Professor Jack Citrin, Chair The United States, with its early consumerist orientation, has a lengthy history of drawing on similar techniques to influence popular opinion about political issues and candidates as are used by businesses to market their wares to consumers. Packaging Politics looks at how the rise of consumer culture over the past 60 years has influenced presidential campaigning and political culture more broadly. Drawing on interviews with political consultants, political reporters, marketing experts and communications scholars, Packaging Politics explores the formal and informal ways that commercial marketing methods – specifically emotional and open source branding and micro and behavioral targeting – have migrated to the political realm, and how they play out in campaigns, specifically in presidential races. Heading into the 2012 elections, how much truth is there to the notion that selling politicians is like “selling soap”? What is the difference today between citizens and consumers? And how is the political process being transformed, for better or for worse, by the use of increasingly sophisticated marketing techniques? 1 Packaging Politics is dedicated to my parents, Russell & Nancy Galloway & to my professor and friend Jack Citrin i CHAPTER 1: INTRODUCTION Politics, after all, is about marketing – about projecting and selling an image, stoking aspirations, moving people to identify, evangelize, and consume.
    [Show full text]
  • Hacks, Leaks and Disruptions | Russian Cyber Strategies
    CHAILLOT PAPER Nº 148 — October 2018 Hacks, leaks and disruptions Russian cyber strategies EDITED BY Nicu Popescu and Stanislav Secrieru WITH CONTRIBUTIONS FROM Siim Alatalu, Irina Borogan, Elena Chernenko, Sven Herpig, Oscar Jonsson, Xymena Kurowska, Jarno Limnell, Patryk Pawlak, Piret Pernik, Thomas Reinhold, Anatoly Reshetnikov, Andrei Soldatov and Jean-Baptiste Jeangène Vilmer Chaillot Papers HACKS, LEAKS AND DISRUPTIONS RUSSIAN CYBER STRATEGIES Edited by Nicu Popescu and Stanislav Secrieru CHAILLOT PAPERS October 2018 148 Disclaimer The views expressed in this Chaillot Paper are solely those of the authors and do not necessarily reflect the views of the Institute or of the European Union. European Union Institute for Security Studies Paris Director: Gustav Lindstrom © EU Institute for Security Studies, 2018. Reproduction is authorised, provided prior permission is sought from the Institute and the source is acknowledged, save where otherwise stated. Contents Executive summary 5 Introduction: Russia’s cyber prowess – where, how and what for? 9 Nicu Popescu and Stanislav Secrieru Russia’s cyber posture Russia’s approach to cyber: the best defence is a good offence 15 1 Andrei Soldatov and Irina Borogan Russia’s trolling complex at home and abroad 25 2 Xymena Kurowska and Anatoly Reshetnikov Spotting the bear: credible attribution and Russian 3 operations in cyberspace 33 Sven Herpig and Thomas Reinhold Russia’s cyber diplomacy 43 4 Elena Chernenko Case studies of Russian cyberattacks The early days of cyberattacks: 5 the cases of Estonia,
    [Show full text]
  • Student Voting and College Political Campaign-Related Activities in 2020
    ISSUE BRIEF STUDENT VOTING AND COLLEGE POLITICAL CAMPAIGN-RELATED ACTIVITIES IN 2020 The COVID-19 pandemic is contextualizing nearly every aspect of life on and off our nation’s campuses. Col- lege students are in places they never dreamed they’d be . literally. Some are in campus housing, or sharing an off-campus apartment with other students, as planned. Others are commuting to school from home, also as planned. But for many students, the college experience is playing out in an unanticipated remote location—or may shift that way at a moment’s notice. Student voter registration, casting ballots (by mail or in person), and campaign-related activities on campus are guaranteed to feel and be different in most college communities during this fall’s election season. This issue brief speaks to institutional obligations and other matters relating to student voting. It also updates a September 2018 publication which offered illustrative permissible and impermissible college and university activities in connection with campaigns for public office. Within the context of the Supreme Court’s admonition that residency duration and other voter registration requirements must serve a compelling governmental interest, voting is controlled by the states. In normal times, presumptively simple steps necessary to participate in our country’s democratic process can quickly feel complex to students. As Tufts University’s Institute for Democracy & Higher Education recently noted, “Decentralization has resulted in a morass of inconsistent and confusing registration and voting conditions . Uncertainty and unnecessary inconvenience are bad for all voters, but they uniquely affect the nation’s 20 million college and university students.” With this fall promising to be a more uncertain time than any in memory for our nation’s college students, their anxiety is sure to be amped up regarding how, when, and where to cast a ballot.
    [Show full text]
  • Council of Europe Study on the Use of Internet in Electoral Campaigns
    INTERNET AND ELECTORAL CAMPAIGNS Study on the use of internet in electoral campaigns PREMS 039718 ENG Council of Europe study Prepared by the committee of experts on media pluralism and transparency DGI(2017)11 of media ownership (MSI-MED) Study on the use of internet in electoral campaigns Council of Europe study, DGI(2017)11 Prepared by the committee of experts on media pluralism and transparency of media ownership (MSI-MED) Rapporteur: Damian Tambini Council of Europe French edition: Étude relative à l’utilisation d’internet dans le cadre des campagnes électorales The opinions expressed in this work are the responsibility of the authors and do not necessarily reflect the official policy of the Council of Europe. All requests concerning the reproduction or translation of all or part of this document should be addressed to the Directorate of Communication (F-67075 Strasbourg Cedex or [email protected]). All other correspondence concerning this document should be addressed to the Directorate General Human Rights and Rule of Law. Cover design and layout: Documents and Publications Production Department (SPDP), Council of Europe Photos: Shutterstock This publication has not been copy-edited by the SPDP Editorial Unit to correct typographical and grammatical errors. © Council of Europe, April 2018 Printed at the Council of Europe Contents INTRODUCTION 5 1. WHAT COULD POSSIBLY GO WRONG? SOCIAL MEDIA, ELECTIONS AND DEMOCRATIC LEGITIMACY 7 2. BACKGROUND: REGULATION OF ELECTORAL CAMPAIGNS: FAIR, CLEAN AND CLEAR 9 (a) Objectives 9 (b) International standards and principles 10 3. THE CHANGING REALITY OF POLITICAL CAMPAIGNING 13 (a) Spending 13 (b) New Digital Marketing Techniques and their application in politics 14 4.
    [Show full text]
  • Democracy Reform: a Nationwide Surveys of Registered Voters; Each Wave Represents Approximately 1,000 Interviews Taken Over the Prior Three-Five Days
    Update: Thursday, June 17th Democracy Reform: A Nationwide surveys of registered voters; Each wave represents approximately 1,000 interviews taken over the prior three-five days. GuideLatest wave conducted for June Advocates10-June 14, 2021. For more info, visit navigatorresearch.org Key Takeaways: • While Americans are divided on how the country is doing, most think we need major changes in how our government works. • A majority support the For the People Act and see urgency in its passage before next year’s midterm elections. • Out of a range of For the People Act proposals, those that curb corruption, create accountability, and ensure absentee ballot access are seen as those that would have the greatest personal impact for Americans. Nationwide surveys of registered voters; Each wave represents approximately 1,000 interviews taken over the prior three-five days. Latest wave conducted June 10-June 14, 2021. For more info, visit navigatorresearch.org Americans Are Divided on the State of the Country and Want “Major Changes” in How Government Works Nearly two in three Americans want “major changes” to the way our government works (63%). In general, do you think America's best days are ahead, Generally speaking, do you think we need to America is at its peak, or America is in decline? make major changes in the way our government works, minor changes, or no changes at all? America’s best America is America is in Major Minor No changes Total days are ahead at its peak Not sure decline changes changes Don’t know at all Changes Overall 40 7 12 41 63 27 5 5 90 Democrats 57 10 12 21 60 31 6 92 Independents 32 7 23 38 64 23 9 4 87 Republicans 23 5 9 63 67 23 3 7 90 Black 57 13 13 17 62 24 11 86 Hispanic 39 12 16 33 61 29 5 5 91 White 36 5 12 47 65 26 4 5 91 Asian 40 12 20 28 45 40 13 86 NationwideNationwide survey surveys of 1,001 of registered registered voters; voters Eachconducted wave representsJune 10-June approximately 14, 2021.
    [Show full text]