Commentary
Securing U.S. Elections Against Cyber Threats
Sep 22, 2020
Diversity of U.S. election systems means that developing a national picture of cybersecurity risk is challenging; each state and jurisdiction needs to evaluate and prioritize risk in the systems it oversees. Researchers from the Homeland Security Operational Analysis Center have developed a methodology for understanding and prioritizing cybersecurity risk in election infrastructure to assist state and local election officials.
Securing U.S. Elections
A Method for Prioritizing Cybersecurity Risk in Election Infrastructure
Download
Download eBook for Free
| Format | File Size | Notes |
|---|---|---|
| PDF file | 1.6 MB | Use Adobe Acrobat Reader version 10 or higher for the best experience. |
Purchase
Purchase Print Copy
| Format | List Price | Price | |
|---|---|---|---|
| Add to Cart | Paperback58 pages | $16.00 | $12.80 20% Web Discount |
Research Questions
- How can jurisdictions at each level prioritize their efforts to combat the risk of cyberattacks on their election systems?
- How can they assess the likelihood of a successful attack?
- How can they assess the scale and severity of an attack?
U.S. election systems are diverse in terms of governance and technology. This reflects the constitutional roles reserved for the states in administering and running elections but makes it challenging to develop a national picture of cybersecurity risk in election systems. Moreover, it requires each state and jurisdiction to evaluate and prioritize risk in the systems it oversees. With funding from the Cybersecurity and Infrastructure Security Agency, researchers from the Homeland Security Operational Analysis Center have developed a methodology for understanding and prioritizing cybersecurity risk in election infrastructure to assist state and local election officials.
Key Findings
- Election systems consist of multiple components (voter registration, pollbooks, voting machines, tabulation equipment, and official websites) that are administered and controlled at different levels, depending on the state.
Prioritizing risk across system components requires evaluating three factors
- The first is the likelihood of a successful attack, using fault tree analysis to determine the level of sophistication needed based on security controls implemented on each system component.
- The second is the scale of impact of an attack, based on whether a successful attack could affect a single location, a jurisdiction, or an entire state.
- The third is the severity of an attack, as measured by the extent to which it would impede election officials' efforts to carry out election processes.
Recommendations
- Officials can use the ratings or scores on likelihood, scale, and severity to prioritize efforts to protect the election infrastructure in their care.
- Armed with an understanding of potential adversaries' tiers, the capability required to execute a particular type of attack on a particular component, and the scale and severity that such an attack would have if successful, election officials can direct protective resources toward the types of prevention and remediation that make most sense for their specific jurisdictions.
Related Products
Table of Contents
Chapter One
Introduction
Chapter Two
An Approach to Prioritizing Risk
Chapter Three
Applying the Risk Prioritization in Context
Research conducted by
This research was sponsored by the National Risk Management Center, a division of the Cybersecurity and Infrastructure Security Agency, and conducted within the Strategy, Policy and Operations Program of the Homeland Security Operational Analysis Center (HSOAC).
This report is part of the RAND Corporation Research report series. RAND reports present research findings and objective analysis that address the challenges facing the public and private sectors. All RAND reports undergo rigorous peer review to ensure high standards for research quality and objectivity.
The RAND Corporation is a nonprofit institution that helps improve policy and decisionmaking through research and analysis. RAND's publications do not necessarily reflect the opinions of its research clients and sponsors.
Citation
Format:Hodgson, Quentin E., Edward W. Chan, Elizabeth Bodine-Baron, Bryan Boling, Benjamin Boudreaux, Bilyana Lilly, and Andrew J. Lohn, Securing U.S. Elections: A Method for Prioritizing Cybersecurity Risk in Election Infrastructure. Homeland Security Operational Analysis Center operated by the RAND Corporation, 2022. https://www.rand.org/pubs/research_reports/RRA512-1.html. Also available in print form.
Hodgson, Quentin E., Edward W. Chan, Elizabeth Bodine-Baron, Bryan Boling, Benjamin Boudreaux, Bilyana Lilly, and Andrew J. Lohn, Securing U.S. Elections: A Method for Prioritizing Cybersecurity Risk in Election Infrastructure, Homeland Security Operational Analysis Center operated by the RAND Corporation, RR-A512-1, 2022. As of December 10, 2023: https://www.rand.org/pubs/research_reports/RRA512-1.html