SECURE IT Act Strengthening Election Cybersecurity to Uphold Respect for Elections through Independent Testing Act
Impact
If enacted, the SECURE IT Act would have a significant impact on the testing protocols for voting systems within the United States. The introduction of mandatory penetration testing is expected to improve the overall security posture of election systems across states. Furthermore, the establishment of an Independent Security Testing and Coordinated Vulnerability Disclosure Pilot Program would provide a clear framework for cybersecurity researchers to identify and report vulnerabilities, enhancing collaboration between vendors and the cybersecurity community.
Summary
House Bill 6315, known as the SECURE IT Act, aims to amend the Help America Vote Act of 2002 by introducing measures to enhance the security of election systems. The bill mandates the Election Assistance Commission to conduct penetration testing as part of the testing and certification processes for voting systems. This provision is intended to ensure that both hardware and software used in elections are rigorously tested for security vulnerabilities, thereby increasing public confidence in the electoral process.
Contention
Notable points of contention surrounding HB6315 include the implications of required cybersecurity measures on election system vendors. Supporters argue that security testing is essential to protect the integrity of elections, while opponents may express concerns over the costs and potential regulatory burdens that could be imposed on vendors. Moreover, the voluntary aspect of participation in the pilot program raises questions about effectiveness and adherence to established security protocols.
Establishes an election security navigator program within the state board of elections to provide assistance for local boards of elections in mitigating cybersecurity threats, improving physical and operational preparedness, and enhancing public confidence in the integrity of elections.