National: States slow to spend funds to enhance election security, report finds | CNN

US states and territories given $380 million in combined federal funds for election upgrades last year only spent 8.1% of that money in the first six months it was available, the agency responsible for distributing the funds said on Thursday. That money was distributed as part of a 2018 bill, which was passed after Homeland Security secretary Kirstjen Nielsen warned it is a “national security concern” that US elections can’t be audited with paper ballots.
Security experts have in recent years called for major elections to have a physical paper trail so a trustworthy audit can be performed. However, brands and types of voting equipment vary by state. Many states use some machines that don’t leave a paper trail, and five states are entirely paperless for the general population. The report from the US Election Assistance Commission only tracked spending through September 2018, and many states have since spent or plan to spend some of their money on cybersecurity features or staff or upgraded equipment that badly needs replacing.

National: States spent just a fraction of $380 million in election security money before midterms | The Washington Post

Congress scrambled in early 2018 to deliver a surge in election security money before the midterms. But it turns out that states only spent about 8 percent of the $380 million Congress approved by the time the elections rolled around. That’s the bad news in a spending report released Thursday by the Election Assistance Commission, which is responsible for disbursing the money. The good news is that states are on track to spend the majority of the money before the 2020 elections — which intelligence officials say are far likelier than the midterms to be a hacking target for Russia and other U.S. adversaries. The report highlights the lengthy process of investigations and reviews that are necessary before states can make major upgrades to specialized election equipment. Given the tight time frame — Congress approved the money in March and the EAC began disbursing it to states in June — EAC Chairwoman Christy McCormick told me that 8 percent is a reasonable amount to have spent and about what the commission expected. It’s also a warning to Congress that the clock is ticking if it wants to deliver more election security money that will make a meaningful difference in 2020.

National: States’ spending on election security expected to pick up in 2019 | StateScoop

States and territories spent just 8 percent of the $380 million in federal election-security grants in the six months after they were distributed last year, according to the U.S. Election Assistance Commission. But in a report Thursday, the commission said it expects the bulk of that funding to be spent before the 2020 presidential election. The report follows states’ spending on new voting equipment, cybersecurity resources and personnel between last April and Sept. 30, when the federal government’s 2018 fiscal year ended. But the EAC said it expects spending to pick up this year as more grant money is transferred to states and as legislatures approve spending plans. “There hasn’t been a lot of money spent, but there is a lot of activity,” Mark Abbott, the commission’s grants director, told StateScoop. Of the $31.4 million states spent through last September, more than half — $18.3 million — went toward cybersecurity, including hiring new personnel dedicated to network security, implementing risk assessments and vulnerability scans and putting up stronger firewalls around statewide voter registration systems, which were infamously targeted by Russian hackers during the 2016 presidential election.

National: Blockchain Voting: Unwelcome Disruption or Senseless Distraction? | U.S. Vote Foundation

It really gets old being a guinea pig. Not because of the cagey confines, but for the insistence of those who try their ideas out on you. Overseas and military voters continue to be the guinea pigs for unvetted online voting ideas, the new one being “blockchain voting”. We have been here before. Overseas and military voters do need continued meaningful reforms across all states, and it is good when people truly care enough to examine and invest in solutions. What we do not need is a distraction that introduces new threats to overseas and military ballot integrity. The cliché “disruption model” doesn’t belong in our elections. Particularly in light of Russia’s cyber-interference in elections in Ukraine in 2014 and the US in 2016, we should consider with extra caution the idea of putting the entire voting process online. Russia itself is pushing to use this same technology for voting. Maybe it is worth a deeper look at it before we rush to its implementation? Perhaps investment in a threat detection system, which most state election offices cannot yet afford, would, at minimum, be a wise first course of action. Typically election systems must undergo formal testing and certification. Public access and examination is crucial. With a fully online system, that requirement is far more serious. Internet voting is not the same sort of simple transaction as is online banking; it is far more complex due to the fact that there must be a separation of the transaction from the identity of the person executing it. Just because there is a “blockchain” for the transaction doesn’t make the total voting system secure. The bottom line: it should not be possible to implement these systems in real elections without full and complete public examination. It is not sufficient to declare a technology as “tested” when it is used only in private elections and by outside companies hired to do “security audits”.

National: Democrats in Congress authorize subpoenas for Trump-Russia report, legal battle looms | Reuters

U.S. congressional Democrats on Wednesday authorized a powerful committee chairman to subpoena Special Counsel Robert Mueller’s full report on Russia’s role in the 2016 election, moving closer to a legal clash with President Donald Trump’s administration. The Democratic-led House of Representatives Judiciary Committee voted to enable its chairman, Jerrold Nadler, to subpoena the Justice Department to obtain Mueller’s unredacted report and all underlying evidence as well as documents and testimony from five former Trump aides including political strategist Steve Bannon. Nadler has not yet exercised that authority, with the timing of any such move uncertain. The committee vote was 24-17 along party lines, with Democrats in favor and Trump’s fellow Republicans opposed. Attorney General William Barr, a Trump appointee, issued a four-page summary of Mueller’s main conclusions last month including that the special counsel did not establish that the Trump campaign conspired with Russia during the election.

Georgia: Governor inks law to replace voting machines  | Atlanta Journal Constitution

Gov. Brian Kemp signed legislation to replace Georgia’s electronic voting machines with a touchscreen-and-paper ballot election system, after a polarizing debate over how to balance the integrity of the vote with ensuring accurate election results. The Republican was long expected to sign House Bill 316, which divided Republicans and Democrats over whether voters should use computer-printed ballots or paper ballots bubbled in with a pen.But the timing and quiet nature of the bill signing was peculiar: His office said in a notice posted on his website Wednesday that Kemp inked the bill, along with 20 lower-profile measures, on Tuesday during the last day of the legislative session.The overhaul was introduced with Kemp’s blessing after his narrow election victory over Democrat Stacey Abrams, who cast the Republican as an “architect of voter suppression” and accused him of creating barriers to ballot access. 

Ohio: Senate OKs creation of cyber security division | Richland Source

Ohio Senate President Larry Obhof (R-Medina) Thursday announced passage of legislation to create the Ohio Cyber Reserve — a new division of the Ohio National Guard that specializes in cyber security. “Cyberattacks are a growing threat,” said Obhof, who co-sponsored the bill. “This legislation will help our state better prepare against these sophisticated attacks.” Obhof’s district includes Richland and Ashland counties. The new force will consist of qualified, civilian cyber security experts and will maintain regional Cyber Response Teams capable of deterring, mitigating, and remedying cyber-attacks against our local governments, businesses, critical infrastructure and citizens. Senate Bill 52 was initially suggested by Ohio Secretary of State Frank LaRose, in order to address concerns related to elections and protecting the integrity of election-related data.

Australia: Electoral Commission gets AU$11m for polling place tech and IT upgrades | ZDNet

The Australian Electoral Commission (AEC) will be given AU$10.8 million over the next two years to upgrade its IT infrastructure and implement more polling place technology under the 2019-20 Federal Budget. The funding will be separated into AU$4 million in 2019-20 and AU$6.7 million in 2020-21. It will specifically see the AEC “approach the market to scope the deployment of new polling place technology and upgrades to the AEC’s ageing core ICT infrastructure”, according to the Budget documents. The funding follows electronic voting for citizens previously gaining bipartisan support, with both former Prime Minister Malcolm Turnbull and current opposition leader Bill Shorten advocating for electronic voting following the 2016 federal election. “We’re a grown-up democracy; it shouldn’t be taking eight days to find out who’s won and who’s lost,” Shorten said while conceding the election a week after polls closed.

Israel: The cybersecurity election | Jerusalem Post

There has been one theme running through this election almost from the day it was called: Cybersecurity. The past few months have been colored with stories of online influence campaigns, hacking, bots and Internet trolls. It began in November, when the Knesset hadn’t been dissolved yet but election fever was in the air, and The Jerusalem Post uncovered Twitter accounts sending links to falsified websites with outlandish news stories about Israeli politicians. The Foreign Ministry reported some incidents to Twitter and got some of the accounts shut down, but it also sent a warning to journalists, a top target for these scams: “The modes of action to influence the political discourse in Israel are similar to those that were seen in the elections in the United States, the vote on Brexit in the United Kingdom and the elections in France. Their preferred network is Twitter, which is seen as a social media of influencers and opinion leaders.” In January, less than two weeks after the Knesset made the elections official, Shin Bet (Israel Security Agency) chief Nadav Argaman warned about foreign intervention in the election using cyber capabilities, though he did not say which country was interfering and to what end. Many in the political field assumed he was referring to Russia, based on the aforementioned precedents, but Argaman has yet to make a follow-up statement nor has there been any serious evidence of a Russian effort.

Israel: Israelis prepare for elections as experts cite cyber threats | Associated Press

As Israel prepares to hold a national election next week, experts say it is vulnerable to the kind of foreign hacks and cyber campaigns that have disrupted the political process in other countries. Prime Minister Benjamin Netanyahu says there is “no country better prepared” to combat election interference. But despite Israel’s thriving tech sector and vaunted security capabilities, experts say its laws are outdated and that Netanyahu’s government hasn’t made cyber threats a priority. Campaigning had just started to ramp up in January when the director of the Shin Bet, Israel’s internal security agency, told a closed audience that a world power had tried to disrupt the April 9 vote. Suspicion fell on Russian operatives, now infamous for their alleged cyber meddling in America’s 2016 presidential race and the Brexit referendum. Soon after, news erupted that Iranian agents had hacked the cellphone of Benny Gantz, a former general who is the main challenger to Netanyahu. Although the breach occurred months before Gantz joined the race, the scandal threatened to derail his campaign, which is largely based on his security credentials.

Switzerland: Swiss Post’s e-voting system pulled for May votes | SWI

The e-voting system operated by Swiss Post will not be available for nationwide votes on May 19. This is the consequence of “critical errors” found during a public intrusion test, the Federal Chancellery and Swiss Post announced on Friday. The Federal Chancellery said in a statementexternal link it would review the licensing and certification procedures for e-voting systems. It added that it had no indication that these flaws had resulted in votes being manipulated in previous ballots. Swiss Post’s e-voting system had been in use in four cantons: Basel City, Fribourg, Neuchâtel and Thurgau. The Organisation of the Swiss Abroad said on Fridayexternal link it was deeply disappointed by the news, describing it as a blow against online voting “and thus a denial of the democratic rights of the Swiss Abroad”.