SALT LAKE CITY – November 8, 2018 – Venafi®, the leading provider of machine identity protection, today announced the results of a study on the security of election infrastructure in Germany. The study included responses from 305 German security professionals who are responsible for encryption in their own organizations.
According to the study, 86 percent of security professionals are concerned about cyber attacks targeting election data or infrastructure. In addition, 84 percent believe cyber criminals are likely to target election data as it is transmitted from local polling stations to central aggregation points.
“German security professionals uniquely understand the risks to free and accurate elections,” said Kevin Bocek, chief cyber security strategist for Venafi.“Last year, it was shown that German election infrastructure software could be easily hacked– leading to the possibility of tampered tabulation and transmission of results. Adversaries want to raise doubts about our democracies, thus they are concentrating on voting tabulations to raise doubts about our elections.”
Additional findings from the study include:
Ninety-four percent believe election systems, including voting machines, software and back-end systems, should be considered critical infrastructure.
When asked which parts of their election infrastructure are most vulnerable to cyber attackers:
- Sixty-one percent say voting machines that collect election data.
- Sixty percent say back-end systems that aggregate election data.
- Forty-one percent say communications between back-end election systems.
Fifty-seven percent believe the potential damage from cyber attacks targeting election systems is more serious than the potential damage from election tampering efforts that target social media.
Bocek concludes:“It’s no surprise to seenearly all German security professionals agree that voting infrastructure is under attack. Ultimately, the back-end systems that transmit, aggregate, tabulate, validate and store election data are as vulnerable to cyber attacks as voting machines.”