“AccessPatrol is critical infrastructure for us. We block every USB device in existence that does not belong to our serialized USB thumb drive inventory.
We provide these devices to the counties so that they can tabulate their data on a tabulation computer, put the vote counts on the drive, then bring it over to the ENR machine to submit the election night results.”
US State Government Agency
CurrentWare’s USB control software AccessPatrol provides a critical capability for ensuring the availability, usability, and integrity of election data in the Election Night Reporting (ENR) process—Blocking the use of unauthorized removable media devices on ENR systems.
Read on to learn more about AccessPatrol’s role in maintaining the integrity of the electronic voting process for state and local elections.
Locale United States | Industry Government |
“AccessPatrol is critical infrastructure for us. We block every USB device in existence that does not belong to our serialized USB thumb drive inventory.
We provide these devices to the counties so that they can tabulate their data on a tabulation computer, put the vote counts on the drive, then bring it over to the ENR machine to submit the election night results.”
US State Government Agency
CurrentWare’s USB control software AccessPatrol provides a critical capability for ensuring the availability, usability, and integrity of election data in the Election Night Reporting (ENR) process—Blocking the use of unauthorized removable media devices on ENR systems.
Read on to learn more about AccessPatrol’s role in maintaining the integrity of the voting process for state and local elections.
Locale
United States
Industry
Government
Advances in voting technology have transformed American elections by dramatically improving the efficiency, accessibility, and visibility of the voting process.
While these advancements have produced a significant boon in productivity, they are not without their risks.
The threat of interference in elections by foreign governments and other bad actors are top-of-mind for citizens and election officials alike. Voting technologies need robust cybersecurity protocols to ensure that the integrity of elections are upheld in the modern age.
Election night reporting (ENR) refers to the systems and processes that are used to aggregate and communicate unofficial election results to the public and media after polls close, typically through a website.
While ENR results are always unofficial, the public often perceives unofficial election results as final.
Because of this fact, it is critical that those involved in the election process provide necessary safeguards to protect the integrity of the voting process.
The U.S. Election Assistance Commission (EAC), an independent, bipartisan commission charged with developing guidance to meet requirements set out by the Help America Vote Act of 2002 (HAVA), recommends several cybersecurity measures to protect election data against bad actors.
One critical measure recommended by the EAC is the use of air gapping to ensure that the tabulating machines used to count votes are not connected to any network, which would increase their attack surface to risks such as malware, denial-of-service, and man-in-the-middle attacks, among other risks.
This poses a unique challenge for the election night reporting process: Tabulating machines must remain air gapped to protect them from external threats, but the ENR machines that consolidate the data from the tabulating machines need to be connected to other networks to provide the data to the public and the media.
“If USB storage devices are required, enterprise software should be used that can configure systems to allow only the use of specific devices. An inventory of such devices should be maintained.” – The Center for Internet Security
To allow for secure data transfer without compromising the air gap, removable media devices are used to transfer XML files from the tabulating machine into the ENR system.
Unfortunately, removable media devices are not without their risks either; they can be exposed to malware and compromised at the supplier level, through a previous use in an infected machine, or through a purposeful infection by a bad actor.
These risks are mitigated through complimentary security controls including:
To ensure the efficacy of these measures it’s critical that only authorized removable media devices are connected to election technology.
AccessPatrol ensures that the integrity of the Election Night Reporting process is not undermined by the introduction of rogue portable storage devices
Election night reporting relies on a precise process designed to quickly, accurately, and safely transfer each candidate’s vote totals into the ENR system so that data can be made available to the public.
CurrentWare’s state and local government customers use AccessPatrol’s device control features to ensure that only authorized removable drives that have been pre-vetted for their security and reliability are used to transmit data from vote tabulation machines to ENR systems.
Air gapping measures are further enforced by using AccessPatrol to block the use of wireless peripherals such as Bluetooth and WiFi.
AccessPatrol’s device activity tracking complements the manual monitoring of chain-of-custody procedures with intuitive reports, dashboards, alerts, and activity logs that track the use of every portable storage device.
These insights allow election officials and IT security teams to verify:
In the event that unauthorized removable drives are connected to protected computers, designated officials are sent an alert with all the information they need to investigate the security incident.
The file transfer blocking feature ensures that even authorized removable drives are strictly limited to transferring only the relevant XML files required for the ENR process.
Ensuring that extraneous files cannot be transferred to or from protected systems via removable media devices mitigates the possibility of malicious files being introduced to critical election technology.
AccessPatrol ensures back-ups of election results reports can be transmitted to trusted storage devices on a regular schedule—all without giving threat actors the opportunity to copy that data to unauthorized devices.
These backups are crucial to ensure that election data can be recovered quickly and restored in the event of hardware failure, cyberattacks, and other data security risks.
Fully functional. Easy to use. Install in minutes.
I came in after another IT employee had left; I had never used AccessPatrol before. It was so intuitive and easy to use that I figured it out right away after clicking around. If you’re used to Active Directory OUs you’ll find it super simple.
There have been no issues whatsoever when using AccessPatrol. It’s easy to manage, and we can quickly block every unauthorized USB device in existence from connecting to our computers.
Sr. Network Engineer
US State Government Agency
Electronic voting technology provides a valuable productivity and accuracy boon to state, federal, and local governments.
Unfortunately these systems can be manipulated by bad actors if critical security controls are not implemented.
Robust systems, procedures, and controls must be implemented to protect democracy and the population’s faith in the integrity of electronic voting.
AccessPatrol serves an integral role in the modern day electoral process by ensuring that election technology is protected against data security risks posed by insider threats, rogue removable drives, and wireless peripherals.
CurrentWare’s computer monitoring and cybersecurity software provides state and local governments with advanced awareness and control over how their technology is used.
Reach out to our team today to learn how the CurrentWare Suite will ensure the productivity and security of your organization.
and more
BrowseReporter is a versatile employee monitoring software to track productivity and efficiency.
BrowseControl is an easy-to-use website blocking software for restricting internet access.
AccessPatrol is USB control software to protect sensitive data against theft to portable storage devices.
enPowerManager is a remote PC power manager for centrally managing power settings across all endpoints.
Cookie | Duration | Description |
---|---|---|
__cfruid | session | Cloudflare sets this cookie to identify trusted web traffic. |
cookielawinfo-checkbox-advertisement | 1 year | Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category . |
cookielawinfo-checkbox-analytics | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics". |
cookielawinfo-checkbox-functional | 11 months | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional". |
cookielawinfo-checkbox-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary". |
cookielawinfo-checkbox-others | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other. |
cookielawinfo-checkbox-performance | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance". |
JSESSIONID | session | The JSESSIONID cookie is used by New Relic to store a session identifier so that New Relic can monitor session counts for an application. |
LS_CSRF_TOKEN | session | Cloudflare sets this cookie to track users’ activities across multiple websites. It expires once the browser is closed. |
OptanonConsent | 1 year | OneTrust sets this cookie to store details about the site's cookie category and check whether visitors have given or withdrawn consent from the use of each category. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
Cookie | Duration | Description |
---|---|---|
__cf_bm | 30 minutes | This cookie, set by Cloudflare, is used to support Cloudflare Bot Management. |
_zcsr_tmp | session | Zoho sets this cookie for the login function on the website. |
Cookie | Duration | Description |
---|---|---|
_calendly_session | 21 days | Calendly, a Meeting Schedulers, sets this cookie to allow the meeting scheduler to function within the website and to add events into the visitor’s calendar. |
_gaexp | 2 months 11 days 7 hours 3 minutes | Google Analytics installs this cookie to determine a user's inclusion in an experiment and the expiry of experiments a user has been included in. |
Cookie | Duration | Description |
---|---|---|
_ga | 2 years | The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors. |
_ga_GY6RPLBZG0 | 2 years | This cookie is installed by Google Analytics. |
_gcl_au | 3 months | Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services. |
_gid | 1 day | Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously. |
CONSENT | 2 years | YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data. |
Cookie | Duration | Description |
---|---|---|
_opt_expid | past | Set by Google Analytics, this cookie is created when running a redirect experiment. It stores the experiment ID, the variant ID and the referrer to the page that is being redirected. |
IDE | 1 year 24 days | Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile. |
NID | 6 months | NID cookie, set by Google, is used for advertising purposes; to limit the number of times the user sees an ad, to mute unwanted ads, and to measure the effectiveness of ads. |
test_cookie | 15 minutes | The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies. |
VISITOR_INFO1_LIVE | 5 months 27 days | A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface. |
YSC | session | YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages. |
yt-remote-connected-devices | never | YouTube sets this cookie to store the video preferences of the user using embedded YouTube video. |
yt-remote-device-id | never | YouTube sets this cookie to store the video preferences of the user using embedded YouTube video. |
yt.innertube::nextId | never | This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen. |
yt.innertube::requests | never | This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen. |
Cookie | Duration | Description |
---|---|---|
_dc_gtm_UA-6494714-6 | 1 minute | No description |
_gaexp_rc | past | No description available. |
34f6831605 | session | No description |
383aeadb58 | session | No description available. |
663a60c55d | session | No description available. |
6e4b8efee4 | session | No description available. |
c72887300d | session | No description available. |
cookielawinfo-checkbox-tracking | 1 year | No description |
crmcsr | session | No description available. |
currentware-_zldp | 2 years | No description |
currentware-_zldt | 1 day | No description |
et_pb_ab_view_page_26104 | session | No description |
gaclientid | 1 month | No description |
gclid | 1 month | No description |
handl_ip | 1 month | No description available. |
handl_landing_page | 1 month | No description available. |
handl_original_ref | 1 month | No description available. |
handl_ref | 1 month | No description available. |
handl_ref_domain | 1 month | No description |
handl_url | 1 month | No description available. |
handl_url_base | 1 month | No description |
handlID | 1 month | No description |
HandLtestDomainName | session | No description |
HandLtestDomainNameServer | 1 day | No description |
isiframeenabled | 1 day | No description available. |
m | 2 years | No description available. |
nitroCachedPage | session | No description |
organic_source | 1 month | No description |
organic_source_str | 1 month | No description |
traffic_source | 1 month | No description available. |
uesign | 1 month | No description |
user_agent | 1 month | No description available. |
ZCAMPAIGN_CSRF_TOKEN | session | No description available. |
zld685336000000002056state | 5 minutes | No description |