ISO 27001 Framework for Securing Election Infrastructure and Machine Voting

Abstract

This paper examines the case of an ISO 27001 framework tailored to the needs of one or more government entities tasked with securing e-voting (machine voting) infrastructure. The research begins with an exploration of the primary functions of the election infrastructure and several essential information security aspects. Then, high-level guidelines are proposed that should be considered when complying with ISO 27001 in this context. Government organisations that plan to implement this particular standard for securing e-voting infrastructure can benefit from considering the proposed recommendations.