Advertisement

Election security legislation gains attention on Capitol Hill

Senators are making a renewed push to secure voting infrastructure ahead of the midterm elections.
Voting technology, voting touchscreen, election systems, election security
(Getty Images)

Senators are making a renewed push to secure voting infrastructure ahead of the midterm elections through measures that would boost states’ cooperation with U.S. intelligence agencies and require the use of paper ballots.

As the Senate considers an annual defense policy bill, Sen. Amy Klobuchar, D-Minn., is urging support for a bipartisan amendment that would tighten cyberthreat information sharing between states and the intelligence community.

“With the new kind of [information] warfare we’re seeing,” Klobuchar said Tuesday at a Senate Judiciary Committee hearing, failing to update U.S. law would be “a very big lost opportunity.”

The Secure Elections Act sponsored by Klobuchar and Sen. James Lankford, R-Okla., would task the Department of Homeland Security – which is already a hub for passing intelligence from federal to state officials – with quickly sharing election-related threats with all state election agencies. The bill also aims to speed up the security-clearance process for state officials so more of them can access classified information.

Advertisement

The senators last week submitted the Secure Elections Act as an amendment to the fiscal 2019 National Defense Authorization Act, but Klobuchar said Tuesday that the amendment had not yet made it into the bill. The top Republican and Democrat on the Senate Intelligence Committee have backed the Secure Elections Act.

After the U.S. intelligence community concluded that the Russian government meddled in the 2016 presidential election, U.S. officials have warned of renewed Russian information operations ahead of the midterms. Before the 2016 election, Russian hackers probed IT networks in 21 states but did not breach any voting machines or manipulate vote tallies, according to DHS. Department officials say they have yet to detect any Russian activity on state networks this election season.

At the Senate Judiciary hearing, California Democrat Dianne Feinstein asked whether the Justice Department had opened any investigations into election interference occurring this year. Adam Hickey, a top DOJ cybersecurity official, declined to confirm or deny the existence of an investigation.

Matthew Masterson, one of DHS’s top election-security officials, told lawmakers the $380 million that Congress allotted for state election security in March was a welcome reinforcement. “Resources — whether it be money or expertise or support — are hard to come by for state and local officials,” he said.

To prepare for the midterms, DHS has been offering states vulnerability assessments of their networks. Of the 17 states that requested those assessments, 10 have received them, one is in the process of doing so, and six are scheduled to receive them, according to a DHS official.

Advertisement

As Virginia voters went to the primary polls Tuesday, Christopher Krebs, another DHS official, said the department’s advice on cyber risk to states doesn’t come in a vacuum.

“[W]e’re also introducing some context around the risk,” Krebs said at the Arlington County Voting and Elections Office. “Just because there could be a vulnerability in the system, doesn’t mean that there’s a certainty or likelihood that it’s going to happen.”

Also on Tuesday, six Democratic senators introduced a bill that would require paper ballots to be used in all federal elections, and for rigorous audits to accompany those elections. Election security experts say those measures are key in preventing the manipulation of election results. Twenty-two states currently don’t require any post-election audits, the senators said.

That legislation is sponsored by Oregon’s Ron Wyden and Jeff Merkley; Massachusetts’ Ed Markey and Elizabeth Warren; Kirsten Gillibrand of New York; and Patty Murray of Washington.

“Why would we give foreign adversaries the opportunity to hack into our voting systems when we have better, more secure alternatives?” Merkley said in a statement.

Advertisement

The legislation comes a day after Wyden asked the Election Assistance Commission to make key updates to its cybersecurity guidance to states.

Zaid Shoorbajee contributed to this story.

Sean Lyngaas

Written by Sean Lyngaas

Sean Lyngaas is CyberScoop’s Senior Reporter covering the Department of Homeland Security and Congress. He was previously a freelance journalist in West Africa, where he covered everything from a presidential election in Ghana to military mutinies in Ivory Coast for The New York Times. Lyngaas’ reporting also has appeared in The Washington Post, The Economist and the BBC, among other outlets. His investigation of cybersecurity issues in the nuclear sector, backed by a grant from the Pulitzer Center on Crisis Reporting, won plaudits from industrial security experts. He was previously a reporter with Federal Computer Week and, before that, with Smart Grid Today. Sean earned a B.A. in public policy from Duke University and an M.A. in International Relations from The Fletcher School of Law and Diplomacy at Tufts University.

Latest Podcasts