The Information Technology-Information Sharing and Analysis Center is reviewing industry feedback on plans to establish a coordinated vulnerability disclosure program ahead of the 2020 presidential elections, Nextgov reported Monday. Previously, IT-ISACÂ released a request for information on the effort aimed at ensuring that vendors implement a system that would report and act on identified vulnerabilities in their products.
The nonprofit organization also plans to crowdsource the detection of system vulnerabilities on voting platforms.
âYou want to make sure the people you are giving access to the voting machines arenât agents of a foreign power, arenât people with malicious intent,â noted Scott Algeier,Â executive director of IT-ISAC.
Responses to the RFI include recommendations on implementing the program to other election infrastructure as well as potential updates to the Election Assistance Commissionâs certification procedures, AlgeierÂ said.