IEBC says KPMG audited old systems and now they have whole brand new data center. Certainly with all billions - they could do more.
We'll skip questions about what they did with the billions back in 2013. According to the KPMG report:
* KPMP proposed to carry out penetration tests "in accordance with the agreement between the IEBC and KPMG".
* IEBC did not authorize those tests, citing, among other things, "new systems coming".
* KPMG then wrote back to, in their words, "
on several occasions to explain the implications of this limitation of scope on the integrity of data in the system, and therefore the credibility of the register".
* KPMG also added that it was prepared to test the system at any time, even after issuing their report---that the results of the [late] penetration tests would be included in a Supplemental report".
So, has IEBC authorized the tests for the new system?
Regardless of the outcome of the presidential elections, I expect that there will be a court case. Now, one of the things that happened back in 2013 was a mess regarding the register, and, presumably, getting KPMG involved was to give confidence in a single register. What we currently have is this:
* KPMG looked at a "provisional" register and, as far as I can tell, has had no positive response to its recommendation that it be involved in reconciling that register and the "certified" register.
* KPMG has still not been authorized to carry out "vulnerability and penetration" tests on whatever system is in place, despite its written willingness to carry out such tests.
* As far as I can tell, the "final" register to be used has still not be made available publicly; so hardly anyone is in a position to check it.
All in all, a sure recipe for a mess ... not to mention the expected equipment mess.
Topic: 10 Rigging Risks in IEBC Register (Read 2206 times)