TY - CONF
T1 - Analysis of appropriate security processes to mitigate risk in a popular election system
AU - Toapanta, Segundo Moises Toapanta
AU - Salazar, Christopher Eduardo Solis
AU - Moran, Daniel Humberto Plua
AU - Gallegos, Luis Enrique Mafla
AU - Del Rocio Maciel Arellano, Ma
PY - 2019/8/1
Y1 - 2019/8/1
N2 - The Consejo Nacional Electoral of Ecuador has been seriously questioned with the implementation of the System of Transmission and Publication of Results (STPR). Descriptive tables of threats and controls were analyzed; to determine criteria such as: loss of integrity, loss of availability and loss of confidentiality. The objective was to identify the security protocols, determining the processes that make up the electoral vote. The qualitative documentary analysis and impact of the analyzed threats was used. In this way the results said that the system is highly vulnerable to threats of human origin, the highest risks are the threats of computer criminals or malicious collaborators. It was concluded that the greatest risk lies in the employees, their selection and hiring must be carried out without incidents of the policy, that comply with a professional profile according to the functions or tasks that they will fulfill and that demonstrate values such as honesty and ethics.
AB - The Consejo Nacional Electoral of Ecuador has been seriously questioned with the implementation of the System of Transmission and Publication of Results (STPR). Descriptive tables of threats and controls were analyzed; to determine criteria such as: loss of integrity, loss of availability and loss of confidentiality. The objective was to identify the security protocols, determining the processes that make up the electoral vote. The qualitative documentary analysis and impact of the analyzed threats was used. In this way the results said that the system is highly vulnerable to threats of human origin, the highest risks are the threats of computer criminals or malicious collaborators. It was concluded that the greatest risk lies in the employees, their selection and hiring must be carried out without incidents of the policy, that comply with a professional profile according to the functions or tasks that they will fulfill and that demonstrate values such as honesty and ethics.
KW - Electoral processes
KW - Information Integrity
KW - Information Security
KW - Process Security
UR - https://www.scopus.com/inward/record.uri?partnerID=HzOxMe3b&scp=85074167461&origin=inward
UR - https://www.scopus.com/inward/citedby.uri?partnerID=HzOxMe3b&scp=85074167461&origin=inward
UR - http://www.mendeley.com/research/analysis-appropriate-security-processes-mitigate-risk-popular-election-system-1
U2 - 10.1109/CITS.2019.8862057
DO - 10.1109/CITS.2019.8862057
M3 - Capítulo
T2 - CITS 2019 - Proceeding of the 2019 International Conference on Computer, Information and Telecommunication Systems
Y2 - 1 August 2019
ER -