Learning from a Distributed Denial of Service Attack against a Legally Binding Electronic Election: Scenario, Operational Experience, Legal Consequences

Andreas Ehringfeld, Larissa Naber, Karin Kappel, Gerald Fischer, Elmar Pichl, Thomas Grechenig

Abstract

E-voting is the stress point of e-government regarding security requirements. This paper discusses the first known distributed denial of service attack (DDoS) worldwide against a legally binding remote electronic voting channel. In particular, the security considerations, the topology of the attack, and the specific countermeasures are described. The focus of this paper is on analyzing the experience and providing lessons learned. The lessons based on the concrete experience of this case study have been classified by the legal, technical, and operational aspects for handling DDoS attacks against e- government. Furthermore the relationships and interactions between these three aspects are illustrated.

Type

Conference paper

Publication

Talk: The Second international conference on Electronic government and the information systems perspective (EGOVIS'11), Toulouse, France; 08-29-2011 - 09-02-2011; in: “Proceedings of the Second international conference on Electronic government and the information systems perspective (EGOVIS'11)", K. Andersen, E. Francesconi, Å. Grönlund, T. van Engers (ed.); Springer-Verlag, Berlin, Heidelberg (2011), ISBN: 978-3-642-22960-2; 56 - 67

Learning from a Distributed Denial of Service Attack against a Legally Binding Electronic Election: Scenario, Operational Experience, Legal Consequences

Abstract

Andreas Ehringfeld

Projektass. Dipl.-Ing. Dr.techn.

Karin Kappel

Projektass.in Dipl.-Ing.in Mag.a rer.soc.oec. Dr.in techn.

Thomas Grechenig

Ao.Univ.Prof. Dipl.-Ing. Dr.techn.