× Digital News Videos Health & Science Opinion Education Columnists Lifestyle Cartoons Moi Cabinets Kibaki Cabinets Arts & Culture Podcasts E-Paper Tributes Lifestyle & Entertainment Nairobian Entertainment Eve Woman TV Stations KTN Home KTN News BTV KTN Farmers TV Radio Stations Radio Maisha Spice FM Vybez Radio Enterprise VAS E-Learning Digger Classified Jobs Games Crosswords Sudoku The Standard Group Corporate Contact Us Rate Card Vacancies DCX O.M Portal Corporate Email RMS

IEBC IT systems may fail, and terribly so

By SAMSON SUMBA | January 6th 2017
 There is a need to open up on major concerns regarding the verifiability of the results that will be transmitted by BVR kits to the polling stations. The first area of concern is the safety of the network and Internet used.

Normally a virtual private network will be used which is essentially a safe tunnel within the public network infrastructure. The question is has IEBC and the network provider tested the vulnerabilities of this only option? Secondly, it is possible to 'corrupt' the firmware (software embedded in electronic hardware) and create a backdoor. a hacker needs to get access or install the firmware update on a few BVR kits.

With that done the hacker can activate the code once the systems start transmitting and use the few BVR kits to control or manipulate the rest of the BVR kits or computer systems Thirdly, a hacker could simply execute a-man-in-the-middle-attack by intercepting data packets en route to the IEBC data center, modify them and send them to the destination.

 Perhaps the most frightening thing is that all these hacks can go undetected for not just hours but months. Additionally, these hacks need splits of seconds to be implemented. The last form of attack that can be done on the electoral system is to execute a Distributed Denial of Service (DDoS) attack on the database.

Once a DDoS attack has been successfully carried out, the databases hosted are hijacked or taken offline. The attacker then uses this time to manipulate database entries before restoring the database services or simply lets the owner hack it back.
Share this story
SpaceX aims for Jan. 8 return to flight with Falcon rocket
Elon Musk’s SpaceX plans to resume flying rockets next week following an investigation into why one of them burst into flames on a launch pad four months ago, the company said on Monday.
Why Kenyan boxers are winning medals once again
The BFK led by President Anthony ‘Jamal’ Ombok was elected into the office in 2019 and has since...