- Despite numerous attacks, the security of Swiss Post’s e-voting system remained intact. None of the participants was able to detect any security vulnerabilities – as in previous years, the digital ballot box remained secure and was not hacked.
- All told, the voting platform’s digital protection systems fended off around 8,800 attacks.
- The e-voting site was accessed 142,433 times from a total of 2,600 IP addresses.
- The hackers were able to simulate the voting process one to one – including login, casting of votes and confirmation with real voting cards.
- Ethical hackers from 54 countries took part in this year’s intrusion test. The most active computer specialists were in France (37%), the USA (9.4%) and Switzerland (5.8%).
- The participating experts sent a total of 26 reports to Swiss Post. Compared to last year’s intrusion tests, this is a record.
- Swiss Post confirmed one finding. The finding did not concern any safety-related aspects, and instead contained a practical tip. In response, Swiss Post has clarified its intention to block voting cards after five failed login attempts.
- The user who reported the confirmed finding received a reward of 500 francs.
- The intrusion test is required by law and is intended to increase security, transparency and trust in electronic voting.
- The e-voting system was developed in Switzerland, where it is also being refined. Swiss Post has set up a competence center for e-voting and cryptography in Neuchâtel, where a team of experts working in the well-known “Hôtel des Postes” building pores over code, protocols and algorithms on a daily basis. Because when it comes to ensuring secure online voting, every detail counts
