Trump's voter data request poses an unnoticed danger - By Michael Chertoff

<< Michael Chertoff, U.S. homeland security secretary from 2005 to 2009, is executive chairman of the Chertoff Group, a security and risk-management advisory firm. >>

The Trump administration’s Presidential Advisory Commission on Election Integrity is asking states for voter-registration data from as far back as 2006. This would include names, dates of birth, voting histories, party registrations and the last four digits of voters’ Social Security numbers. The request has engendered controversy, to put it mildly, including refusals by many states and a caustic presidential tweet.

But whatever the political, legal and constitutional issues raised by this data request, one issue has barely been part of the public discussion: national security. If this sensitive data is to be collected and aggregated by the federal government, then the administration should honor its own recent cybersecurity executive order and ensure that the data is not stolen by hackers or insiders.

We know that voting information has been the target of hackers. News reports indicate that election-related systems in as many as 39 states were penetrated, focusing on campaign finance, registration and even personal data of the type being sought by the election integrity commission. Ironically, although many of these individual databases are vulnerable, there is some protection in the fact that U.S. voting systems are distributed among thousands of jurisdictions. As data-security experts will tell you, widespread distribution of individual data elements in multiple separate repositories is one way to reduce the vulnerability of the overall database.

That’s why the commission’s call to assemble all this voter data in federal hands raises the question: What is the plan to protect it? We know that a database of personal information from all voting Americans would be attractive not only to adversaries seeking to affect voting but to criminals who could use the identifying information as a wedge into identity theft. We also know that foreign intelligence agencies seek large databases on Americans for intelligence and counterintelligence purposes. That is why the theft of more than 20 million personnel files from the U.S. Office of Personnel Management and the hacking of more than half a billion Yahoo accounts were such troubling incidents.

more
https://www.washingtonpost.com/opinions/trumps-voter-data-request-poses-an-unnoticed-danger--to-national-security/2017/07/05/470efce0-60c9-11e7-8adc-fea80e32bf47_story.html