Programmatically verify Hart signed CVR files #747
Milestone
Comments
|
Also, when this is completed can you provide any information that would work towards satisfying the following requirements in the CA Voting System Performance Standards. I've reached out to Hart for their response as we should be able to pick out what they've used for the CVR signing. Hart sent over the pertinent portions of their TDP. I can provide it upon request. 
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hart has provided us with a set of digitally signed CVRs and the public key necessary to verify them. Can we programmatically verify those files using the public key they have provided.
For now, in 1.3.2 if we cannot verify the signature it should be a halting exception. This is to satisfy CA requirements. It doesn't need to be that strict for other jurisdictions. We discussed implemented a two build system - one for the stricter CA requirements and one for other jurisdictions. I'll create a separate issue for that.
Contact me directly for the signed files and public key!
The text was updated successfully, but these errors were encountered: