Networking

All VxSuite components are blocked from connecting to any network. Thus, there is no network in a VxSuite implementation. Our network design is secure by virtue of it being completely absent.

We ensure that VxSuite components cannot connect to a network, either wifi, bluetooth, or ethernet. This is achieved through a few layers of defense:

Networking manager is turned off and removed in the setup process. See vxsuite-complete-system/setup-machine.sh
Secure boot ensures that the hard drive is not modified, thus preventing software that isn’t part of the approved VotingWorks bundle from running.
The BIOS is configured to disallow network connections.
Wifi/bluetooth hardware is not present on the machines.

PreviousSystem Integrity NextPassword and Credential Policies

Last updated 1 year ago

Networking

All VxSuite components are blocked from connecting to any network. Thus, there is no network in a VxSuite implementation. Our network design is secure by virtue of it being completely absent.

We ensure that VxSuite components cannot connect to a network, either wifi, bluetooth, or ethernet. This is achieved through a few layers of defense:

Networking manager is turned off and removed in the setup process. See vxsuite-complete-system/setup-machine.sh
Secure boot ensures that the hard drive is not modified, thus preventing software that isn’t part of the approved VotingWorks bundle from running.
The BIOS is configured to disallow network connections.
Wifi/bluetooth hardware is not present on the machines.

PreviousSystem Integrity NextPassword and Credential Policies

Last updated 1 year ago