How does POLYAS ensure the availability of the servers?
Online elections conducted with POLYAS are by default hosted in data centers in the EU and in compliance with GDPR. These are structured according to the TwinCore principle, i.e. the data is stored in parallel at two identical data centers. This ensures that, even in the event of a failure on one side, access to the data…
How frequent is the automatic backup of the election data during an election?
Every 30 minutes during an election, the host checks whether a vote has been cast. As soon as this is the case, the entire voting system is backed up and copied to another data center.
How is the integrity of the POLYAS electoral system guaranteed?
POLYAS uses the block checksum to prevent cast votes in the ballot box from being manipulated. For this purpose, a block is formed after every 30 votes received. The votes are arranged at random, making it impossible to trace which vote was received at what time. The block is used to calculate an SHA-256 checksum. The…
How long is the POLYAS token?
With a key length of 128 bits, the token length corresponds to the BSI (German Federal Office for Information Security) technical guideline TR-02102-1.
Is the POLYAS voting system legal?
In principle, voting in this way is only possible if online elections or online voting is permitted in the statutes or election regulations. Please note that we cannot provide legal advice. Our system is suitable for implementing legally compliant elections online. Legally compliant means that the election principles…
Is the system monitored to register and respond to targeted attacks?
Yes. The POLYAS voting system has a monitoring and alarm system.
Is the transmission channel for voting encrypted?
Yes. Votes are cast via an encrypted connection (HTTPS). POLYAS uses an SSL server certificate from D-Trust GmbH for this purpose.
Is there a mechanism to prevent brute force attacks?
Yes. POLYAS prevents brute force attacks by limiting the number of accesses per unit time and IP address.
Is voting with POLYAS secure?
The voting software POLYAS CORE 2.5.0 meets the requirements of the international Protection Profile according to Common Criteria and is a central component of certification by the BSI (German Federal Office for Information Security). The Protection Profile for secure online voting products is based on the electoral…
To what extent is the system accessible or fail-safe?
POLYAS ensures 98% accessibility of the election products within the election period, whereby troubleshooting can take at least one hour. This applies from version 3.2 of our Terms and Conditions. Specific response and recovery times can be additionally agreed between POLYAS and the election organizer by means of an…