Sponsors (2)
The bill strengthens election cybersecurity through standardized, independent testing and faster implementation—improving security and voter confidence—but raises near-term costs and administrative burdens for state and local election officials and risks rushed rollout under the 180‑day deadline.
State and local election officials (and thus voters) will get regular independent penetration testing plus coordinated vulnerability disclosure so security flaws in voting systems are identified and fixed before elections, reducing risk of manipulation.
State and local election offices will operate under NIST oversight and accredited testers, increasing technical rigor and standardization in how tests are conducted and results evaluated.
The 180-day implementation deadline pushes security improvements to occur sooner, accelerating protections for upcoming elections.
State and local election offices and taxpayers may face added costs to implement and run the testing/certification program, increasing budgetary pressure at local and state levels.
Stronger security protocols and new testing requirements will impose compliance and technical burdens on local election administrators and vendors, requiring extra staff time, training, or contractor work.
The 180-day deadline risks rushing procurement, accreditation, and rollout, which could produce uneven implementation or initial gaps in testing quality.
Based on analysis of 3 sections of legislative text.
Requires accredited entities to include penetration testing in certification/recertification of voting systems and creates an independent testing and coordinated vulnerability-disclosure program.
Introduced November 25, 2025 by David G. Valadao · Last progress November 25, 2025
Requires accredited testing entities to include penetration testing when they test, certify, decertify, or recertify voting system hardware and software, and directs federal agencies to set up accreditation and certification processes for those penetration testers. Also creates an independent security-testing and coordinated cybersecurity vulnerability disclosure program for election systems, and updates the Help America Vote Act to add that program.