Colorado Voter Group

The Colorado Voter Group is a private entity working to improve Colorado's election system.
Home     State Oversight     November 2008     County Oversight     Election Oversight     Election System     CAMBER      
SCORE Request Denied
 
From: Jonathan Tee
To:    Claudia Kuhns
Sent: Tuesday, August 14, 2007 2:35 PM
Subject: RE: SCORE II

Claudia –

Thanks for your patience while I gathered information for you. No, they are not the originally scheduled completion dates. Saber and the State mutually agreed to a contract amendment in June and the amendment was executed by the State Controller in July. The dates for some deliverables were modified without changing the month for pilot county deployments (August 2007) or the scheduled completion of statewide deployment (March 2008). If you would like to see those original dates, we can compile these for you in the next few weeks.

In regards to your other requests:

? Application Requirements -

The starting point for the Application Requirements was Document 2 of 2 published on April 18, 2006 during the Request for Proposals process as "RFP #: DOS-HAVA-0003". This document remains available on the Secretary of State's website at http://www.sos.state.co.us/pubs/info_center/system_requirements_v10.doc.

The requirements have been modified – during two formal Joint Application Development (JAD) sessions and four formal User Acceptance Training and Testing (UAT) sessions, as well as through more informal processes during the life of the project. The Application Requirements will continue to change during the course of our contractual relationship with Saber, as new functional requirements are discovered; new legislation requires changes or additions to functionality; or as existing functionality is deemed unnecessary by the counties and the State.

Because of the continual modification of the Application Requirements, it is not immediately clear if release of this information would pose a security risk. As a potential security risk can not be determined without first concluding a thorough and time consuming review of the requirements, we are unable to release this information to you at this time. The same may be said of the Entity Relationship Diagram.

? Test Plan (by this, we assume you mean "Updated Test Plan") -

The Updated Test Plan builds upon the System Test Plan document and the results of the execution of the Test Plan are contained in the System Test deliverable. As these documents address full system testing of the SCORE system they include very specific details on the hardware, software and network infrastructure. Release of such information would pose a security risk and we are therefore not able to make these documents available to the public.

? System Test with results and accompanying documentation -
 
The artifacts of the System Test event follow directly from the System Test Plan and the Updated Test Plan documents. As mentioned above, the results of the System Test include very specific details on the hardware, software and network infrastructure, as well as potentially revealing vulnerabilities detected for remediation prior to production deployment. Release of such information would pose a security risk and we are therefore not able to make these documents available to the public.

Thank you.

Jonathan