PopVote: Assessing the Risk of DDoS (A)
Abstract
In this series of case studies, students learn to identify, assess, and control the risks of distributed denial of service (DDoS) attacks in a real-world situation. PopVote was the electronic voting system used by the Public Opinion Programme (POP) at the University of Hong Kong.
This case consists of cases A, B, and C. Case A gives the background on POP and PopVote. It describes the development history of PopVote, including past voting events, past cyber-attacks, and the evolution of its IT security infrastructure. Students are asked how to identify and assess potential security risks and how to prepare PopVote for an upcoming high-visibility voting event.
Learning Objectives
Through use of the PopVote cases, students are expected to:
Become familiar with the key components of risk management in information security, including risk identification, risk assessment, and risk control.
Learn how to compare, contrast, and evaluate the options available to an organization when facing the imminent threat of a DDoS attack.
Choose risk-control strategies for business continuity and disaster recovery.
| Company/Organization | University of Hong Kong |
| Industry | university, cyber security, information system, information technology, public services |
| Major Discipline | Information Technology |
| Subject(s) | Cyber attack, Ballot, Distributed denial of service (DDoS), Electronic voting system, Firewall, Hacking, Information security, IT infrastructure, Public Opinion Program (Pop), verification process |
| Geography | Hong Kong |
| Case Nature | Field |
| Page count of the Case | 19 |
| Teaching Notes | 13 |
| Publisher | HKUST |
| Last Revision Date | 16.08.2016 |