This bill mandates the secretary of state to establish a vulnerability disclosure program for certain election systems. It amends RSA 652:23, designating the secretary of state as the chief election officer responsible for providing comprehensive information on voter registration and absentee ballot procedures. The new provisions require that instructional materials for clerks include guidance on electronic communication with election officials.

Additionally, the bill stipulates that within 180 days of its effective date, the secretary of state must implement a public vulnerability disclosure program that aligns with the recommendations from the "Guide to Vulnerability Reporting for America's Election Administrators" by the Cybersecurity and Infrastructure Security Agency. This program aims to facilitate the reporting of security vulnerabilities by security researchers and the public, and the secretary is required to collaborate with the cybersecurity advisory committee established in RSA 21-R:16. The act is set to take effect upon its passage on July 15, 2025.

Statutes affected:
Introduced: 652:23, 21-R:16
As Amended by the House: 652:23, 21-R:16
As Amended by the Senate: 652:23
Version adopted by both bodies: 652:23
CHAPTERED FINAL VERSION: 652:23