Details of what NASA findings after being granted access to IEBC servers by the Supreme Court

Here are the 20 discoveries NASA made after auditing IEBC server logs;

1. All accounts in the integrated electronic electoral management system are based on authorizations contained in the IEBC IT Access control and user access management policy.
2. The Access control list provided for only 34 1 users. Between 6th August 20 I 7 and 22 August 2017:a. There were 3395 failed login attemptsb. There were 385 1 successful log in attempts
3. The KIEMS RTS user accounts:a. Gave read only authorizations;b. Deletion of files was not granted:

   e. Provided for configuration of election settings and user management. However from the Access Control List no one was granted these privileges.

4. Contrary to IEBC IT Access Control and User Access Management Policy,user accounts were misused by both internal and external parties as follows:Access was granted to strangers who were not identified by role and who were not defined in any access lists. Among these are vendors,anonymous users using Gmail accounts, Morpho and SCYTL.com and Administration staff who were noted to be logging into the KIEMS Kits between 08b August 2017 and 22 August 2017.
5. The Chairperson’s account was used multiple times to transfer, delete and modify files through the File Transfer Protocol Server which was the mechanism through which all Forms including forms 34 could he uploaded onto the IEBC server.
6. The Chairperson’s user account alone had 9934 transaction logs.a. The account used an IP address that was not part of the IEBC Partner addresses (41.212. 16.248) a wananchi network IP address.
7. There were cases of use of non partner IP addresses cg wananchi and liquid telcom 41.60.238.138
8. Forms 34A and 34Bs were posted by Constituency Elections Coordinators (CEC) at constituency level instead of from polling stat ions during and after the election.
9. There is no trace of data originating from any polling station. This raises questions whether data on the server came from the polling station.
10. Some constituencies have no trace of any Form 3413 uploaded on to the server.
11. In other constituencies Form 34B were uploaded more than once.
12. There were several instances of uploading files and retrieving them by various users.
13. Only 277 users accessed the FTP server between August  2017 and 17 August 2017 yet data was supposed to be uploaded from each polling station.
14. There are instances of one user using multiple IP addresses to access the FTP server. Eg Jlimaris@iebc.or.ke used 10 different IP addresses contrary to the static IP address allocation for the KIEMS Kits and the access control policy.
15. There were renamed or modified forms in various constituencies as seen from the FTP Server logs provided by IEBC.
16. Some accounts granted were misused lo carry out unauthorized and malicious activities.