PRESENTED BY CHRIS ANDERSON JULY 29, 2009 Using Zero Knowledge Proofs to Validate Electronic Votes.

Slides:

Advertisements

Similar presentations

Receipt-Free Universally-Verifiable Voting With Everlasting Privacy Tal Moran.

Advertisements

Secret Ballot Receipts: True Voter Verifiable Elections Author: David Chaum Published: IEEE Security & Privacy Presenter: Adam Anthony.

Vote privacy: models and cryptographic underpinnings Bogdan Warinschi University of Bristol 1.

1 Chapter 7-2 Signature Schemes. 2 Outline [1] Introduction [2] Security Requirements for Signature Schemes [3] The ElGamal Signature Scheme [4] Variants.

Talk by Vanessa Teague, University of Melbourne Joint work with Chris Culnane, James Heather & Steve Schneider at University of.

1 e-voting (requirements & protocols) 1) Aggelos Kiayias, Moti Yung: Self-tallying Elections and Perfect Ballot Secrecy 2) Jens Groth: Efficient Maximal.

Requirements for a Secure Voting System  Only authorized voters can vote  No one can vote more than once  No one can determine for whom anyone else.

Civitas Security and Transparency for Remote Voting Swiss E-Voting Workshop September 6, 2010 Michael Clarkson Cornell University with Stephen Chong (Harvard)

A Pairing-Based Blind Signature

Efficient Zero-Knowledge Proof Systems Jens Groth University College London.

ThreeBallot, VAV, and Twin Ronald L. Rivest – MIT CSAIL Warren D. Smith - CRV Talk at EVT’07 (Boston) August 6, 2007 Ballot Box Ballot Mixer Receipt G.

On the Security of Ballot Receipts in E2E Voting Systems Jeremy Clark, Aleks Essex, and Carlisle Adams Presented by Jeremy Clark.

Cryptographic Voting Protocols: A Systems Perspective Chris Karlof Naveen Sastry David Wagner UC-Berkeley Direct Recording Electronic voting machines (DREs)

Privacy, Democracy and the Secret Ballot An Informal Introduction to Cryptographic Voting.

1 Receipt-freedom in voting Pieter van Ede. 2 Important properties of voting  Authority: only authorized persons can vote  One vote  Secrecy: nobody.

1 Introduction CSE 5351: Introduction to cryptography Reading assignment: Chapter 1 of Katz & Lindell.

Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.

Receipt-Free Universally-Verifiable Voting With Everlasting Privacy Tal Moran Joint work with Moni Naor.

Electronic Voting Presented by Ben Riva Based on presentations and papers of: Schoenmakers, Benaloh, Fiat, Adida, Reynolds, Ryan and Chaum.

Vanessa Teague Department of Computer Science and Software Engineering University of Melbourne Australia.

Self-Enforcing E-Voting (SEEV) Feng Hao Newcastle University, UK CryptoForma’13, Egham.

Research & development A Practical and Coercion-resistant scheme for Internet Voting Jacques Traoré (joint work with Roberto Araújo and Sébastien Foulle)

May, 2011 Algorithmic Game Theory Workshop May, 2011 Algorithmic Game Theory Workshop Michael O. Rabin Harvard University Hebrew University Algorithmic.

CS426Fall 2010/Lecture 351 Computer Security CS 426 Lecture 35 Commitment & Zero Knowledge Proofs.

Zero Knowledge Proofs By Subha Rajagopalan Jaisheela Kandagal.

Receipt-Free Universally-Verifiable Voting With Everlasting Privacy Tal Moran Joint work with Moni Naor.

Cryptography Basic (cont)

10/25/20061 Threshold Paillier Encryption Web Service A Master’s Project Proposal by Brett Wilson.

Tree Homomorphic Encryption with Scalable Decryption Moti Yung Columbia University Joint work with Aggelos Kiayias University of Connecticut.

Zero-Knowledge Proofs And Their Applications in Cryptographic Systems Sultan Almuhammadi ICS 454.

Digital Envelopes, Zero Knowledge, and other wonders of modern cryptography (How computational complexity enables digital security & privacy) Guy Rothblum.

Electronic Voting Schemes and Other stuff. Requirements Only eligible voters can vote (once only) No one can tell how voter voted Publish who voted (?)

CMSC 414 Computer and Network Security Lecture 19 Jonathan Katz.

Electronic Voting (E-Voting) An introduction and review of technology Written By: Larry Brachfeld CS591, December 2010.

Introduction to Modern Cryptography, Lecture 7/6/07 Zero Knowledge and Applications.

Key Establishment Protocols for Secure Mobile Communications A. Aziz and W. Diffie, “Privacy and Authentication for Wireless Local Area Networks”, IEEE.

1/11/2007 bswilson/eVote-PTCWS 1 Enhancing PTC based Secure E-Voting System (note: modification of Brett Wilson’s Paillier Threshold Cryptography Web Service.

Introduction to Modern Cryptography, Lecture 9 More about Digital Signatures and Identification.

Chapter 9 Cryptographic Protocol Cryptography-Principles and Practice Harbin Institute of Technology School of Computer Science and Technology Zhijun Li.

Zero-Knowledge Proofs And Their Applications in Cryptographic Systems ICS 555 Cryptography and Data Security Sultan Almuhammadi.

Sedgewick & Wayne (2004); Chazelle (2005) Sedgewick & Wayne (2004); Chazelle (2005)

Ballot Processing Systems February, 2005 Submission to OASIS EML TC and True Vote Maryland by David RR Webber.

Cryptographic Voting Protocols: A Systems Perspective By Chris Karlof, Naveen Sastry, and David Wagner University of California, Berkely Proceedings of.

Fine-Tuning Groth-Sahai Proofs Alex Escala Scytl Secure Electronic Voting Jens Groth University College London.

Certification of e-voting systems Mirosław Kutyłowski, Poland.

KYUSHUUNIVERSITYKYUSHUUNIVERSITY SAKURAILABORATORYSAKURAILABORATORY Sakurai Lab. Kyushu University Dr-course HER, Yong-Sork E-voting VS. E-auction.

Towards Automated Security Proof for Symmetric Encryption Modes Martin Gagné Joint work with Reihaneh Safavi-Naini, Pascal Lafourcade and Yassine Lakhnech.

6. Esoteric Protocols secure elections and multi-party computation Kim Hyoung-Shick.

Fall 2004/Lecture 201 Cryptography CS 555 Lecture 20-b Zero-Knowledge Proof.

Andreas Steffen, , LinuxTag2009.ppt 1 LinuxTag 2009 Berlin Verifiable E-Voting with Open Source Prof. Dr. Andreas Steffen Hochschule für Technik.

Presented by: Suparita Parakarn Kinzang Wangdi Research Report Presentation Computer Network Security.

Zero-Knowledge Proofs And Their Applications in Cryptographic Systems ICS 555 Cryptography and Data Security Sultan Almuhammadi.

SANDRA GUASCH CASTELLÓ PHD EVOTING WORKSHOP LUXEMBOURG, 15-16/10/2012 SUPERVISOR: PAZ MORILLO BOSCH Verifiable Mixnets.

The Paillier Cryptosystem

Zero Knowledge Proofs Matthew Pouliotte Anthony Pringle Cryptography November 22, 2005 “A proof is whatever convinces me.” -~ Shimon Even.

Zero-Knowledge Proofs Ben Hosp. Classical Proofs A proof is an argument for the truth or correctness of an assertion. A classical proof is an unambiguous.

Usable Security Lab Crypto Lab Efficiency Comparison of Various Approaches in E-Voting Protocols Oksana Kulyk, Melanie Volkamer.

Cryptographic Shuffles Jens Groth University College London TexPoint fonts used in EMF. Read the TexPoint manual before you delete this box.: AAAAAAAAAAAAA.

Secure, verifiable online voting 29 th June 2016.

IP, (NON)ISOGRAPH and Zero Knowledge Protocol COSC 6111 Advanced Algorithm Design and Analysis Daniel Stübig.

Key Establishment Protocols for Secure Mobile Communications

Topic 36: Zero-Knowledge Proofs

ThreeBallot, VAV, and Twin

On the Size of Pairing-based Non-interactive Arguments

Cryptographic Protocols

ISI Day – 20th Anniversary

Zero-Knowledge Proofs

Cryptographic Protocols

Short Pairing-based Non-interactive Zero-Knowledge Arguments

Ronald L. Rivest MIT ShafiFest January 13, 2019

Presentation transcript:

PRESENTED BY CHRIS ANDERSON JULY 29, 2009 Using Zero Knowledge Proofs to Validate Electronic Votes

Outline What is the problem? What does zero knowledge mean? Neff’s scheme Challenging the encrypted vote Conclusion

The Problem Trust Two secure voting requirements contradict each other when dealing with e-voting  Privacy  Verifiability Receipt-freeness & uncoercibility

What Does Zero-Knowledge Mean? Task: Prove to a verifier that some fact is true. Parties Involved  Prover  Verifier Follows a challenge/response protocol Rules:  Verifier accepts proof if it is true and both parties follow protocol  Verifier rejects proof it is false and verifier has followed protocol  The prover reveals nothing about the fact that the verifier could not determine without the prover Verifier is unable to prove same fact to someone else

Neff’s Scheme Zero-knowledge protocol developed by Andrew Neff Cast vote is represented by a n x l matrix of ballot match pairs(BMP) called a verifiable choice(VC)  n=number of candidates  l=security parameter Each BMP consists of a pair of plain text b 1, b 2 in {0,1} which are encrypted using a random value If the BMP belongs to the row for the chosen candidate, the BMP will be 0,0 or 1,1 If the BMP belongs to a row for a candidate who was not chosen, the BMP will be 0,1 or 1,0

Verifiable Choice

Neff’s Scheme Voter challenges the candidate by submitting a bit string with length l Each BMP has a pledge bit used to compare BMP with voter’s challenge string If k th bit in string = 0, compare BMP left element to pledge bit If k th bit in string = 1, compare BMP right element to pledge bit

Challenging the Chosen Candidate

Challenging the Other Candidates

Conclusion Neff’s scheme allows voter to verify correctness Solves a major hurdle with e-voting systems Questions?

References Ben Adida. Advances in Cryptographic Voting Systems, Veneta Velyanova. An Analysis Of The Neff’s Voter Verifiable Election Scheme, 2008.