Informatics Online Voting Opportunities and Risks STOA Workshop at the European Parliament Brussels, 17 March 2011 Prof. Dr. Rüdiger Grimm IT Risk Management.

Slides:



Advertisements
Similar presentations
Trusting the Vote Ben Adida - Cryptography and Information Security Group MIT Computer Science and Artificial.
Advertisements

Regional and national initiatives in support of European Technology Platforms Dr. Fiona Williams Chairman, eMobility steering board
Research & Development Workshop on e-Voting and e-Government in the UK - February 27, 2006 Votinbox - a voting system based on smart cards Sébastien Canard.
Electronic Voting Systems
1 Henrik Nore, Project Manager E-vote2011project Norway COE workshop observation - Oslo
Internet Voting in Estonia Tarvi Martens Project Manager National Electoral Committee.
Requirements for a Secure Voting System  Only authorized voters can vote  No one can vote more than once  No one can determine for whom anyone else.
The Italian Academic Community’s Electronic Voting System Pierluigi Bonetti Lisbon, May 2000.
Online Voting Presented By: George Oham George Olajide
ICT IN THE ELECTORAL PROCESS: LESSONS LEARNED Susanne Caarls International Electoral Affairs Symposium May 2012.
1 Receipt-freedom in voting Pieter van Ede. 2 Important properties of voting  Authority: only authorized persons can vote  One vote  Secrecy: nobody.
Vanja Malidžan Singidunum University, Belgrade. INFuture2011: “Information Sciences and e-Society”  Development of ICT  Implementation of ICT in voting.
German Research Center for Artificial Intelligence Protection Profile for Central Requirements for Online Voting German Research Center for Artificial.
Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.
The Future of Electronic Counting and Tabulation Systems Worldwide Dr. Ljupcho Antovski IEAS 2011 Dr. Ljupcho Antovski.
Chancellerie fédérale Section des droits politiques Voting observation in the context of the Swiss internet voting projects Workshop on the "Observation.
Self-Enforcing E-Voting (SEEV) Feng Hao Newcastle University, UK CryptoForma’13, Egham.
Cryptography. 2 Objectives Explain common terms used in the field of cryptography Outline what mechanisms constitute a strong cryptosystem Demonstrate.
Observation of e-enabled elections Jonathan Stonestreet Council of Europe Workshop Oslo, March 2010.
DIGITAL SIGNATURE AND ELECTRONIC DOCUMENTS IN ITALY Prof. Pierluigi Ridolfi AIPA Authority for Information Technology in the Public Administration V. Solferino,
Kickoff Meeting „E-Voting Seminar“
European online voting experiences Andreu Riera, PhD Chairman Scytl Online World Security S.A. DIMACS Voting Workshop Rutgers University May 2004.
Electronic Voting (E-Voting) An introduction and review of technology Written By: Larry Brachfeld CS591, December 2010.
E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean
Internet Voting. What is Internet Voting? Internet voting is: an election process whereby people can cast their votes over the Internet, most likely through.
Stork is an EU co-funded project INFSO-ICT-PSP STORK PRESENTATION STORK Presentation Lithuania March 2010.
© Julia Wilk (FHÖV NRW) 1 Digital Signatures. © Julia Wilk (FHÖV NRW)2 Structure 1. Introduction 2. Basics 3. Elements of digital signatures 4. Realisation.
XXXI Reunió Cercle d’Economia a Sitges 29 de maig de 2015 Pere Vallès CEO de Scytl L’Ambició d’Emprendre.
Ballot Processing Systems February, 2005 Submission to OASIS EML TC and True Vote Maryland by David RR Webber.
Author: Michał Rajkowski Tutor: prof. dr hab. inż. Zbigniew Kotulski.
Melanie Volkamer (Research Manager) University of Passau, Innstraße 43, Passau, Germany, Tel: / Webpage:
An Architecture For Electronic Voting Master Thesis Presentation Clifford Allen McCullough Department of Computer Science University of Colorado at Colorado.
WITHIN FRANCE, HOW BIG A GAP WITH OTHER ELECTIONS? Dr Anne Jadot (Université Nancy 2 / IRENEE) & Dr Bruno CAUTRES (CEVIPOF) /
Central Electoral Commission of The Republic of Lithuania THE LITHUANIAN CONCEPT OF VOTING VIA INTERNET FOR ELECTIONS AND REFERENDA Approved by the Seimas.
Selected problems of the e-signature law and of its implementation Doc. RNDr. Daniel Olejár, CSc. Department of computer science Comenius University, Bratislava.
United States Election Assistance Commission EAC UOCAVA Documents: Status &Update EAC Technical Guidelines Development Committee Meeting (TGDC)
KYUSHUUNIVERSITYKYUSHUUNIVERSITY SAKURAILABORATORYSAKURAILABORATORY Sakurai Lab. Kyushu University Dr-course HER, Yong-Sork E-voting VS. E-auction.
EGov Interop'05 - Feb 23-24, Geneva (Switzerland) OBSERVATORY ON INTEROPERABLE eGOVERNMENT SERVICES eGov-Interop'05 Annual Conference February.
21 st April th CEPIS Spring Council - Prague Presentation Title Here 30pt Arial Data retention Draft statement for CEPIS By CEPIS LSI.
Secure Information Technology Center - Austria Workshop on the certification of e-voting systems Council of Europe Strasbourg, 26 November 2009 Certification.
Anual Workshop February 5th, Anonymous yet reliable ePoll application Italo Dacosta SecAnon-DistriNet.
Citizen participation using electronic voting for decision making processes Presentation at ESF TED Workshop Helsinki, May, 20th 2004 Robert Krimmer University.
An Architecture For Electronic Voting Master Thesis Presentation Clifford Allen McCullough Department of Computer Science University of Colorado at Colorado.
1 The Evolution of Internet Voting By Ka Ling Cheung.
Masked Ballot Voting for Receipt-Free Online Elections Sam Heinith, David Humphrey, and Maggie Watkins.
1 Kazue’s Proposal :00PM(CA) :00AM (Japan) Kazue Sako.
Andreas Steffen, , LinuxTag2009.ppt 1 LinuxTag 2009 Berlin Verifiable E-Voting with Open Source Prof. Dr. Andreas Steffen Hochschule für Technik.
Auditing of the Internet voting system: Estonian case Prof. Ülle Madise Member of the National Electoral Committee.
Securing Digital Democracy Carsten Schürmann, DemTech, IT University of Copenhagen.
Strasbourg – How to create trust-1 © G. Skagestein November 2006 How to create trust in electronic voting over an untrusted platform A possible solution.
Riccardo Genghini - Ws E-Sign Chairman – IETF PKIX San Francisco March Electronic Signature infrastructure for Europe Riccardo Genghini Cen/Isss.
Online voting: a legal perspective
LWDRM (Lightweight Digital Rights Management) Information Science and Technology Master 1 st Yuuki Horita.
Workshop 3A The role of the media in ensuring fair elections Forum for the Future of Democracy Kyiv, Ukraine October 2009.
Csaba Tiberiu Kovacs Secretary General of the Romanian Permanent Electoral Authority Secretary General of the Romanian Permanent Electoral Authority.
ISupport The future electronic case management and communication system in support of the 2007 Convention and 2009 Regulation on the recovery of maintenance.
Secure Remote Electronic Voting CSE-681 Fall 2006 David Foster and Laura Stapleton Laura StapletonLaura Stapleton.
Evaluation of an E-Voting Device based on a Common Criteria Protection Profile Roland Vogt, DFKI GmbH Dr. Sönke Maseberg, datenschutz nord GmbH 8th ICCC,
E-Government, E-Voting, and the Future Jordan Weiler.
The European Citizens’ Initiative Legal framework Rules and procedures The procedure at a glance Initiatives Online collection Signatories The ECI in the.
Usable Security Lab Crypto Lab Efficiency Comparison of Various Approaches in E-Voting Protocols Oksana Kulyk, Melanie Volkamer.
Secure, verifiable online voting 29 th June 2016.
Presentation on Electoral Reform for Town Hall Meetings Member of Parliament: Riding: Location: DATE:
Internet Voting Past, Present, Future Scytl June 29, 2016.
The Electoral Modernisation Programme in the United Kingdom
Electronic voting – safe or not?
ISI Day – 20th Anniversary
The Italian Academic Community’s Electronic Voting System
e-Security Solutions Penki Kontinentai Vladas Lapinskas
Current Status and Recent Developments
Presentation transcript:

Informatics Online Voting Opportunities and Risks STOA Workshop at the European Parliament Brussels, 17 March 2011 Prof. Dr. Rüdiger Grimm IT Risk Management Universität Koblenz-Landau

Informatics Grimm 2011: Online Voting 2/20 Agenda How it is today Security concern Trust challenge Solution

Informatics Grimm 2011: Online Voting 3/20 Legally Binding Internet Elections in Europe in 2011 Switzerland –Legally binding internet elections in February 2011 for all cantons –since 2002, pilots in Zürich, Neuenburg and Geneva Norway –legally binding municipal elections in 2011 –Internet voting and paper-ballot voting –voter can recast his/her electronic vote multiple times –terminal voting overrides Internet voting –paper votes override electronic votes –open source system (ErgoGroup & Scytl) –cryptographic protocol integrated into high school maths

Informatics Grimm 2011: Online Voting 4/20 Legally Binding Internet Elections in Europe in 2011 Estonia –legally binding Internet elections since 2005 –Internet voting and paper-ballot voting –voter can recast his/her electronic vote multiple times –newer electronic vote overrides older vote –paper vote overrides electronic vote –new for elections in March 2011: mobile authentication

Informatics Grimm 2011: Online Voting 5/20 Estonia 2005 Local Elections 2007 Parliamentary Elections 2009 European Parliament Elections 2009 Local Elections Eligible voters Participating voters Voter turnouts 47,4%61,9%43,9%60,6% I-Voters I-Voters among eligible voters 0,9%3,4%6,5%9,5% I-Voters among participating voters 1,9%5,5%14,7%15,8% [ ]

Informatics Grimm 2011: Online Voting 6/20 Online voting out there in the world … France, French citizens abroad, 2003 tests The Netherlands, citizens abroad Germany, more than 30 real voting in private area UK, tests 2002, 2003, 2007 Portugal, 2004 EU and 2005 Parliament Tests Austria, since 2003, voting in academic area and for citizens abroad … and a lot more in the USA

Informatics Grimm 2011: Online Voting 7/20 Online voting systems in use Polyas, Germany –Association of Computer Science (GI) Bodies –Research Funding Association (DFG) Bodies Helios, USA/Belgium –Undergraduate Student Government at Princeton in Spring 2011 –Student elections at the Université catholique de Louvain in 2010 –International Association for Cryptologic Research (IACR) in 2010 voter turnout ~30% (compared to ~20% with paper-based elections) –Presidential election at the Université catholique de Louvain in 2009 Many more for research and demonstration –Bingo, ThreeBallot, Prêt à Voter, Punchscan, …

Informatics Grimm 2011: Online Voting 8/20 Classical advantage Ubiquity and 24-7 Seamless integration in everyday communication, esp. of Internet generation Easy-to-use, also for complex applications  Increase of participation

Informatics Grimm 2011: Online Voting 9/20 Participation in GI Board Elections Casted Votes Registered Voters Online Participation 13,7% 24,1% 16,9% 20,5% 17,5%

Informatics Grimm 2011: Online Voting 10/20 Agenda How it is today Security Concern Trust Challenge Solution

Informatics Grimm 2011: Online Voting 11/20 Correctness and Anonymity Do machines Does network Are our votes Will our votes remain Are there hidden access points for manipulation ?? work as we expect ?? secret ??

Informatics Grimm 2011: Online Voting 12/20 Security can be provided, technically Several solutions for anonymity, e.g., blind signatures and separation of duty Organizational approach of protection profile and system security evaluation by Common Criteria See BSI basic protection profile and Polyas evaluation  Security is manageable But How do people KNOW that these security features work?

Informatics Grimm 2011: Online Voting 13/20 Security can be provided, technically But how do people KNOW that these security features work? Cars work safely, if they do not crash Voting systems work safely, if … they do not crash?? Public relies on experts certification Is trust in experts’ statement sufficient? Are there better procedures to feel (see, touch, experience…) security … and to check correctness?

Informatics Grimm 2011: Online Voting 14/20 Agenda How it is today Security Concern Trust Challenge Solution

Informatics Grimm 2011: Online Voting 15/20 Verifiability March 2009, German Constitutional Law has stated as basic requirement: –Verifiability of voting process by everyone –Even without deeper knowledge of technology What is verifiability? –Cast as intended (individually) –Stored as cast (individually, universally) –Tallied as stored (universally)

Informatics Grimm 2011: Online Voting 16/20 Verification encrypt cast ballot decrypt recorded-as-cast cast-as-intended counted-as-recorded

Informatics Grimm 2011: Online Voting 17/20 Verification by Bulletin Board encrypt cast ballot decrypt publish ballots publish votes encrypted-as-intended recorded-as-cast cast-as-intended counted-as-recorded decrypted-as-recorded Bräunlich/Grimm,

Informatics Grimm 2011: Online Voting 18/20 Agenda How it is today Security Concern Trust Challenge Solution

Informatics Grimm 2011: Online Voting 19/20 Solution Internet Voting can provide better functionality than paper voting Ubiquity and 24-7 Seamless integration in everyday communication, esp. of Internet generation Easy-to-use, also for complex applications –Universal and individual verification –Multiple voting (recast) –Multiple media (paper, terminal, Internet) –Integration with eParticipation

Informatics Grimm 2011: Online Voting 20/20 References Johannes Pichler (Hrsg.): Überlegungen zur Hebung demokratischer Partizipation – Provokationen und Optionen. Schriften zur Rechtspolitik, Band 31, Neuer Wissenschaftlicher Verlag, Wien, Graz Krimmer, Robert; and Grimm, Rüdiger (Eds.): Electronic Voting 2010, 2008, and Lecture Notes in Informatics, Bonn 2010, 2008, and 2006, resp. Volkamer, M., Vogt, R.: Common Criteria Protection Profile For Basic Set of Security Requirements for Online Voting Products. BSI-CC-PP-0037, Version 1.0, 18. April Estonia: Helios: Polyas: