An Architecture For Electronic Voting Master Thesis Presentation Clifford Allen McCullough Department of Computer Science University of Colorado at Colorado.

Slides:

Advertisements

Similar presentations

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Advertisements

AUTHENTICATION AND KEY DISTRIBUTION

Requirements for a Secure Voting System  Only authorized voters can vote  No one can vote more than once  No one can determine for whom anyone else.

Civitas Verifiability and Coercion Resistance for Remote Voting University of South Alabama August 15, 2012 Michael Clarkson The George Washington University.

ETen E-Poll ID – Strasbourg COE meeting November, 2006 Slide 1 E-TEN E-POLL Project Electronic Polling System for Remote Operation Strasbourg.

Internet Voting Technology and policy issues. Selective History of Voting (US) early 1800’s: public oral voting at County Hall 1800’s: free-form, non-secret.

Cryptographic Security Presented by: Josh Baker October 9 th, CS5204 – Operating Systems.

TGDC Meeting, July 2011 Review of VVSG 1.1 Nelson Hastings, Ph.D. Technical Project Leader for Voting Standards, ITL

Cryptography. 2 Objectives Explain common terms used in the field of cryptography Outline what mechanisms constitute a strong cryptosystem Demonstrate.

Page # Advanced Telecommunications/Information Distribution Research Program (ATIRP) Authentication Scheme for Distributed, Ubiquitous, Real-Time Protocols.

Principles of Information Security, 2nd edition1 Cryptography.

1/11/2007 bswilson/eVote-PTCWS 1 Paillier Threshold Cryptography Web Service by Brett Wilson.

CMSC 414 Computer (and Network) Security Lecture 2 Jonathan Katz.

Internet Voting Technology and policy issues David Wagner UC Berkeley.

10/25/20061 Threshold Paillier Encryption Web Service A Master’s Project Proposal by Brett Wilson.

Applying MESE processes to Improve Online E-Voting Prototype System with PTC Web Services Master Project Defense Hakan Evecek 1 5/29/2007Hakan Evecek/SE2Evote.

The Algebra of Encryption CS 6910 Semester Research and Project University of Colorado at Colorado Springs By Cliff McCullough 20 July 2011.

Cryptographic Technologies

Kickoff Meeting „E-Voting Seminar“

Electronic Voting (E-Voting) An introduction and review of technology Written By: Larry Brachfeld CS591, December 2010.

McGraw-Hill©The McGraw-Hill Companies, Inc., Security PART VII.

1/11/2007 bswilson/eVote-PTCWS 1 Enhancing PTC based Secure E-Voting System (note: modification of Brett Wilson’s Paillier Threshold Cryptography Web Service.

Fall 2010/Lecture 311 CS 426 (Fall 2010) Public Key Encryption and Digital Signatures.

Ballot Processing Systems February, 2005 Submission to OASIS EML TC and True Vote Maryland by David RR Webber.

Introduction to Public Key Cryptography

Civitas Toward a Secure Voting System AFRL Information Management Workshop October 22, 2010 Michael Clarkson Cornell University.

TGDC Meeting, Jan 2011 UOCAVA Pilot Projects for the 2012 Federal Election Report from the UOCAVA Working Group Andrew Regenscheid National Institute of.

An Architecture For Electronic Voting Master Thesis Presentation Clifford Allen McCullough Department of Computer Science University of Colorado at Colorado.

TGDC Meeting, July 2011 Overview of July TGDC Meeting Belinda L. Collins, Ph.D. Senior Advisor, Voting Standards, ITL

United States Election Assistance Commission EAC UOCAVA Documents: Status &Update EAC Technical Guidelines Development Committee Meeting (TGDC)

Chapter 14 Encryption: A Matter Of Trust. Awad –Electronic Commerce 2/e © 2004 Pearson Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic.

TGDC Meeting, July 2011 UOCAVA Roadmap Update Nelson Hastings, Ph.D. Technical Project Leader for Voting Standards, ITL

TGDC Meeting, July 2011 IEEE P.1622 Update John P. Wack Computer Scientist, Software and Systems Division, ITL

Invitation to Computer Science 5th Edition

NIST HAVA-Related Work: Status and Plans June 16, 2005 National Institute of Standards and Technology

Cryptographic Voting Systems (Ben Adida) Jimin Park Carleton University COMP 4109 Seminar 15 February 2011.

Making every vote count. United States Election Assistance Commission HAVA 101 TGDC Meeting December 9-10, 2009.

12/9-10/2009 TGDC Meeting NIST Research on UOCAVA Voting Andrew Regenscheid National Institute of Standards and Technology

Masked Ballot Voting for Receipt-Free Online Elections Sam Heinith, David Humphrey, and Maggie Watkins.

1 Election Operations Assessment Summary Election Assistance Commission.

Andreas Steffen, , LinuxTag2009.ppt 1 LinuxTag 2009 Berlin Verifiable E-Voting with Open Source Prof. Dr. Andreas Steffen Hochschule für Technik.

A. Steffen, , Kickoff.pptx 1 Kickoff Meeting „E-Voting Seminar“ An Introduction to Cryptographic Voting Systems Andreas Steffen Hochschule für.

TGDC Meeting, December Common Data Format Directions John P. Wack National Institute of Standards and Technology

March 4, 2004 Cryptography and Computer Security for Undergraduates Suzanne E. Gladfelter Penn State York

Security Overview  System protection requirements areas  Types of information protection  Information Architecture dimensions  Public Key Infrastructure.

Briefing for NIST Acting Director James Turner regarding visit from EAC Commissioners March 26, 2008 For internal use only 1.

Evoting using collaborative clustering Justin Gray Osama Khaleel Joey LaConte Frank Watson.

TGDC Meeting, Jan 2011 Accessibility and Usability Considerations for UOCAVA Remote Electronic Voting Systems Sharon Laskowski, PhD National Institute.

Applying MESE processes to Improve Online E-Voting Prototype System with PTC Web Services Master Project Defense Hakan Evecek 1 5/29/2007Hakan Evecek/SE2Evote.

NETWORK SECURITY.

Standards for e-Enabled Elections: The work of the OASIS Election & Voter Services Technical Committee John Borras Chair Technical Committee

The Paillier Cryptosystem

TGDC Meeting, July 2010 Report of the UOCAVA Working Group John Wack National Institute of Standards and Technology DRAFT.

TGDC Meeting, December 2011 Overview of December TGDC Meeting Belinda L. Collins, Ph.D. Senior Advisor, Voting Standards

TGDC Meeting, July 2011 Voluntary Voting System Guidelines Roadmap Nelson Hastings, Ph.D. Technical Project Leader for Voting Standards, ITL

TGDC Meeting, Jan 2011 Help America Vote Act (HAVA) Roadmap Nelson Hastings National Institute of Standards and Technology

TGDC Meeting, Jan 2011 Review of UOCAVA Roadmap Nelson Hastings National Institute of Standards and Technology

1 DECEMBER 9-10, 2009 Gaithersburg, Maryland TECHNICAL GUIDELINES DEVELOPMENT COMMITTEE Commissioner Donetta Davidson.

Secure Remote Electronic Voting CSE-681 Fall 2006 David Foster and Laura Stapleton Laura StapletonLaura Stapleton.

The VVSG Version 1.1 Overview Matthew Masterson Election Assistance Commission

TGDC Meeting, Jan 2011 Development of High Level Guidelines for UOCAVA voting systems Andrew Regenscheid National Institute of Standards and Technology.

TGDC Meeting, Jan 2011 Report from Workshop on UOCAVA Remote Voting Systems Nelson Hastings National Institute of Standards and Technology

Department of Computer Science Chapter 5 Introduction to Cryptography Semester 1.

Usable Security Lab Crypto Lab Efficiency Comparison of Various Approaches in E-Voting Protocols Oksana Kulyk, Melanie Volkamer.

TGDC Meeting, Jan 2011 UOCAVA Pilot Projects for the 2012 Federal Election Report from the UOCAVA Working Group Andrew Regenscheid National Institute of.

TGDC Meeting, Jan 2011 Accessibility and Usability Considerations for UOCAVA Remote Electronic Voting Systems Sharon Laskowski, PhD National Institute.

National Institute of Standards and Technology

Public Key Encryption and Digital Signatures

ISI Day – 20th Anniversary

eVoting System Proposal

Presentation transcript:

An Architecture For Electronic Voting Master Thesis Presentation Clifford Allen McCullough Department of Computer Science University of Colorado at Colorado Springs October ??, 2012

Outline The Need for an E-Voting System US Voluntary Voting System Guidelines Existing Solutions Proposed Architecture A Demonstration System Performance Comparisons Lessons Learned Future Work Summary 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough2

The Need for an E-Voting System Business Board of Directors Proxy votes US citizens overseas US military overseas 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough3

Related Work Brief Overview of the related literature in conferences/journal. (Pick key 3-4 papers). Just list their references. Mention how are they related to your work. 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough4

US Voluntary Voting System Guidelines (VVSG) Security Accuracy Error Recovery Integrity Vote Tabulation Casting a Ballot Accessibility Independent Verification System 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough5

Existing Solutions Commercial web-based voting systems are available Secure Electronic Registration and Voting Experiment (SERVE) Security Peer Review Group (SPRG) 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough6

Proposed Architecture Design Requirements General Schema The System Architecture Paillier Cryptography 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough7

Design Requirements VVSG Information Assurance general rules ◦ Minimize the attach surface ◦ Mitigate the vulnerabilities 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough8

General Schema Should not be centralized Greatest vulnerability are from insider attacks Denial of service Keep control of the ballot Publish the web application 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough9

The System Architecture Voting-Server Voter Authentication Issue Presentation Verify the Ballot Casting the Ballot Mutual Authentication 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough10

Election Key Pair Generation and Reproduced by Election Judges Describe how that work 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough11

How Ballots are Encoded/Encrypted/Decryted With a short example illustrate how ballot are encoded (candidate/write in) May include a snapshort like Figure 4. 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough12

System Diagram 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough13

Paillier Cryptography Exponential [cite ref] ◦ Show the formula for each method Homomorphic [ref] Generalized Paillier [ref] 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough14

A Demonstration System A 32-bit demonstration and development system based on ESXi (Do not use other people’s software product name as yours system name. Pick one that readers can remember and cited) A 64-bit demonstration system on EAS Infrastructure. Give it a name. 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough15

32-bit Development System 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough16

64-bit Demonstration System 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough17

Performance Comparisons Cryptographic Methods Cryptographic Key Generation Block Paillier vs. Generalized Paillier Ballot Casting Include Figures 3-8 Tables 3-7 in separate viewgraphs 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough18

Lessons Learned Freeware ◦ (add short description for each of these lessons) Internet Forums Using Multiple Programing Languages ◦ More detail here. 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough19

Future Work Redundancy Secret Share Encryption and Decryption Error Handling and Logging Ballot Generation Ballot and Multi-lingual Database Quorum Login 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough20

Summary Developing an Election Assistance Commission compliant voting system is a significant undertaking SERVE objective too much too soon Much future work available The demonstration system is a proof of concept 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough21

Demonstration Generate and load a key Initialize services Vote Collect the tally Decrypt the tally 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough22

References MotionVoter. (2011). Retrieved March 6, 2012, from Cardellini, V., Casalicchio, E., Colajanni, M., & Yu, P. S. (2002). The State of the Art in Locally Distributed Web-Server Systems. ACM Computing Surveys, Vol 34, No 2, Damgard, I. B., & Jurik, M. J. (December 2000). A Generalisation, a Simplification and some Applications of Paillier's Probabilstic Public-Key System. Basic Research in Computer Science, RS Defense, D. o. (2007). Expanding the Use of Electronic Voting Technology for UOCAVA Citizens. Department of Defense. EAC. (2010). Election Assistance Commission. Retrieved February 29, 2012, from EAC Voting System Testing and Certification Division. (2011). A Survey of Internet Voting. Washington, DC EAC VVSG Vol I. (2010). Voluntary Voting System Guidelines Volume I. Retrieved August 24, 2012, from United States Election Assistance Commission: EAC VVSG Vol II. (2010). Voluntary System Guidelines Volume II. Retrieved August 24, 2012, from United States Election Assistance Commission: Jefferson, D. D., Rubin, D. A., Simons, D. B., & Wagner, D. D. (2004). A Security Analysis of the Secure Electronic Registration and Voting Experiment (SERVE). Paillier, P. (1999). Public-Key Cryptosystems Based on Composite Degree Residuosity Clases. Advances in Cryptology - Eurocrypt '99, pp Shamir, A. (November, 1979). How to Share a Secret. Communications of the ACM, Vote-Now. (n.d.). Retrieved March 6, 2012, from 10/30/2012An Architecture for Electronic Voting by Clifford Allen McCullough23