Electronic Voting R. Newman. Topics Defining anonymity Need for anonymity Defining privacy Threats to anonymity and privacy Mechanisms to provide anonymity.

Slides:



Advertisements
Similar presentations
Research & Development Workshop on e-Voting and e-Government in the UK - February 27, 2006 Votinbox - a voting system based on smart cards Sébastien Canard.
Advertisements

Analysis of an Internet Voting Protocol Dale Neal Garrett Smith.
Secret Ballot Receipts: True Voter Verifiable Elections Author: David Chaum Published: IEEE Security & Privacy Presenter: Adam Anthony.
Last Class: The Problem BobAlice Eve Private Message Eavesdropping.
An Electronic Voting Protocol (revisited)
Requirements for a Secure Voting System  Only authorized voters can vote  No one can vote more than once  No one can determine for whom anyone else.
The Italian Academic Community’s Electronic Voting System Pierluigi Bonetti Lisbon, May 2000.
Civitas Verifiability and Coercion Resistance for Remote Voting University of South Alabama August 15, 2012 Michael Clarkson The George Washington University.
Conducting an Election by Paper Ballot
A Pairing-Based Blind Signature
ThreeBallot, VAV, and Twin Ronald L. Rivest – MIT CSAIL Warren D. Smith - CRV Talk at EVT’07 (Boston) August 6, 2007 Ballot Box Ballot Mixer Receipt G.
ETen E-Poll ID – Strasbourg COE meeting November, 2006 Slide 1 E-TEN E-POLL Project Electronic Polling System for Remote Operation Strasbourg.
Lesson 7: The Voting Process. Opening Discussion Have you ever voted for something before? How was the winner decided? Did you think the process was fair?
Counting Your Ballots By Barb Agnew Burnet County Elections Administrator.
Claudia Diaz, Hannelore Dekeyser, Markulf Kohlweiss, Girma Nigusse K.U.Leuven IDIS Workshop 29/05/2008 [Work done in the context of the ADAPID project]
Understanding Networked Applications: A First Course Chapter 14 by David G. Messerschmitt.
Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.
Election Observer Training 2008 Elections Certification & Training Program
Receipt-free Voting Joint work with Markus Jakobsson, C. Andy Neff Ari Juels RSA Laboratories.
© VoteHere, Inc. All rights reserved. November 2004 VHTi Data Demonstration Andrew Berg Director, Engineering.
Receipt-freeness and coercion-resistance: formal definitions and fault attacks Stéphanie Delaune / Steve Kremer / Mark D. Ryan.
Secret Voting What makes a secret vote secret?. Voting Goals Need to record who voted only eligible voters can vote, nobody votes twice Need to record.
Electronic Voting (E-Voting) An introduction and review of technology Written By: Larry Brachfeld CS591, December 2010.
Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.
Chapter 10 Section 1: p  Early America: most voters were white, adult males who owned property ◦ White adult males who could not afford property,
Ballot Processing Systems February, 2005 Submission to OASIS EML TC and True Vote Maryland by David RR Webber.
Digital Signature Xiaoyan Guo/ Xiaohang Luo/
1 Lecture 18: Security issues specific to security key management services –privacy –integrity/authentication –nonrepudiation/plausible deniability.
AQA Computing A2 © Nelson Thornes 2009 Section Unit 3 Section 6.4: Internet Security Digital Signatures and Certificates.
Csci5233 Computer Security1 Bishop: Chapter 14 Representing Identity.
Election Accessibility 2004 Christina Galindo-Walsh National Association of Protection and Advocacy Systems (NAPAS)
Network Security Lecture 26 Presented by: Dr. Munam Ali Shah.
Protecting Internet Communications: Encryption  Encryption: Process of transforming plain text or data into cipher text that cannot be read by anyone.
CSCD 218 : DATA COMMUNICATIONS AND NETWORKING 1
6. Esoteric Protocols secure elections and multi-party computation Kim Hyoung-Shick.
Georgia Electronic Voting System Testing and Security Voting Systems Testing Summit November 29, 2005.
Chapter 6:Esoteric Protocols Dulal C Kar. Secure Elections Ideal voting protocol has at least following six properties 1.Only authorized voters can vote.
R. Newman Anonymity - Background. Defining anonymity Defining anonymity Need for anonymity Need for anonymity Defining privacy Defining privacy Threats.
Evoting using collaborative clustering Justin Gray Osama Khaleel Joey LaConte Frank Watson.
Csci5233 computer security & integrity 1 Cryptography: an overview.
Lecture 16: Security CDK4: Chapter 7 CDK5: Chapter 11 TvS: Chapter 9.
31.1 Chapter 31 Network Security Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
WISTP’08 ©LAM /05/2008 A Self-Certified and Sybil-Free Framework for Secure Digital Identity Domain Buildup Christer Andersson Markulf Kohlweiss.
Security Many secure IT systems are like a house with a locked front door but with a side window open -somebody.
Idaho Procedures M100 OPTICAL SCAN PRECINCT TABULATOR.
The Mathematics of Voting Chapter 1. Voting theory: application of methods that affect the outcome of an election. Sec 1: Preference Ballots and Schedules.
DIGITAL SIGNATURE.
Kurt S. Browning Secretary of State Dr. Gisela Salas Director, Division of Elections Presented by: David Drury, Bureau Chief Bureau of Voting Systems Certification,
Reporting Abstract Requirements and Procedures. New Reporting Requirement Official Abstract of Votes New form to be completed and submitted to the Secretary.
Electronic Cash R. Newman. Topics Defining anonymity Need for anonymity Defining privacy Threats to anonymity and privacy Mechanisms to provide anonymity.
1 of 4 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2006 Microsoft Corporation.
Lecture 11 Overview. Digital Signature Properties CS 450/650 Lecture 11: Digital Signatures 2 Unforgeable: Only the signer can produce his/her signature.
The Mathematics of Voting Chapter 1. Preference Ballot A Ballot in which the voters are asked to rank the candidates in order of preference. 1. Brownies.
Lecture 9 Overview. Digital Signature Properties CS 450/650 Lecture 9: Digital Signatures 2 Unforgeable: Only the signer can produce his/her signature.
Conducting an Election by Paper Ballot presented by Margarette Meeks Special Assistant Attorney General Opinions Division Mississippi Attorney General’s.
I-9 Instructions and FAQs
Cryptography: an overview
Voting and Apportionment
Recipt-free Voting Through Distributed Blinding
Computer Communication & Networks
ThreeBallot, VAV, and Twin
Cryptanalysis on Mu–Varadharajan's e-voting schemes
CSCE 715: Network Systems Security
Division of Elections Florida Department of State
1.3 The Borda Count Method.
Untraceable Electronic Mail, Return addresses, and Digital Pseudonyms
Warm Up – 1/23 - Thursday How many people voted in the election?
eVoting System Proposal
Classwork: p.33 (27abc run off, 29ab run off, 31, 33ab run off)
The Italian Academic Community’s Electronic Voting System
Presentation transcript:

Electronic Voting R. Newman

Topics Defining anonymity Need for anonymity Defining privacy Threats to anonymity and privacy Mechanisms to provide anonymity Metrics for Anonymity Applications of anonymity technology

Privacy Need anonymity to protect against retribution Need privacy to protect against coersion Authorization Need to ensure only enfranchised vote Need to prevent multiple voting Verifiability Need to make sure your vote was counted Need to be able to verify tally is correct Auditability is needed in case of disputes Voting Requirements

Data integrity and reliability - tamperproof Voter anonymity and data confidentiality Operator authentication Documentation and assurance Personnel integrity Specific Requirements

System accountability System disclosability System availability System reliability Interface usability Specific Reqs – the ”-ilities”

Plurality Voting One vote per voter Candidate with most votes wins Plurality with Run-off Plurality voting selects top two candidates Top two candidates have second election Approval Voting Voters can approve of multiple candidates Candidate with most votes wins Types of Voting

Instant Run-off Candidate with fewest votes eliminated Repeat until candidate with majority Pairwise Elimination Vote in tournament style Borda Voting Voters submit total order on candidates Candidate with most points wins Many more.... More Types of Voting

Secret Sharing Threshold systems Basic versions assume: Honest distribution Honest reconstruction PVSS resists Dealer distributing incorrect shares Anyone can verify correctness Participants submitting incorrect shares Publically Verifiable Secret Sharing

Voters Register and vote Registrar Validate voters Distribute ballots Ballot Box – Vote Certifier Allow voters to post anonymous, verifiable ballots Tallyer Collect valid ballots Post verifiable results Generic Approach - Players

Phase I – Registering Voter contacts Registrar, proves identity Registrar verifies identity, gives blank ballot Phase II – Voting Voter prepares ballot, submits to ballot box Ballot box validates ballot, posts ballots Public (including voters) verify ballots Phase III – Tallying Tallyer combines votes on ballots, publishes results Public verifies results Generic Approach - Phases

Registrar gets list of valid voters Voter sends Registrar proof of identity along with blinded ballots Public key signature on message Registrar verifies voter’s identity and validity Verifies signature Checks that name is on list of valid voters Registrar signs blinded ballots Typically uses cut-and-choose to detect cheating Blinding removes association with voter Registering

Voter unblinds ballots Voter selects ballot with candidate of choice Voter anonymously sends ballot to Ballot Box Ballot Box verifies ballot Signature from Registrar Ballot Box posts ballot Voter can see that her ballot has been cast Voting

Ballot Box closes polls when period is over Tallyer collects all valid ballots Tallyer computes results and posts Public can validate results Tallying

Registrar gets list of valid voters Voter sends Registrar proof of identity Public key signature on message Registrar verifies voter’s identity and validity Verifies signature Checks that name is on list of valid voters Registrar sends Voter blank ballot Keeps digest of voters, ballots Registering – Alternative 1

Voter marks signed ballot with choice(s) Voter sends blinded marked ballot to Certifier Voter signs blinded marked ballot Certifier validates ballot Checks signature vs. list of voters Does not know ballot number Signs blinded ballot Voter unblinds ballot, anonymously sends to Tallyer Tallyer anonymously sends receipt to voter Voting – Alternative 1

Tallyer counts valid votes Tallyer publishes results Counting – Alternative 1

Registrar gets list of valid voters Voter sends Registrar proof of identity along with blinded public key PK used as a pseudonym Registrar verifies voter’s identity and validity Verifies signature Checks that name is on list of valid voters Registrar signs blinded public key Blinding removes association with voter Voter has registrar’s signature on PK certificate Registering – Alternative 2

Voter produces ballot Uses proper format Signs balloot using pseudonym public key Voter sends signed ballot to Ballot Box Ballot sent anonymously BB can’t link ballot to sender or to signer BB verifies ballot Checks signature on ballot Checks that PK certificate signed by Registrar BB posts valid ballots Voting – Alternative 2

Tallyer closes election when time is up Tallyer combines validedated ballots Publishes results Tallying – Alternative 2

Obtaining marked ballot that is Not tied to the voter Verifiable Insuring that fraud cannot occur Voter can only vote once Nobody other than voter can use voter’s ballot Only valid voters can vote Auditability What about write-in ballots? Issues

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.