Presentation is loading. Please wait.

Presentation is loading. Please wait.

Evaluation of an E-Voting Device based on a Common Criteria Protection Profile Roland Vogt, DFKI GmbH Dr. Sönke Maseberg, datenschutz nord GmbH 8th ICCC,

Published byPaula Marshall Modified over 8 years ago

Similar presentations

Presentation on theme: "Evaluation of an E-Voting Device based on a Common Criteria Protection Profile Roland Vogt, DFKI GmbH Dr. Sönke Maseberg, datenschutz nord GmbH 8th ICCC,"— Presentation transcript:

1 Evaluation of an E-Voting Device based on a Common Criteria Protection Profile Roland Vogt, DFKI GmbH Dr. Sönke Maseberg, datenschutz nord GmbH 8th ICCC, Rome

2 Agenda  E-Voting device to be used for the Hamburg state parliament election in February 2008  Pros and Cons  Election Principles and Security Policy  Crucial decisions and their implications  Challenges of the evaluation  Conclusion

3 E-Voting device dotVote ® I  Digital Election Pen

4 E-Voting device dotVote ® II  Stand-alone laptops  Electronic ballot box

5 E-Voting device dotVote ® III  Automatic as well as manual validation of votes  Calculation of results Product info (german): www.dotvote.de

6 Pros & Cons Pros  Traditional vote casting  No artificial invalidation  Voter verifiable audit trail  Standard platform Cons  Difficult validation of votes  Accidental invalidation  Resolution of counting problems  Digital election pens with limited security features

7 Election Principles and Security policy  CC 2.3 Protection Profile „Digital Pen Election System“ (BSI-PP-0031; german)  Votes must not be intercepted nor modified  Votes must not be known before the official ballot reading  Only registered voters should be able to vote  Each voter should have one and only one vote  Vote secrecy is guaranteed: it never will be possible to link a voter to his/her vote  All critical events should be auditable

8 Crucial decisions and their implications I  Trustworthy scrutineers  OSPs vs. Threats  In analogy to traditional election  Voters as attackers  Votes are the target of attack  Standard platform  No network connections, i.e. election districts are isolated

9 Crucial decisions and their implications II  Paper ballots as emergency backup  Destruction of storage media is an accepted risk  EAL3  How to demonstrate correct implementation of unlinkability mechanism?  Code Review?

10 Challenges I  Authenticity/Integrity of pens  SOF claim for seals  Unlinkability while storing on a standard file system  SOF claim & vulnerabilities

11 Challenges II  Analysis/ Validation of votes  Insufficient amount of labelled training/evaluation data  Correctness vs. Effectiveness vs. Performance  Should the voter considered as an attacker here?

12 Conclusion  E-Voting is one of the challenging applications of CC evaluation  Protection Profile (BSI-PP-0031) is existing  Currently the digital election pen system dotVote ® is in evaluation based on this PP  Experience are expected in February 2008

Download ppt "Evaluation of an E-Voting Device based on a Common Criteria Protection Profile Roland Vogt, DFKI GmbH Dr. Sönke Maseberg, datenschutz nord GmbH 8th ICCC,"

Similar presentations

NeDAP eSecurity Action Line SOIS meeting 7.04.2006, Riga Jaak Tepandi, Estonia.

NeDAP eSecurity Action Line SOIS meeting , Riga Jaak Tepandi, Estonia.
Automated Evaluation of Runtime Object States Against Model-Level States for State-Based Test Execution Frank(Weifeng) Xu, Gannon University Dianxiang.

Automated Evaluation of Runtime Object States Against Model-Level States for State-Based Test Execution Frank(Weifeng) Xu, Gannon University Dianxiang.
A Pairing-Based Blind Signature

A Pairing-Based Blind Signature
Will Your Vote Count? Will your vote count? Voting machine choices N.C. Coalition for Verified Voting www.ncvoter.net Joyce McCloy Pros and Cons of voting.

Will Your Vote Count? Will your vote count? Voting machine choices N.C. Coalition for Verified Voting Joyce McCloy Pros and Cons of voting.
ETen E-Poll ID – Strasbourg COE meeting 23-24 November, 2006 Slide 1 E-TEN 29332 E-POLL Project Electronic Polling System for Remote Operation Strasbourg.

ETen E-Poll ID – Strasbourg COE meeting November, 2006 Slide 1 E-TEN E-POLL Project Electronic Polling System for Remote Operation Strasbourg.
Electronic Ballot Reader Rosa Arias Chad Feller Walter Smith.

Electronic Ballot Reader Rosa Arias Chad Feller Walter Smith.
ICT IN THE ELECTORAL PROCESS: LESSONS LEARNED Susanne Caarls International Electoral Affairs Symposium 30-31 May 2012.

ICT IN THE ELECTORAL PROCESS: LESSONS LEARNED Susanne Caarls International Electoral Affairs Symposium May 2012.
By Varun Jain. Introduction  Florida 2000 election fiasco, drew conclusion that paper ballots couldn’t be counted  Computerized voting system, DRE (Direct.

By Varun Jain. Introduction  Florida 2000 election fiasco, drew conclusion that paper ballots couldn’t be counted  Computerized voting system, DRE (Direct.
Effective Design of Trusted Information Systems Luděk Novák,

Effective Design of Trusted Information Systems Luděk Novák,
BSI activities in developing PPs and the BSI-PP/ST-Guide Bundesamt für Sicherheit in der Informationstechnik / Federal Office for Information Security.

BSI activities in developing PPs and the BSI-PP/ST-Guide Bundesamt für Sicherheit in der Informationstechnik / Federal Office for Information Security.
German Research Center for Artificial Intelligence Protection Profile for Central Requirements for Online Voting German Research Center for Artificial.

German Research Center for Artificial Intelligence Protection Profile for Central Requirements for Online Voting German Research Center for Artificial.
TGDC Meeting, July 2011 Review of VVSG 1.1 Nelson Hastings, Ph.D. Technical Project Leader for Voting Standards, ITL

TGDC Meeting, July 2011 Review of VVSG 1.1 Nelson Hastings, Ph.D. Technical Project Leader for Voting Standards, ITL
Observation of e-enabled elections Jonathan Stonestreet Council of Europe Workshop Oslo, 18-19 March 2010.

Observation of e-enabled elections Jonathan Stonestreet Council of Europe Workshop Oslo, March 2010.
Information Security Policies and Standards

Information Security Policies and Standards
CMSC 414 Computer and Network Security Lecture 8 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 8 Jonathan Katz.
Electronic Voting (E-Voting) An introduction and review of technology Written By: Larry Brachfeld CS591, December 2010.

Electronic Voting (E-Voting) An introduction and review of technology Written By: Larry Brachfeld CS591, December 2010.
Electronic Voting Linh Nguyen. Electronic Voting  Voting Technologies  The Florida 2000 Election  Direct Recording Electronic Devices (DREs)‏ - Diebold.

Electronic Voting Linh Nguyen. Electronic Voting  Voting Technologies  The Florida 2000 Election  Direct Recording Electronic Devices (DREs)‏ - Diebold.
Stephen S. Yau CSE465 & CSE591, Fall 2006 1 Information Assurance (IA) & Security Overview Concepts Security principles & strategies Techniques Guidelines,

Stephen S. Yau CSE465 & CSE591, Fall Information Assurance (IA) & Security Overview Concepts Security principles & strategies Techniques Guidelines,
TESTING THE SECRUITY OF ELECTRONIC VOTING SYSTEM Presented By: NIPUN NANDA 100823581.

TESTING THE SECRUITY OF ELECTRONIC VOTING SYSTEM Presented By: NIPUN NANDA
Ballot Processing Systems February, 2005 Submission to OASIS EML TC and True Vote Maryland by David RR Webber.

Ballot Processing Systems February, 2005 Submission to OASIS EML TC and True Vote Maryland by David RR Webber.

Similar presentations

Ads by Google