chvote towards 2 0
play

CHvote towards 2.0 Evolution of the electronic voting system of - PowerPoint PPT Presentation

Oct 16, 2023 •487 likes •723 views

CHvote towards 2.0 Evolution of the electronic voting system of Canton Geneva Bio Thomas Hofer Java Dev OWASP Geneva, co-chapter leader State of Geneva @thhofer / thomas.hofer@owasp.org Outline Context Updated

  1. CHvote – towards 2.0 Evolution of the electronic voting system of Canton Geneva

  2. Bio • Thomas Hofer • Java Dev • OWASP Geneva, co-chapter leader • State of Geneva • @thhofer / thomas.hofer@owasp.org

  3. Outline • Context • Updated requirements • Core protocol concepts • Implementation overview • Current results • Ongoing work

  4. Context • Stable democracy • 4 referendum & initiatives rounds / year • municipal, cantonal and federal elections – Usually 2-4 rounds / year • currently used by several cantons • Developed, hosted & maintained by Geneva

  5. Preliminary project – Goals • New voting protocol (BFH) • PoC Implementation (State of Geneva) – Feasibility – Performance – Constraints and limitations • Publication of specification and code

  6. Updated requirements > Intro • New ordinance on Electronic Voting (2013) – Technical & admin requirements • Compliance levels -> allowed percentage of electorate – 30% / 50% / 100% • https://www.bk.admin.ch/themen/pore/evoting/ 07979/index.html

  7. Upd. Req. > Individual verifiability voters must receive proof that the server system has registered the vote as it was entered by the voter on the user platform – VEleS, art. 4 • In current version: random codes per voter / response

  8. Upd. Req. > End-to-End encryption Votes must not be stored or transmitted in unencrypted form at any time from being entered to tallying. – Technical and administrative requirements, section 3.3.4 • In current version: – Incompatible with individual verifiability implementation – Server needs to know vote to return the matching verification code

  9. Upd. Req. > Universal verifiability For universal verification, the auditors receive proof that the result has been ascertained correctly. They must evaluate the proof in a observable procedure. – VEleS, art. 5 paragraph 4 • In current version: – Not available; external supervision by party representatives holding the private decryption key

  10. Upd. Req. > Control components The trustworthy part of the system includes either one or a small number of groups of independent components secured by special measures (control components). Their use must also make any abuse recognisable if per group only one of the control components works correctly and in particular is not manipulated unnoticed. – VEleS, art. 5, par. 6 • In current version: – Application server protected by organisational measures and enforced policies

  11. Core protocol concepts • El Gamal homomorphic encryption • Oblivious Transfer for individual verifiability – Cast-as-Intended Verification in Electronic Elections Based on Oblivious Transfer • Pedersen Commitments • Non-interactive Zero-Knowledge Proofs • Wikström ’s Proof of a Shuffle

  12. Homomorphic encryption • Allows re-encryptions – Useful for anonymizing when shuffling • Allows for key sharing – Control components each hold a key share

  13. Oblivious Transfer • In short – Server knows n secret messages – Client allowed to retrieve k secret messages – Server cannot know which messages the client asked for – Perfect match for the verification codes issue! • In detail – Cast-as-Intended Verification in Electronic Elections Based on Oblivious Transfer

  14. Commitments and ZKPs • “public” commitments for the secrets • ZKPs relative to those commitments – Chain of truth from key generation to ballot decryption • Combination yields Universal verifiability

  15. Wikstr öm’s Proof of a Shuffle • Re-encrypting mix-net • Since shuffled, simple pre-image proofs would not work • Since re-encrypted, ciphertexts are not equal • Need for a specific profo that the cryptographic shuffle is valid

  16. Implementation • Algorithms – ch.ge.ve.protopoc.service.algorithm • Utilities defined in specification – ch.ge.ve.protopoc.service.support • Simulation-related classes – ch.ge.ve.protopoc.service.simulation • Run simulation – ./gradlew simulation

  17. Implementation – Snippet /** * Algorithm 7.4: GetNIZKPChallenge * * @param y the public values vector (domain unspecified) * @param t the commitments vector (domain unspecified) * @param kappa the soundness strength of the challenge * @return the computed challenge */ public BigInteger getNIZKPChallenge(Object[] y , Object[] t , int kappa ) { return conversion.toInteger( hash.recHash_L( y , t )).mod(BigIntegers. TWO .pow( kappa )); }

  18. Implementation – Demo

  19. Results: Specification • https://ia.cr/2017/325 • Written by team at BFH

  20. Results: PoC implementation • Covers complete protocol (incl. proofs) • Available on GitHub – https://github.com/republique-et-canton-de- geneve/chvote-protocol-poc • Issues & PRs welcome!

  21. Result: Performance estimates • Also available on GitHub – Much better than initially feared – 100k ballots could be • Shuffled, • Decrypted, • & Verified; • Using “standard” hardware • Within operational time constraints

  22. Soooo … what’s left then? • GUI  • Distribution – Real infrastructure for Control Components • Resilience • Custom rules for layout, specific elections, … • Back- office, test zone, … • Cantonal interoperability

  23. Q&A

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

13/11/2019 COPE WEBINAR SERIES FOR HEALTH PROFESSIONALS FINDING SLIDES FOR TODAYS WEBINAR

13/11/2019 COPE WEBINAR SERIES FOR HEALTH PROFESSIONALS FINDING SLIDES FOR TODAYS WEBINAR

13/11/2019 COPE WEBINAR SERIES FOR HEALTH PROFESSIONALS FINDING SLIDES FOR TODAYS WEBINAR November 13, 2019 Using g e ne tic informa tion to pre dic t a nd tre a t obe sity: www.villanova.edu/COPE Click on Loos Ar e we r e ady for

532 views • 8 slides
WH WHEN N EXP XPER ERTS TS TALK LK, , DO DOES S ANY NYONE ONE LI LIST STEN? EN? THE

WH WHEN N EXP XPER ERTS TS TALK LK, , DO DOES S ANY NYONE ONE LI LIST STEN? EN? THE

WH WHEN N EXP XPER ERTS TS TALK LK, , DO DOES S ANY NYONE ONE LI LIST STEN? EN? THE LIMITS OF EXPERT INFLUENCE ON PUBLIC OPINION ERIC MERKLEY UNIVERSITY OF BRITISH COLUMBIA PRESENTATION FOR THE SPPGA APRIL 10, 2019 PROBLEM Pu

959 views • 39 slides
Chemical properties of Blue Compact Dwarf galaxies: Local Analogues of High Redshift Galaxies

Chemical properties of Blue Compact Dwarf galaxies: Local Analogues of High Redshift Galaxies

Chemical properties of Blue Compact Dwarf galaxies: Local Analogues of High Redshift Galaxies Nimisha Kumari Schlumberger Fellow University of Cambridge, UK Kumari+2017, 2018, 2019a Bethan James, Mike Irwin, Alessandra Aloisi, Ricardo

619 views • 19 slides
OCELOTL: CLOSE ENCOUNTERS OF THE THIRD KIND 8th International Parallel Tools Workshop 1st

OCELOTL: CLOSE ENCOUNTERS OF THE THIRD KIND 8th International Parallel Tools Workshop 1st

OCELOTL: LARGE TRACE OVERVIEWS BASED ON MULTIDIMENSIONAL DATA AGGREGATION OCELOTL: CLOSE ENCOUNTERS OF THE THIRD KIND 8th International Parallel Tools Workshop 1st October 2014 Damien Dosimont 1 2 , Youenn Corre 1 2 , Lucas M. Schnorr 3 ,

611 views • 46 slides
Geneva, MAY 2014. The possible existence of a QUANTUM TIME OPERATOR and its possible refutation

Geneva, MAY 2014. The possible existence of a QUANTUM TIME OPERATOR and its possible refutation

Geneva, MAY 2014. The possible existence of a QUANTUM TIME OPERATOR and its possible refutation in meson experiments. Thomas Durt. Ecole Centrale de Marseille-Institut Fresnel. First Prev Next Last Go Back Full Screen

787 views • 27 slides
A pseudonymous trust system for a decentralized anonymous

A pseudonymous trust system for a decentralized anonymous

Na?onal Technical University of Athens School of Electrical and Computer Engineering Department of Computer Science A pseudonymous trust system for a

1.21k views • 83 slides
Disordered Elastic Systems T. Giamarchi http://dqmp.unige.ch/gr_giamarchi/ E. Agoritsas

Disordered Elastic Systems T. Giamarchi http://dqmp.unige.ch/gr_giamarchi/ E. Agoritsas

Disordered Elastic Systems T. Giamarchi http://dqmp.unige.ch/gr_giamarchi/ E. Agoritsas (Geneva) S. Lemerle (Orsay) S. Barnes (Miami U.) J. Ferr (Orsay) S. Bustingorry (Bariloche) J.P. Jamet (Orsay) D. Carpentier (ENS Lyon) V. Jeudy

513 views • 38 slides
Facility Expansion Project Spaces Needs Exhibit Space for the 650-700 sq. ft. Walker

Facility Expansion Project Spaces Needs Exhibit Space for the 650-700 sq. ft. Walker

Facility Expansion Project Spaces Needs Exhibit Space for the 650-700 sq. ft. Walker Collection Archival Storage 325 sq. ft. Walker Collection Storage 500 sq. ft. Non-Walker Collections 500 sq. ft. Storage Total 2, 025 sq. ft. Options

349 views • 11 slides
Meeting o of t the d delegations o of N Norway a and t the U USSR a and e exchange o of

Meeting o of t the d delegations o of N Norway a and t the U USSR a and e exchange o of

Meeting o of t the d delegations o of N Norway a and t the U USSR a and e exchange o of v views o on the p preparation o of a a f future C Convention o on T Transboundary A Air P Pollution. (Mosc scow, 1 197 979) 9) On

40 views • 3 slides
Professor Didier Pittet Infection Control Programme and WHO Collaborating Centre on Patient

Professor Didier Pittet Infection Control Programme and WHO Collaborating Centre on Patient

Professor Didier Pittet Infection Control Programme and WHO Collaborating Centre on Patient Safety, University of Geneva Hospitals and Faculty of Medicine, Geneva, Switzerland Professor Benedetta Allegranzi Coordinator a.i, Infection Prevention

1.7k views • 152 slides
Eclipse of the Public Corporation or Eclipse of the Public Markets? Doidge, Kahle, Karolyi, Stulz

Eclipse of the Public Corporation or Eclipse of the Public Markets? Doidge, Kahle, Karolyi, Stulz

Eclipse of the Public Corporation or Eclipse of the Public Markets? Doidge, Kahle, Karolyi, Stulz Journal of Applied Corporate Finance, 2018 Some observations by Roni Michaely University of Geneva; Geneva Finance Research Institute, and SFI

552 views • 25 slides
Querying multiple Linked Data sources on the Web Ruben Verborgh If you have a Linked

Querying multiple Linked Data sources on the Web Ruben Verborgh If you have a Linked

Querying multiple Linked Data sources on the Web Ruben Verborgh If you have a Linked Open Data set, you probably wonder: How can people query my Linked Data on the Web? A public SPARQL endpoint gives live

732 views • 57 slides
IMT-2020 Work in ITU-R Working Party 5D (An Update on 2015 & 2016 Activities) Stephen M.

IMT-2020 Work in ITU-R Working Party 5D (An Update on 2015 & 2016 Activities) Stephen M.

IMT-2020 Work in ITU-R Working Party 5D (An Update on 2015 & 2016 Activities) Stephen M. Blust Chairman ITU-R Working Party 5D Version 1 8 December 2016 A RECAP OF THE PLAN FOR SETTING THE STAGE 5 G Related Aspects in I TU-R W

628 views • 23 slides
A New Method for the Study of Correlations between MT Evaluation Metrics Paula Estrella Andrei

A New Method for the Study of Correlations between MT Evaluation Metrics Paula Estrella Andrei

A New Method for the Study of Correlations between MT Evaluation Metrics Paula Estrella Andrei Popescu-Belis Margaret King School of Translation and Interpreting University of Geneva Introduction Correlation with human metrics is a

541 views • 24 slides
Blockchain and GDPR Blockchain Hands On, March 5 th 2019, Fusion, Geneva Jrn Erbguth,

Blockchain and GDPR Blockchain Hands On, March 5 th 2019, Fusion, Geneva Jrn Erbguth,

Blockchain and GDPR Blockchain Hands On, March 5 th 2019, Fusion, Geneva Jrn Erbguth, Dipl.-Inf., Dipl.-Jur. Consultant Legal Tech, Blockchain, Smart Contracts and Data Protection PhD candidate, University of Geneva joern@erbguth.ch +41

634 views • 42 slides
New Parent Orientation June 25, 2020 Outline I. Who we are II. What we expect III.

New Parent Orientation June 25, 2020 Outline I. Who we are II. What we expect III.

New Parent Orientation June 25, 2020 Outline I. Who we are II. What we expect III. Introductions Meet the Parent Council Meet Geneva School Administration Who We Are: Mission Statement The Geneva School of Manhattan exists to provide a

206 views • 19 slides
https://edms.cern.ch/document/1761678/1 Civil engineering aspects and challenges for CERNs

https://edms.cern.ch/document/1761678/1 Civil engineering aspects and challenges for CERNs

https://edms.cern.ch/document/1761678/1 Civil engineering aspects and challenges for CERNs Future Accelerators (100km Future Circular Collider / Linear Colliders and High Luminosity LHC) Introduction Future Circular Collider Study (FCC)

775 views • 63 slides
WA104: R&D on new large LAr detector C. Montanari (INFN Pavia) ICARUS-LBNE Collaboration

WA104: R&D on new large LAr detector C. Montanari (INFN Pavia) ICARUS-LBNE Collaboration

WA104: R&D on new large LAr detector C. Montanari (INFN Pavia) ICARUS-LBNE Collaboration ICFA Meeting at Paris Diderot University January 10th, 2013 The need for a continuing neutrino programme The recent, major success of

637 views • 25 slides
Facts and figures Niall OHiggins (YEP, ILO) Sarah Akwei-Marfo (GIDJY, ILO) Future of Work for

Facts and figures Niall OHiggins (YEP, ILO) Sarah Akwei-Marfo (GIDJY, ILO) Future of Work for

Rising to the youth employment challenge(s) in Africa: Facts and figures Niall OHiggins (YEP, ILO) Sarah Akwei-Marfo (GIDJY, ILO) Future of Work for African Youth, February 7 th 2019, Geneva Today 1. Nature and dimensions of the youth

555 views • 26 slides
1. 2. a. b. 3. a. b. c. d. 4.

1. 2. a. b. 3. a. b. c. d. 4.

1. 2. a. b. 3. a. b. c. d. 4.

761 views • 24 slides
I have no clue either why foreign citjzens partjcipate less Didier Ruedin University of the

I have no clue either why foreign citjzens partjcipate less Didier Ruedin University of the

I have no clue either why foreign citjzens partjcipate less Didier Ruedin University of the Witwatersrand & University of Neuchtel Annual Conference of the Swiss Politjcal Science Associatjon Basel, 22 January 2016 Image: CC-by-nc

477 views • 9 slides
TOWARDS TRUSTED IDENTITIES Cartoon courtesy of Jrgen Stamp, Digitalbevaring.dk. CC BY 2.5.

TOWARDS TRUSTED IDENTITIES Cartoon courtesy of Jrgen Stamp, Digitalbevaring.dk. CC BY 2.5.

TOWARDS TRUSTED IDENTITIES Cartoon courtesy of Jrgen Stamp, Digitalbevaring.dk. CC BY 2.5. FOR SWISS RESEARCHERS REN SCHNEIDER AND THEIR DATA ORCID: 0000-0003-4897-8561 JULIEN A. RAEMY DOI: 10.5281/zenodo.2415996 ORCID:

865 views • 38 slides
Dissipation in resonant systems: Implications of observed orbital configurations J.-B. Delisle,

Dissipation in resonant systems: Implications of observed orbital configurations J.-B. Delisle,

Dissipation in resonant systems: Implications of observed orbital configurations J.-B. Delisle, J. Laskar, A. C. M. Correia Geneva Observatory - Switzerland October 8, 2015 Resonant/near resonant systems What is a resonance between 2

517 views • 16 slides
SICEM SAGA CMP FOR PAPER INDUSTRY www. sicemsaga.com PRODUCTION UNIT, HYSTORY RAW

SICEM SAGA CMP FOR PAPER INDUSTRY www. sicemsaga.com PRODUCTION UNIT, HYSTORY RAW

SICEM SAGA CMP FOR PAPER INDUSTRY www. sicemsaga.com PRODUCTION UNIT, HYSTORY RAW MATERIAL PRODUCT APPLICATIONS AND SALES PRODUCTION PROCESS BALES AND TRASPORT UNITS QUALITY CONTROL AND R&D ENERGY MANAGEMENT AND

390 views • 27 slides

More recommend