combatting electoral traces
play

Combatting electoral traces The Dutch tempest discussion and beyond - PowerPoint PPT Presentation

Oct 02, 2023 •230 likes •537 views

Combatting electoral traces The Dutch tempest discussion and beyond Wolter Pieters My background Computer scientist & applied philosopher PhD Radboud University of Nijmegen 2007-2008 Dutch Ministry of the Interior (this work only

  1. Combatting electoral traces The Dutch tempest discussion and beyond Wolter Pieters

  2. My background � Computer scientist & applied philosopher � PhD Radboud University of Nijmegen � 2007-2008 Dutch Ministry of the Interior (this work only based on publicly available information) � Currently postdoc University of Twente 2 Wolter Pieters - Combatting electoral traces 08/09/2009

  3. Contents � The e-voting controversy in the Netherlands � An actor-network analysis of the tempest issue � Defining electoral traces � Combatting electoral traces 3 Wolter Pieters - Combatting electoral traces 08/09/2009

  4. The e-voting controversy in the Netherlands � Why did the Dutch stop e-voting? 4 Wolter Pieters - Combatting electoral traces 08/09/2009

  5. Two central themes (wijvertrouwenstemcomputersniet.nl) � verifiability � no paper trail � easy replacement of program chips � unprotected storage facilities � secrecy of the vote � machines emit radiation (tempest) � choice of the voter can be captured with antenna 5 Wolter Pieters - Combatting electoral traces 08/09/2009

  6. Proposed solution (Election process advisory commission) � ballot printer + vote counter, with OCR � does not solve tempest issue � e-voting abandoned 6 Wolter Pieters - Combatting electoral traces 08/09/2009

  7. An actor-network analysis of the tempest issue � How did compromising radiation become so prominent in the Dutch debate? 7 Wolter Pieters - Combatting electoral traces 08/09/2009

  8. Actor-network theory � Bruno Latour � sociology of associations � symmetry of humans and nonhumans � “flat landscape” � mediation, translation, delegation � example: hotel key 8 Wolter Pieters - Combatting electoral traces 08/09/2009

  9. The alliance of tempest supporters � Nedap: our machines have a particular feature that switches the display mode in case of special characters � CDA: we actually have a special character in our name � pressure group / media: radiation problem easy to show � government: verifiability is not in the law; secret ballot cornerstone http://www.youtube.com/watch?v=B05wPomCjEY � focus on tempest in risk perception � technical detail translated into public problem 9 Wolter Pieters - Combatting electoral traces 08/09/2009

  10. The alliance of tempest supporters � tempest issue with NEDAPs easy to solve (remove special character) � intelligence agency: we can measure radiation � Sdu: we have a voting machine with even worse tempest behaviour � government: such machines are decertified � problem with particular machine translated to the e-voting problem 10 Wolter Pieters - Combatting electoral traces 08/09/2009

  11. Inside or outside? � Minister: capturing outside the polling station not a problem, because attacker doesn’t know who votes; capturing inside without detection is concern � physically, radiation is believed to decrease quadratically with distance: signal inside will always be stronger than outside � recasting the inside/outside problem so that outside is the most dangerous makes sense from a physical perspective! � Minister: capturing inside the polling station not a problem, because it will draw attention; capturing outside is concern 11 Wolter Pieters - Combatting electoral traces 08/09/2009

  12. From measurement to norm � Sdu machines radiate (detectably) up to 40 metres; Nedap machines have actual (measured) radiation range of 5 metres � “As I said before in parliament, there remains as a residual risk the possibility that radiation from the machine can be captured and the display reproduced within a range of maximum 5 metres. This, however, requires very advanced devices. As I stated in the AO [discussion with parliament] of 31 October 2006, I hold the opinion that this residual risk is acceptable.” � “maximum” can be read descriptively or normatively � parliament will now only accept this maximum range; mediation of actions by text; actual range has been translated into norm 12 Wolter Pieters - Combatting electoral traces 08/09/2009

  13. From organisational to technical � Electoral Council: reactive measures insufficient � Electoral Process Advisory Commission: preventive measures advised if costs not prohibitive; secrecy of tempest norms problematic � assignment to GBS: make a public standard � expectation of technical solution reinforced by assignment! � final physical translation of 5 metre norm: radiation can be captured from at most 5 metres distance with antenna aperture of 1 m 2 13 Wolter Pieters - Combatting electoral traces 08/09/2009

  14. 14 08/09/2009 Wolter Pieters - Combatting electoral traces A tempest-proof vote printer

  15. From technical to organisational � compliant devices would have heavy shielding (transport!) � tempest measurement requires: � accreditation of each type of machine � each individual machine tested every 2 years for 25 minutes � 50 weeks of testing! � software excluded from testing � conclusion: a technical norm would be impractical from an organisational point of view! � Expert Group advised against ballot printer 15 Wolter Pieters - Combatting electoral traces 08/09/2009

  16. Defining electoral traces � How can we generalise from the Dutch experience to aid future risk analysis? 16 Wolter Pieters - Combatting electoral traces 08/09/2009

  17. Internet voting? � observation: the tempest problem did not affect the Internet voting discussion! � why? 17 Wolter Pieters - Combatting electoral traces 08/09/2009

  18. Electoral traces An electoral trace is a piece of information (partly) revealing the connection between voter and vote. � marking the voter � marking the vote � digital � physical � social 18 Wolter Pieters - Combatting electoral traces 08/09/2009

  19. Examples � tempest � fingerprints � printer memory � “yellow dots” � exit polls � camera recordings � family voting 19 Wolter Pieters - Combatting electoral traces 08/09/2009

  20. Attributes of electoral traces � added value � context � domain � effort � information content � intentionality � (c)overtness � persistence 20 Wolter Pieters - Combatting electoral traces 08/09/2009

  21. “Ideal” situation � identify electoral traces of an election system � classify and compare electoral traces � decide what is acceptable based on such a comparison � Internet voting: worse electoral traces than tempest (and harder to capture)! � implicit in discussion 21 Wolter Pieters - Combatting electoral traces 08/09/2009

  22. Combatting electoral traces � Which measures can be taken to reduce the risks associated with electoral traces? 22 Wolter Pieters - Combatting electoral traces 08/09/2009

  23. Technical solutions � technical measures � norms � certification e.g. tempest, memory-less printing 23 Wolter Pieters - Combatting electoral traces 08/09/2009

  24. Organisational solutions � organisational norms � enforcement e.g. requirements for polling station setup, scanning people for electronic devices, separating ballots for different races 24 Wolter Pieters - Combatting electoral traces 08/09/2009

  25. Legal measures � criminal law � enforcement 25 Wolter Pieters - Combatting electoral traces 08/09/2009

  26. Conclusions � Dutch tempest discussion shows sensitivity of electoral traces � Can explode because of associations of seemingly insignificant matters � Actor-network theory can explain development of controversy in terms of associations and translation � social environment changes technical detail into public problem � physical properties of radiation mediate problem formulation � actual radiation range transformed into norm 26 Wolter Pieters - Combatting electoral traces 08/09/2009

  27. Conclusions � Tempest not considered in Internet voting, which can be thought of as rational concerning its other problems � Framework needed for comparing electoral traces � First investigation of relevant concepts & measures 27 Wolter Pieters - Combatting electoral traces 08/09/2009

  28. Fokke & Sukke find it very useful � And the good thing is: you’re not only finding out how someone voted… � … you’re also getting traffic info! 28 Wolter Pieters - Combatting electoral traces 08/09/2009

  29. Workshop on Security and Privacy in Cloud Computing (SPCC2010, www.spcc2010.info) Conference on Computer Privacy & Data Protection (CPDP) Brussels, 29 January 2010 Keynote: Prof.dr. Jean-Pierre Seifert, TU Berlin & Deutsche Telekom Submission deadline: probably November 16 Organised by Twente, Nijmegen, Eindhoven, Luxembourg Challenge: How to apply notions of verifiability from e-voting to cloud computing? Get your draft CFP here 29 Wolter Pieters - Combatting electoral traces 08/09/2009

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

system. Five Guiding Principles for Electoral Reform Rest ore t he effectiveness and

system. Five Guiding Principles for Electoral Reform Rest ore t he effectiveness and

EXPLORING ELECTORAL REFORM CANADA'S APPROACH ELECTORAL REFORM A change or a review of an electoral system to try to better reflect the will of the public in election results Thank you for participating in the national dialogue on electoral

505 views • 15 slides
What is Individual Electoral Registration? An Introduction to Individual Electoral Registration

What is Individual Electoral Registration? An Introduction to Individual Electoral Registration

What is Individual Electoral Registration? An Introduction to Individual Electoral Registration What is Individual Electoral Registration? From 10 June, 2014 the way we register to vote across England and Wales changed. The new system of

158 views • 14 slides
Eligibility Traces Chapter 12 Eligibility traces are Another way of interpolating between MC and

Eligibility Traces Chapter 12 Eligibility traces are Another way of interpolating between MC and

Eligibility Traces Chapter 12 Eligibility traces are Another way of interpolating between MC and TD methods A way of implementing compound -return targets A basic mechanistic idea a short-term, fading memory A new style of algorithm

881 views • 31 slides
Capture, conversion, and analysis of an intense NFS workload uating newer storage systems because

Capture, conversion, and analysis of an intense NFS workload uating newer storage systems because

the analysis or simulation. about 750 million operations per day. In comparison, the vironment than prior traces, we limit our comparisons Since our traces were captured in such a different en- convert, and analyze the traces. quired us to

366 views • 14 slides
Modeling interaction traces of an online panel From raw interaction traces to actionable

Modeling interaction traces of an online panel From raw interaction traces to actionable

Modeling interaction traces of an online panel From raw interaction traces to actionable indicators: lessons learned 8th European Survey Research Association conference July 2019, Zagreb Simon DELLAC Elodie PETORIN (both CDSP, Sciences Po)

435 views • 18 slides
electoral cycle three main segments post-election period (strategy) sustainable electoral

electoral cycle three main segments post-election period (strategy) sustainable electoral

electoral cycle three main segments post-election period (strategy) sustainable electoral support LEGAL POST FRAMEWORK ELECTION VERIFICATION PLANNING & OF RESULTS IMPLEMENTATION THE ELECTORAL pre-election CYCLE VOTING

355 views • 7 slides
Electoral Democracy Liberal Democracy Pseudo Democracy Prospects of Electoral and Liberal

Electoral Democracy Liberal Democracy Pseudo Democracy Prospects of Electoral and Liberal

Electoral Democracy Liberal Democracy Pseudo Democracy Prospects of Electoral and Liberal Democracy in Zimbabwe Is Zimbabwe Ready for Electoral Democracy? Or Is it another civil war dubbed an election What is Electoral Democracy?

852 views • 17 slides
The Electoral Act and Third Parties: What you need to know Presentation to Facebook 11 April

The Electoral Act and Third Parties: What you need to know Presentation to Facebook 11 April

The Electoral Act and Third Parties: What you need to know Presentation to Facebook 11 April 2018 The Standards Commission supervises : Ethics in Public Office Acts 1995 and 2001 Electoral Act 1997, as amended Oireachtas (Ministerial

286 views • 14 slides
OAS Electoral Observation Missions 2011 Department for Electoral Cooperation and Observation

OAS Electoral Observation Missions 2011 Department for Electoral Cooperation and Observation

OAS Electoral Observation Missions 2011 Department for Electoral Cooperation and Observation Secretariat for Political Affairs September 15, 2011 DECO DECO The Department Department for for Electoral Electoral Cooperation Cooperation and

595 views • 17 slides
STAKEHOLDERS IN THE ELECTORAL PROCESS: THE ROLE OF CIVIL SOCIETY, POLITICAL PARTIES AND THE MEDIA

STAKEHOLDERS IN THE ELECTORAL PROCESS: THE ROLE OF CIVIL SOCIETY, POLITICAL PARTIES AND THE MEDIA

STAKEHOLDERS IN THE ELECTORAL PROCESS: THE ROLE OF CIVIL SOCIETY, POLITICAL PARTIES AND THE MEDIA TO SUPPORT ELECTORAL MANAGEMENT BODIES Carl Dundas, on whom I will rely heavily for much of my intervention, states that an electoral management

217 views • 6 slides
Traces Exist (Hypothetically)! Carl Pollard Structure and Evidence in Linguistics Workshop in

Traces Exist (Hypothetically)! Carl Pollard Structure and Evidence in Linguistics Workshop in

Traces Exist (Hypothetically)! Carl Pollard Structure and Evidence in Linguistics Workshop in Honor of Ivan Sag Stanford University April 28, 2013 Carl Pollard Traces Exist (Hypothetically)! Traces in Transformational Grammar (1/2) Traces

411 views • 28 slides
Rotorua Lakes Council Warwick Lampp Chief Electoral Officer electionz.com RLC Electoral

Rotorua Lakes Council Warwick Lampp Chief Electoral Officer electionz.com RLC Electoral

2019 Elections for Rotorua Lakes Council Warwick Lampp Chief Electoral Officer electionz.com RLC Electoral Officer Electoral Team electionz.com Ltd contracted by Rotorua Lakes Council Warwick Lampp - RLC Electoral Officer Rick

1.03k views • 46 slides
Looking at DNS traces: What do we know about resolvers? lafur Gu mundsson Shinkuro

Looking at DNS traces: What do we know about resolvers? lafur Gu mundsson Shinkuro

Looking at DNS traces: What do we know about resolvers? lafur Gu mundsson Shinkuro Ogud@shinkuro.com Motivation: Open Questions What is the market share for resolver X What can we deduct from traces to a subset of authorative

623 views • 19 slides
Two 2-traces Simon Willerton University of Sheffield f Tr ( f ) := V

Two 2-traces Simon Willerton University of Sheffield f Tr ( f ) := V

Two 2-traces Simon Willerton University of Sheffield f Tr ( f ) := V Tr ( f ) := V f Traces What is a trace? Tr ( f g ) = Tr ( g f ) Tr ( f ) = Tr ( a f a 1 ) Traces in a monoidal

651 views • 13 slides
Canadas Activities in Combatting Antimicrobial Resistance Presentation to the JPIAMR

Canadas Activities in Combatting Antimicrobial Resistance Presentation to the JPIAMR

Canadas Activities in Combatting Antimicrobial Resistance Presentation to the JPIAMR Management Board March 29, 2017 AMR in Canada Surveillance data indicates that rates of infection for some resistant pathogens have declined in recent

365 views • 17 slides
LN-10 Searching for traces of Norwegian economic thought Intro When trying to find the traces of

LN-10 Searching for traces of Norwegian economic thought Intro When trying to find the traces of

LN-10 Searching for traces of Norwegian economic thought Intro When trying to find the traces of Norwegian economic thought, we should be aware that most economic questions until very recently were dealt with within a framework of religious,

409 views • 39 slides
Art and Approximation Micah Thanhauser & Jack deTar Rebecca Maxfield Ben Freeman The Tempest

Art and Approximation Micah Thanhauser & Jack deTar Rebecca Maxfield Ben Freeman The Tempest

Articulating the Edge: Art and Approximation Micah Thanhauser & Jack deTar Rebecca Maxfield Ben Freeman The Tempest : Magic, Movement, and Methexis Rebecca Maxfield, B.A. Performance Studies Movement and the body Space, creation,

603 views • 6 slides
Introduc)on To Standard ML for specifying theorem provers. It since has evolved into a general

Introduc)on To Standard ML for specifying theorem provers. It since has evolved into a general

The ML Programming Language ML (Meta Language) was developed by Robin Milner in 1975 Introduc)on To Standard ML for specifying theorem provers. It since has evolved into a general purpose programming language. Important features of ML: sta;c

784 views • 10 slides
Pradeep Kumar KS Nishant Kumar N Hemanth Kumar Smruti Soumitra Khuntia Etherpad link for

Pradeep Kumar KS Nishant Kumar N Hemanth Kumar Smruti Soumitra Khuntia Etherpad link for

Pradeep Kumar KS Nishant Kumar N Hemanth Kumar Smruti Soumitra Khuntia Etherpad link for https://etherpad.openstack.org/p/BerlinSummit_Workshop_Patrole ( Please pick your machine and run pre-requisites) Etherpad link for Exercises

364 views • 21 slides
Testing your infrastructure and services with the help of OPNFV testperf team Emma Foley, Georg

Testing your infrastructure and services with the help of OPNFV testperf team Emma Foley, Georg

Testing your infrastructure and services with the help of OPNFV testperf team Emma Foley, Georg Kunz & the OPNFV testing community Goals of this talk 1. Create awareness for OPNFV test tools Targeting users outside of NFV domain and

694 views • 26 slides
Keyboards, CRTs, LCDs and Noisy Computers R zvan Mus loiu-E. Part I Back to

Keyboards, CRTs, LCDs and Noisy Computers R zvan Mus loiu-E. Part I Back to

Keyboards, CRTs, LCDs and Noisy Computers R zvan Mus loiu-E. Part I Back to Keyboards Clarifications ... what exactly 1st, 2nd, and 3rd supervised feedback entail in the authors testing. There is a lot of

841 views • 73 slides
Matthew Series Lesson #051 September 21, 2014 Dean Bible Ministries

Matthew Series Lesson #051 September 21, 2014 Dean Bible Ministries

Matthew Series Lesson #051 September 21, 2014 Dean Bible Ministries www.deanbibleministries.org Dr. Robert L. Dean, Jr. The Power of Jesus; The Faith-Rest Drill Matthew 8:2327 The Miracles of Power (Matt. 8:239:8) 1. Jesus

844 views • 24 slides
Measuring Tie-Strength in Implicit Social Networks Tina

Measuring Tie-Strength in Implicit Social Networks Tina

Measuring Tie-Strength in Implicit Social Networks Tina Eliassi-Rad !na@eliassi.org Joint with Mangesh Gupte (Rutgers Google) 1 Problem Defini@on

975 views • 49 slides
S i d e C h a n n e l s John Vinnie Monaco / U.S. Army Research Laboratory

S i d e C h a n n e l s John Vinnie Monaco / U.S. Army Research Laboratory

SoK: Keylogging S i d e C h a n n e l s John Vinnie Monaco / U.S. Army Research Laboratory Whats in a keystroke? User Keyboard Host Network + Hand moton + Matrix scan + USB polling + Transmission + Key travel + Debouncing +

331 views • 12 slides

More recommend