evidence based elections the role of risk limiting audits
play

Evidence-Based Elections: The Role of Risk-Limiting Audits Election - PowerPoint PPT Presentation

Jan 07, 2023 •151 likes •489 views

Evidence-Based Elections: The Role of Risk-Limiting Audits Election Integrity in the Networked Information Era Georgetown Law Washington, DC Philip B. Stark 7 February 2020 University of California, Berkeley 1 Arguments that US elections

  1. Evidence-Based Elections: The Role of Risk-Limiting Audits Election Integrity in the Networked Information Era Georgetown Law Washington, DC Philip B. Stark 7 February 2020 University of California, Berkeley 1

  2. Arguments that US elections can’t be hacked: • Physical security • Not connected to the Internet • Tested before election day • Too decentralized 2

  3. Security properties of paper • tangible/accountable • tamper evident • human readable • large alteration/substitution attacks generally require many accomplices 3

  4. Security properties of paper • tangible/accountable • tamper evident • human readable • large alteration/substitution attacks generally require many accomplices How the paper is marked, curated, tabulated, and audited are crucial. 3

  5. 4

  6. Did the reported winner really win? 5

  7. Did the reported winner really win? • Procedure-based vs. evidence-based elections • sterile scalpel v. patient’s condition 5

  8. Did the reported winner really win? • Procedure-based vs. evidence-based elections • sterile scalpel v. patient’s condition • Any way of counting votes can make mistakes • Every electronic system is vulnerable to bugs, configuration errors, & hacking • Did error/bugs/hacking cause losing candidate(s) to appear to win? 5

  9. Evidence-Based Elections: 3 C’s • Voters CREATE complete, durable, voter-verified audit trail. 6

  10. Evidence-Based Elections: 3 C’s • Voters CREATE complete, durable, voter-verified audit trail. • LEO CARES FOR the audit trail adequately to ensure it remains demonstrably trustworthy. 6

  11. Evidence-Based Elections: 3 C’s • Voters CREATE complete, durable, voter-verified audit trail. • LEO CARES FOR the audit trail adequately to ensure it remains demonstrably trustworthy. • Verifiable, rigorous audit CHECKS reported results against the trustworthy paper trail. 6

  12. • Can catch & correct wrong outcomes by manually tabulating the trustworthy paper trail. • If you permit a small “risk” of not correcting the reported outcome if it is wrong, generally don’t need to look at many ballots if outcome is right. 7

  13. A risk-limiting audit has a known chance of correcting the reported outcome if the reported outcome is wrong (and doesn’t alter correct outcomes). 8

  14. A risk-limiting audit has a known chance of correcting the reported outcome if the reported outcome is wrong (and doesn’t alter correct outcomes). Risk limit : largest possible chance of not correcting reported outcome, if reported outcome is wrong. 8

  15. A risk-limiting audit has a known chance of correcting the reported outcome if the reported outcome is wrong (and doesn’t alter correct outcomes). Risk limit : largest possible chance of not correcting reported outcome, if reported outcome is wrong. Wrong means accurate handcount of trustworthy paper trail would find different winner(s). 8

  16. A risk-limiting audit has a known chance of correcting the reported outcome if the reported outcome is wrong (and doesn’t alter correct outcomes). Risk limit : largest possible chance of not correcting reported outcome, if reported outcome is wrong. Wrong means accurate handcount of trustworthy paper trail would find different winner(s). Trustworthy means a full hand count would show the will of the (eligible) voters who voted. 8

  17. No way to limit the risk if there is not a trustworthy paper trail. • RLA corrects the outcome by conducting a full hand count. 9

  18. No way to limit the risk if there is not a trustworthy paper trail. • RLA corrects the outcome by conducting a full hand count. • If paper trail is not trustworthy, full hand count might show the wrong winner(s). 9

  19. No way to limit the risk if there is not a trustworthy paper trail. • RLA corrects the outcome by conducting a full hand count. • If paper trail is not trustworthy, full hand count might show the wrong winner(s). • BMD printout is not trustworthy: hackable, not voter-verified. 9

  20. • Keep looking at more ballots until there’s strong evidence that a full handcount would confirm the results. 10

  21. • Keep looking at more ballots until there’s strong evidence that a full handcount would confirm the results. • If the audit becomes a full handcount, the results of the handcount replace the reported result. 10

  22. 11

  23. Risk-Limiting Audits • Endorsed by NASEM, PCEA, ASA, LWV, VV, CC, . . . 12

  24. Risk-Limiting Audits • Endorsed by NASEM, PCEA, ASA, LWV, VV, CC, . . . • Most efficient RLA options: ballot-polling and ballot-level comparison 12

  25. Ballot-polling RLAs: Steampunk security • Like an exit poll, but of ballots, not voters. • Large-enough majority for the reported winner in a large-enough random sample is strong evidence reported winner really won. • Arithmetic simple: can check w/ pencil & paper. • Requires paper ballots, but no special requirements on voting machines. 13

  26. Ballot soup • If reported outcome is right, the number of ballots an RLA inspects before stopping is typically very small (unless the margin is microscopic). 14

  27. Ballot soup • If reported outcome is right, the number of ballots an RLA inspects before stopping is typically very small (unless the margin is microscopic). • Tablespoon of soup suffices. 14

  28. • 255 state-level pres. races, 1992–2012, 10% risk limit • BPA expected to examine fewer than 308 ballots for half. 15

  29. • 255 state-level pres. races, 1992–2012, 10% risk limit • BPA expected to examine fewer than 308 ballots for half. • 2016 presidential election, 5% risk limit • BPA expected to examine ~700k ballots nationally (<0.5%) 15

  30. Risk-Limiting Audits • ~50 pilot audits in CA, CO, GA, IN, MI, NJ, OH, OR, PA, RI, WA, VA, DK. • CA counties: Alameda, El Dorado, Humboldt, Inyo, Madera, Marin, Merced, Monterey, Napa, San Luis Obispo, Santa Cruz, Stanislaus, Ventura, Yolo • AL, MO pilots planned. • Laws in CO, RI, VA, WA; CA has pilot laws 16

  31. Sampling ballots: requirements • ballots (25% of US voters don’t have) • ballot manifest • good, transparent, verifiable source of randomness • 20 public rolls of translucent 10-sided dice 17

  32. 18

  33. Useful ideas for election integrity and security • End-to-end verifiability • (Strong) software independence • Risk-limiting audit • Contestability • Defensibility • Evidence-based elections 19

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Risk-Limiting Audits and Evidence-Based Elections Joint Berkeley/Davis Statistics Colloquium

Risk-Limiting Audits and Evidence-Based Elections Joint Berkeley/Davis Statistics Colloquium

Risk-Limiting Audits and Evidence-Based Elections Joint Berkeley/Davis Statistics Colloquium Sheltered in Place Philip B. Stark 21 April 2020 University of California, Berkeley 1 Many collaborators including (most recently) Andrew Appel, Josh

1.21k views • 93 slides
Implementing Risk-Limiting Post-Election Audits in California J.L. Hall 1 , 2 L.W. Miratrix 3 P.B.

Implementing Risk-Limiting Post-Election Audits in California J.L. Hall 1 , 2 L.W. Miratrix 3 P.B.

Risk-Limiting Audits Defined Risk-Limiting Audits in CA Discussion Simpler Risk-Limiting Audits? Conclusions Implementing Risk-Limiting Post-Election Audits in California J.L. Hall 1 , 2 L.W. Miratrix 3 P.B. Stark 3 M. Briones 4 E. Ginnold 4

631 views • 23 slides
Risk-Limiting Audits Joint Mathematical Meetings Denver, CO Philip B. Stark 17 January 2020

Risk-Limiting Audits Joint Mathematical Meetings Denver, CO Philip B. Stark 17 January 2020

Risk-Limiting Audits Joint Mathematical Meetings Denver, CO Philip B. Stark 17 January 2020 University of California, Berkeley 1 Many collaborators including (most recently) Andrew Appel, Josh Benaloh, Matt Bernhard, Rich DeMillo, Steve

896 views • 72 slides
Risk-Limiting Audits Michigan Association of Municipal Clerks The Internet Philip B. Stark

Risk-Limiting Audits Michigan Association of Municipal Clerks The Internet Philip B. Stark

Risk-Limiting Audits Michigan Association of Municipal Clerks The Internet Philip B. Stark Department of Statistics, University of California, Berkeley 11 June 2020 Why audit? Why audit? Any way of counting votes can make mistakes

387 views • 23 slides
Evidence-Based Elections CDAR Risk Seminar Philip B. Stark 15 September 2020 University of

Evidence-Based Elections CDAR Risk Seminar Philip B. Stark 15 September 2020 University of

Evidence-Based Elections CDAR Risk Seminar Philip B. Stark 15 September 2020 University of California, Berkeley 1 Many collaborators including (most recently) Andrew Appel, Josh Benaloh, Matt Bernhard, Michelle Blom, Andrew Conway, Rich

1.12k views • 100 slides
The role of evidence in teaching Australian Council for Educational Research evidence-based

The role of evidence in teaching Australian Council for Educational Research evidence-based

The role of evidence in teaching Australian Council for Educational Research evidence-based practice integrating individual clinical expertise with the best available external evidence from systematic research Sacket et al , 1996 1.

538 views • 51 slides
Evidence-Based Elections Influencers Salon Philip B. Stark 10 October 2020 University of

Evidence-Based Elections Influencers Salon Philip B. Stark 10 October 2020 University of

Evidence-Based Elections Influencers Salon Philip B. Stark 10 October 2020 University of California, Berkeley 1 Many collaborators including (most recently) Andrew Appel, Josh Benaloh, Matt Bernhard, Michelle Blom, Andrew Conway, Rich

1.11k views • 66 slides
How to Conduct a Human Resource Risk Audit Michele Arseneau, PHR, SHRM-CP HR Consultant Course

How to Conduct a Human Resource Risk Audit Michele Arseneau, PHR, SHRM-CP HR Consultant Course

How to Conduct a Human Resource Risk Audit Michele Arseneau, PHR, SHRM-CP HR Consultant Course Objectives What are HR Risk Audits Benefits of an HR Risk Audits Types of HR Risk Audits Tools to conduct HR Risk Audits What is an

272 views • 26 slides
Trustworthy Elections: Evidence and Dispute Resolution 2019 Def Con Las Vegas, NV Philip B.

Trustworthy Elections: Evidence and Dispute Resolution 2019 Def Con Las Vegas, NV Philip B.

Trustworthy Elections: Evidence and Dispute Resolution 2019 Def Con Las Vegas, NV Philip B. Stark 9 August 2019 University of California, Berkeley 1 Suitably designed and operated paper-based voting systems can be strongly software

598 views • 39 slides
Empirical Evidence on The Role of Public Warnings on Physicians Drug Prescriptions Behavior

Empirical Evidence on The Role of Public Warnings on Physicians Drug Prescriptions Behavior

Empirical Evidence on The Role of Public Warnings on Physicians Drug Prescriptions Behavior Pierre Dubois and Tuba Tunel Toulouse School of Economics Harvard Center for Risk Analysis Risk, Perception, and Response Conference March 21, 2014

566 views • 41 slides
The Role of National Quality Infrastructure in Promoting Risk-Based Solutions Dr. Monideep Dey

The Role of National Quality Infrastructure in Promoting Risk-Based Solutions Dr. Monideep Dey

The Role of National Quality Infrastructure in Promoting Risk-Based Solutions Dr. Monideep Dey Consultation on public policy, regulation and standardization Risk -Based Consumer Protection Workshop June 25, 2018 Accra, Ghana Outline

1.52k views • 39 slides
Do audits deter future non-compliance? Evidence on Self-Employed Taxpayers Sebastian Beer,

Do audits deter future non-compliance? Evidence on Self-Employed Taxpayers Sebastian Beer,

Do audits deter future non-compliance? Evidence on Self-Employed Taxpayers Sebastian Beer, Matthias Kasper, Erich Kirchler, and Brian Erard November 11, 2016 Do audits deter future non-compliance? What happens when you experience an audit?

359 views • 20 slides
Epidemiological Evidence Supporting a Role for Infections in Childhood Cancer Risk Childhood

Epidemiological Evidence Supporting a Role for Infections in Childhood Cancer Risk Childhood

Epidemiological Evidence Supporting a Role for Infections in Childhood Cancer Risk Childhood Cancer 2012 London, UK April 26, 2012 Kevin Urayama St. Lukes Life Science Institute Tokyo, Japan 1 Outline Outline History and burden of

690 views • 35 slides
The Role of Readiness in Promoting the Adoption and Effectiveness of Evidence- Based Prevention

The Role of Readiness in Promoting the Adoption and Effectiveness of Evidence- Based Prevention

The Role of Readiness in Promoting the Adoption and Effectiveness of Evidence- Based Prevention Practices Allison Dymnicki, Sabrina Arredondo Mattson, Elizabeth Spier, Beverly Kingston, Frances Miller, Jonathan Scaccia 1 Acknowledgements

445 views • 16 slides
Procurement and Contract Audit CIPFAs Risk based approach to planning audits and the work of

Procurement and Contract Audit CIPFAs Risk based approach to planning audits and the work of

Procurement and Contract Audit CIPFAs Risk based approach to planning audits and the work of the Procurement and Contract Audit Forum [ PACAF] By : Ken Odgers By : Ken Odgers cipfa.org.uk Overview Background to the birth of PACAF;

465 views • 34 slides
Evidence-Based Risk Communication and Pipeline Public Awareness Matthew Babcock, PhD Wider Lens

Evidence-Based Risk Communication and Pipeline Public Awareness Matthew Babcock, PhD Wider Lens

Evidence-Based Risk Communication and Pipeline Public Awareness Matthew Babcock, PhD Wider Lens Research LLC Pipeline Safety Trust - Annual Conference November 2, 2017 1 Todays Presentation 1. Challenges and importance of successful risk

552 views • 18 slides
On Estimating the Size and Confidence of a Statistical Audit Raluca A. Popa and Ronald L. Rivest

On Estimating the Size and Confidence of a Statistical Audit Raluca A. Popa and Ronald L. Rivest

On Estimating the Size and Confidence of a Statistical Audit Raluca A. Popa and Ronald L. Rivest Javed A. Aslam College of Computer and Computer Science and Artificial Information Science Intelligence Laboratory Northeastern University

322 views • 20 slides
Web Mining and Recommender Systems Advanced Recommender Systems This week Methodological papers

Web Mining and Recommender Systems Advanced Recommender Systems This week Methodological papers

Web Mining and Recommender Systems Advanced Recommender Systems This week Methodological papers Bayesian Personalized Ranking Factorizing Personalized Markov Chains Personalized Ranking Metric Embedding This week Goals: This week

1.15k views • 92 slides
Signature sizes: RSA signatures are big. a call to action D. J. Bernstein University of

Signature sizes: RSA signatures are big. a call to action D. J. Bernstein University of

Signature sizes: RSA signatures are big. a call to action D. J. Bernstein University of Illinois at Chicago &amp; Technische Universiteit Eindhoven Signature sizes: RSA signatures are big. a call to action 1990 Schnorr signatures D. J.

355 views • 21 slides
Muzzling the Alligators When you are up to your neck in alligators, it's hard to remember that

Muzzling the Alligators When you are up to your neck in alligators, it's hard to remember that

Muzzling the Alligators When you are up to your neck in alligators, it's hard to remember that the objective is to drain the swamp! Page 1 31/12/99 A Conflict of Advice There are plenty of people with ideas to improve quality, but

639 views • 16 slides
Welcome Six steps to payroll success: to todays webinar The magic of client cloud platforms

Welcome Six steps to payroll success: to todays webinar The magic of client cloud platforms

BrightPay Payroll Software 26th February 2020 Welcome Six steps to payroll success: to todays webinar The magic of client cloud platforms Rachel Hynes Marketing Executive - BrightPay Part 1: Part 2: Ian Jenkinson Six steps to payroll

117 views • 8 slides
Who we are Rana Salzmann , M.A., M.L.S. Director of Library and IT, Meadville Lombard Theological

Who we are Rana Salzmann , M.A., M.L.S. Director of Library and IT, Meadville Lombard Theological

Who we are Rana Salzmann , M.A., M.L.S. Director of Library and IT, Meadville Lombard Theological School Ten years of management experience in public, special, and academic libraries, always at the intersection of technology and patron service

470 views • 16 slides
The Why, What, and How of Software Transactions for More Reliable Concurrency Dan Grossman

The Why, What, and How of Software Transactions for More Reliable Concurrency Dan Grossman

The Why, What, and How of Software Transactions for More Reliable Concurrency Dan Grossman University of Washington 8 September 2006 Atomic An easier-to-use and harder-to-implement primitive void deposit(int x){ void deposit(int x){

1.05k views • 66 slides
HTTPbis Charter and Process Politics is not the art of the possible. It consists of choosing

HTTPbis Charter and Process Politics is not the art of the possible. It consists of choosing

HTTPbis Charter and Process Politics is not the art of the possible. It consists of choosing between the disastrous and the unpalatable. - attributed to John Kenneth Galbraith Charter The working group will refine RFC2616 to:

502 views • 15 slides

More recommend