minimum disclosure counting for the alternative vote
play

Minimum Disclosure Counting for the Alternative Vote Roland Wen and - PowerPoint PPT Presentation

Dec 15, 2022 •107 likes •365 views

Minimum Disclosure Counting for the Alternative Vote Roland Wen and Richard Buckland School of Computer Science and Engineering The University of New South Wales Sydney, Australia {rolandw,richardb}@cse.unsw.edu.au VOTE-ID 2009 Outline

  1. Minimum Disclosure Counting for the Alternative Vote Roland Wen and Richard Buckland School of Computer Science and Engineering The University of New South Wales Sydney, Australia {rolandw,richardb}@cse.unsw.edu.au VOTE-ID 2009

  2. Outline Background The Alternative Vote Signature Attacks Security Requirements Counting Scheme Overview Tally Protocol Exclude Protocol The Winner Discussion 2 / 24

  3. Background The Alternative Vote The Alternative Vote ◮ Preferential electoral system ◮ Voters express preferences for all candidates ◮ Alternative vote ◮ Elect single candidate ◮ Winner must obtain majority (> 50%) of votes ◮ Many rounds of counting 3 / 24

  4. Background The Alternative Vote Example: Alternative Vote Elections in Lilliput-Blefuscu ◮ 100 voters ◮ 40 Lilliputians (Little-endians) ◮ 60 Blefuscudians (Big-endians) ◮ 4 candidates ◮ 1 Little-endian (L) ◮ 3 Big-endians 1. Hard eggs (BH) 2. Medium eggs (BM) 3. Soft eggs (BS) 4 / 24

  5. Background The Alternative Vote Example: Counting the Votes ◮ Counting takes place in rounds ◮ Each round is “last” past the post election 1. Calculate tallies using highest preference of each ballot 2. Exclude last candidate from counting 5 / 24

  6. Background The Alternative Vote Example: Counting the Votes ◮ Counting takes place in rounds ◮ Each round is “last” past the post election 1. Calculate tallies using highest preference of each ballot 2. Exclude last candidate from counting Candidate L BH BM BS Round 1 40 20 25 15 6 / 24

  7. Background The Alternative Vote Example: Counting the Votes ◮ Counting takes place in rounds ◮ Each round is “last” past the post election 1. Calculate tallies using highest preference of each ballot 2. Exclude last candidate from counting Candidate L BH BM BS Round 1 40 20 25 15 Round 2 40 25 35 - 7 / 24

  8. Background The Alternative Vote Example: Counting the Votes ◮ Counting takes place in rounds ◮ Each round is “last” past the post election 1. Calculate tallies using highest preference of each ballot 2. Exclude last candidate from counting Candidate L BH BM BS Round 1 40 20 25 15 Round 2 40 25 35 - Round 3 40 - 60 - 8 / 24

  9. Background Signature Attacks Signature Attacks ◮ Secret ballot provides privacy and anonymity ◮ Signature attacks link voters to the votes they cast ◮ ⇒ Breaks receipt-freeness during the counting ◮ Exploited by Italian Mafia ◮ Eg signed ballot with specified permutation of preferences ◮ Highly likely that randomly chosen covert signature is unique ◮ Number of possible signatures is factorial in number of candidates ◮ 20 candidates ⇒ 19 ! ≈ 10 17 signatures 9 / 24

  10. Background Signature Attacks Signature Attacks on Partial Counting Information ◮ May still detect absence of some signatures ◮ ⇒ Voters who disobey risk getting caught out ◮ ⇒ Sufficient for bribery and coercion ◮ Eg round tallies reveal that some signatures never occur Candidate L BH BM BS Round 1 40 20 25 15 Round 2 40 25 35 - ◮ Increase chance of detecting absent signatures ◮ Eg by embedding contrived sequences of preferences in signatures 10 / 24

  11. Background Signature Attacks How To Prevent Signature Attacks ◮ Currently no definition for what counting information enables effective signature attacks ◮ All information is potentially dangerous ◮ ⇒ Safest approach is that counting reveals nothing apart from the result 11 / 24

  12. Background Security Requirements Security Requirements for Cryptographic Counting 1. Minimum disclosure ◮ Reveal only the identity of the winning candidate 2. Universal verifiability ◮ Operations are public and accompanied by proofs 3. Robustness 12 / 24

  13. Counting Scheme Minimum Disclosure Counting Scheme Background The Alternative Vote Signature Attacks Security Requirements Counting Scheme Overview Tally Protocol Exclude Protocol The Winner Discussion 13 / 24

  14. Counting Scheme Overview Main Idea of the Counting Scheme 1. Hide the ordering of ciphertexts ◮ Mix-nets randomly permute and re-encrypt list of ciphertexts ◮ Rotators randomly cyclically shift and re-encrypt list of ciphertexts 2. Seek ciphertexts with certain properties ◮ Plaintext equality / inequality tests compare � m 1 � , � m 2 � ◮ Tests reveal only boolean result m 1 = m 2 or m 1 ≥ m 2 3. Perform open operations on identified ciphertexts ◮ Eg homomorphic addition � m 1 � ⊞ � m 2 � = � m 1 + m 2 � 14 / 24

  15. Counting Scheme Overview Inputs to the Counting Scheme ◮ Counting starts after voting finished ◮ Inputs: 1. List of all candidates (encrypted and anonymous) 2. List of ballots ◮ Each ballot is list of encrypted preferences in decreasing order of preference ◮ Values encrypted with additively homomorphic cryptosystem (eg Paillier) 15 / 24

  16. Counting Scheme Tally Protocol Tallying the Votes ◮ Construct counters (encrypted candidate-tally pairs) ◮ For highest preference of each ballot, increment appropriate counter 16 / 24

  17. Counting Scheme Tally Protocol Incrementing a Counter 1. Mix all counters 2. Use plaintext equality tests to locate counter for BS 3. Openly increment tally for BS using homomorphic addition 17 / 24

  18. Counting Scheme Exclude Protocol Excluding the Last Candidate ◮ Mix the counters ◮ Use plaintext inequality tests to compare encrypted tallies ◮ ⇒ Minimum counter (for BS ) ◮ Remove encrypted preference for BS from each ballot 18 / 24

  19. Counting Scheme Exclude Protocol Removing the Excluded Candidate 1. Rotate all ballots to conceal positions of preferences 2. Use plaintext equality tests to locate preference for BS 3. Openly delete encrypted preference for BS 19 / 24

  20. Counting Scheme Exclude Protocol Restoring the Ballots 1. Rotate all ballots to conceal positions of deleted preferences 2. Use plaintext equality tests to locate marker 3. Openly undo cyclic shifts to return ballots to original ordering 20 / 24

  21. Counting Scheme The Winner Revealing the Winner ◮ Repeat rounds until only one remaining candidate ◮ Constant number of rounds ◮ Decrypt and reveal winner 21 / 24

  22. Discussion Discussion Background The Alternative Vote Signature Attacks Security Requirements Counting Scheme Overview Tally Protocol Exclude Protocol The Winner Discussion 22 / 24

  23. Discussion Summary ◮ Signature attacks problematic for preferential counting ◮ Minimum disclosure property ◮ Prevents signature attacks ◮ Minimum Disclosure Counting Scheme ◮ Hide and seek paradigm preserves secrecy ◮ Plaintext equality and inequality tests, mix-nets, rotators ◮ Provide privacy, universal verifiability and robustness ◮ Total complexity is O ( AC 2 Vk ) 23 / 24

  24. Discussion Open Problems 1. What is the optimal complexity? ◮ At least O � � CV distributed ballot operations ◮ Limiting factor appears to be the removal of excluded candidate ◮ Seems to require O � � C work per ballot 2. What are the implications of weakening minimum disclosure? ◮ How can we assess if specific partial counting information is sensitive? 24 / 24

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

About eCast eCast is Your personal, alternative Central Electoral Commission; system that

About eCast eCast is Your personal, alternative Central Electoral Commission; system that

About eCast eCast is Your personal, alternative Central Electoral Commission; system that promptly performs vote counting on election day and provides transparency and objectivity of results. Problems of modern times Problem lack of

404 views • 11 slides
A Look at the Alternative Minimum Tax Donald Bruce and Xiaowen Liu Center for Business and

A Look at the Alternative Minimum Tax Donald Bruce and Xiaowen Liu Center for Business and

Advancing Tax Administration June 19, 2014 Session 4: Understanding Taxpayer Behavior Kevin Pierce Moderator: IRS, RAS, Statistics of Income Tax Evasion and Self-Employment in the US: A Xiaowen Liu Look at the Alternative Minimum Tax

644 views • 50 slides
Minimum Income, Social Investment, Maximum Income: Europe 2020 and Beyond Bart Vanhercke

Minimum Income, Social Investment, Maximum Income: Europe 2020 and Beyond Bart Vanhercke

EAPN Conference Getting Out of the Crisis Together: Alternative Getting Out of the Crisis Together: Alternative Approaches for an Inclusive Recovery Approaches for an Inclusive Recovery Brussels, 23 September 2011 Minimum Income, Social

683 views • 19 slides
Counting defective interfering particles: Easy as 1, 2, 3, . . . ? Laura Liao 1 1 Department of

Counting defective interfering particles: Easy as 1, 2, 3, . . . ? Laura Liao 1 1 Department of

What is a DIP? Conventional DIP counting An alternative method Conclusions Counting defective interfering particles: Easy as 1, 2, 3, . . . ? Laura Liao 1 1 Department of (Viro) Physics, Ryerson University Supervisor: Prof. Catherine Beauchemin

310 views • 10 slides
Bochspwn Reloaded Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking

Bochspwn Reloaded Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking

Bochspwn Reloaded Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking Mateusz j00ru Jurczyk REcon 2017, Montreal Alternative title (cheers Alex Ionescu!) Memory Disclosure Alternative title KERNELBLEED Agenda

1.7k views • 140 slides
Alternative Treatment Centers Draft Regulations - Update March 10, 2015 Minimum Statutory

Alternative Treatment Centers Draft Regulations - Update March 10, 2015 Minimum Statutory

Alternative Treatment Centers Draft Regulations - Update March 10, 2015 Minimum Statutory Criteria Statute includes two specific locational restrictions (RSA 126-X:8.II): ATCs may not be located in any residential district and may

449 views • 8 slides
Using the Alternative Minimum Tax to Identify the Elasticity of Taxable Income For Higher-Income

Using the Alternative Minimum Tax to Identify the Elasticity of Taxable Income For Higher-Income

Using the Alternative Minimum Tax to Identify the Elasticity of Taxable Income For Higher-Income Taxpayers Paper Presentation - NTA Panel on "Tax Avoidance" Ali Abbas Cornell University November 23, 2019 Ali Abbas (Cornell

626 views • 26 slides
Interagency Alternatives Assessment Webinar: Incentivizing Chemical Disclosure, Alternative

Interagency Alternatives Assessment Webinar: Incentivizing Chemical Disclosure, Alternative

Interagency Alternatives Assessment Webinar: Incentivizing Chemical Disclosure, Alternative Assessments, and Safer Substitution via Product Sustainability Standards J U N E 2 8 , 2 0 1 6 F A C I L I T A TE D B Y : J O E L T I C K N E R , S

698 views • 24 slides
Counting algorithms and complexity. A brief overview of the field . Ioannis Nemparis 1 1

Counting algorithms and complexity. A brief overview of the field . Ioannis Nemparis 1 1

Introduction Exploring the counting class Counting in FP Correlation decay Holant problems Above # P Open questions Bibliography . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Counting algorithms and complexity. A brief

686 views • 41 slides
https://www.gov.uk/register-to-vote Can register here and at home, vote in both local elections

https://www.gov.uk/register-to-vote Can register here and at home, vote in both local elections

https://www.gov.uk/register-to-vote Can register here and at home, vote in both local elections Vote on National things once, can decide at last moment Examples Find the radius of convergence of the following functions. (sinh( n

418 views • 6 slides
Introduction to Placebo? Complementary and Homeopathic Medicines Alternative medicine? Holis

Introduction to Placebo? Complementary and Homeopathic Medicines Alternative medicine? Holis

8/30/2020 Introduction to Placebo? Complementary and Homeopathic Medicines Alternative medicine? Holis tic? Evidence-based? Empirical? Homeopathy Home Remedies? Alternative? Disclosure: FDA-Regulated? Organic? Richard Mudd, National

433 views • 7 slides
VOTE B BY MAIL IL #VBMHawaii What i is Vote B By M Mail? Act 136, SLH 2019 requires all

VOTE B BY MAIL IL #VBMHawaii What i is Vote B By M Mail? Act 136, SLH 2019 requires all

VOTE B BY MAIL IL #VBMHawaii What i is Vote B By M Mail? Act 136, SLH 2019 requires all elections in Hawaii to be conducted by mail starting in 2020. Ballots packages will be mailed and received by all registered voters approx.

780 views • 13 slides
Counting with automorphisms Lectures for CO 430 / 630 March 24 April 2, 2020 1. Counting

Counting with automorphisms Lectures for CO 430 / 630 March 24 April 2, 2020 1. Counting

Counting with automorphisms Lectures for CO 430 / 630 March 24 April 2, 2020 1. Counting orbits 2. Type generating functions 3. Cycle index functions 4. Examples 5. Main theorem 6. Unlabelled trees 1. Counting orbits of

653 views • 43 slides
Agenda Minutes Overview of Changes Discussion; Vote? 1 3/19/2018 How to Vote? Type yes

Agenda Minutes Overview of Changes Discussion; Vote? 1 3/19/2018 How to Vote? Type yes

3/19/2018 Social Services Regional Supervision and Collaboration Working Group Aimee Wall Agenda Minutes Overview of Changes Discussion; Vote? 1 3/19/2018 How to Vote? Type yes or no in Public Chat window Raise your hand

177 views • 6 slides
January 22, 2020 1 Trainin ing Outl tline Basic Summary of K-Count Minimum HUD

January 22, 2020 1 Trainin ing Outl tline Basic Summary of K-Count Minimum HUD

Kentucky Balance of State Continuum of Care 2020 K-Count Training Webinar January 22, 2020 1 Trainin ing Outl tline Basic Summary of K-Count Minimum HUD Reporting Requirements Data Collection Process (Introducing Counting Us app)

1.05k views • 57 slides
Counting is Hard: Probabilistically Counting Views at Reddit Krishnan Chandra, Data Engineer

Counting is Hard: Probabilistically Counting Views at Reddit Krishnan Chandra, Data Engineer

Counting is Hard: Probabilistically Counting Views at Reddit Krishnan Chandra, Data Engineer What is probabilistic counting? How did probabilistic counting help us scale? Overview What issues did we face along the way? What is

826 views • 38 slides
Public Involvement Meetings 2 nd Round July 23 Kauai July 28-31 Hawaii August 4-7

Public Involvement Meetings 2 nd Round July 23 Kauai July 28-31 Hawaii August 4-7

FFY 2015-2018(+2) STIP Development Public Involvement Meetings 2 nd Round July 23 Kauai July 28-31 Hawaii August 4-7 Maui FFY 2015-2018(+2) STIP Development Agenda 1.Introductions 2.Purpose of Meeting 3.Financial Constraint

499 views • 15 slides
Unit Tes)ng Tool Compe))on Round Four Urko Rueda, Ren Just, Juan P. Galeo5, Tanja E. J. Vos

Unit Tes)ng Tool Compe))on Round Four Urko Rueda, Ren Just, Juan P. Galeo5, Tanja E. J. Vos

Unit Tes)ng Tool Compe))on Round Four Urko Rueda, Ren Just, Juan P. Galeo5, Tanja E. J. Vos The 9th Interna=onal Workshop on Search-Based SoDware Tes=ng Contents 1. About the Tool compe==on 2. The Tools 3. The Methodology 4. The Results

447 views • 21 slides
Hardware Implementation of Block Cipher: Case Study Using AES Tohoku University Rei Ueno

Hardware Implementation of Block Cipher: Case Study Using AES Tohoku University Rei Ueno

Hardware Implementation of Block Cipher: Case Study Using AES Tohoku University Rei Ueno Acknowledgments Naofumi Homma, Tohoku Univ . Takafumi Aoki, Tohoku Univ . Sumio Morioka, Interstellar technologies, Inc . Noriyuki Miura, Kobe Univ . Kohei

676 views • 30 slides
Round Compression for Parallel Matching Algorithms Krzysztof Onak IBM T.J. Watson Research

Round Compression for Parallel Matching Algorithms Krzysztof Onak IBM T.J. Watson Research

Round Compression for Parallel Matching Algorithms Krzysztof Onak IBM T.J. Watson Research Center Joint work with Artur Czumaj (U of Warwick), Jakub acki (Google), Aleksander M adry (MIT), Slobodan Mitrovi c (EPFL), and Piotr

1.37k views • 62 slides
disease study updates Professor Michael J Seckl GCIG Chicago meeting Jun 17 GOG-0275: A

disease study updates Professor Michael J Seckl GCIG Chicago meeting Jun 17 GOG-0275: A

Gestational Trophoblastic disease study updates Professor Michael J Seckl GCIG Chicago meeting Jun 17 GOG-0275: A PHASE III RANDOMIZED TRIAL OF PULSE ACTINOMYCIN-D VERSUS MULTI-DAY METHOTREXATE FOR THE TREATMENT OF LOW-RISK GESTATIONAL

313 views • 4 slides
Cutting Convex Sets With Margin Shay Moran (Google AI and Technion) Background A geometric

Cutting Convex Sets With Margin Shay Moran (Google AI and Technion) Background A geometric

Cutting Convex Sets With Margin Shay Moran (Google AI and Technion) Background A geometric problem that arises in Density Estimation Density Estimation = Distribution Learning w.r.t Total Variation Progress on problem improved

266 views • 24 slides
the Executive Order No. 23 Stakeholder Meeting (Round 2) This his pr presentati tion on is

the Executive Order No. 23 Stakeholder Meeting (Round 2) This his pr presentati tion on is

Welcome to the Executive Order No. 23 Stakeholder Meeting (Round 2) This his pr presentati tion on is s pr provid ided for or gene neral l informatio ional l pur purposes only nly. It do does not not refle flect any y agency

104 views • 6 slides
Massively Parallel Communication and Query Evaluation Paul Beame U. of Washington Based on

Massively Parallel Communication and Query Evaluation Paul Beame U. of Washington Based on

Massively Parallel Communication and Query Evaluation Paul Beame U. of Washington Based on joint work with Paraschos Koutris and Dan Suciu [PODS 13], [PODS 14] 1 Massively Parallel Systems 2 MapReduce [Dean,Ghemawat 2004] Rounds of Map:

861 views • 47 slides

More recommend