on e vote integrity in the case of malicious voter
play

On E-Vote Integrity in the Case of Malicious Voter Computers Sven - PowerPoint PPT Presentation

Oct 06, 2023 •275 likes •464 views

Motivation Rage against the Machine Our Solution On E-Vote Integrity in the Case of Malicious Voter Computers Sven Heiberg Helger Lipmaa Filip Van Laenen Cybernetica AS, Estonia Computas AS, Norway September 21, 2010 Heiberg, Lipmaa, Van

  1. Motivation Rage against the Machine Our Solution On E-Vote Integrity in the Case of Malicious Voter Computers Sven Heiberg Helger Lipmaa Filip Van Laenen Cybernetica AS, Estonia Computas AS, Norway September 21, 2010 Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  2. Motivation Rage against the Machine Our Solution Outline I Motivation 1 Rage against the Machine 2 Our Solution 3 Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  3. Motivation Rage against the Machine Our Solution Motivation Internet voting: Everbody uses their own PCs to participate in state/local/. . . elections Accessibility++ Cost++ Security? Voting servers can be protected by organizational means and standard cryptography Voter PCs become the new security bottleneck Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  4. Motivation Rage against the Machine Our Solution On E-Voting Security Objectives: Correctness/integrity/robustness: every vote counts (once and correctly) Privacy: Not known how anyone votes Adversaries: Voting servers Internet This presentation: voter’s PC Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  5. Motivation Rage against the Machine Our Solution Practical Motivation We competed in a tender to organize nationwide Internet voting in Norway The client wanted to achieve security against malicious voter PCs under reasonable usability assumptions We showed that it is possible Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  6. Motivation Rage against the Machine Our Solution Privacy against Malicious Voter PC Original goal of our client Difficult to achieve without hurting usability For example, code voting: To vote, voter enters long random code, and to verify correctness, verifies another code For real Internet voting, too cumbersome, and too reliant on everyone getting the codes Usability is important! Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  7. Motivation Rage against the Machine Our Solution Integrity with Malicious PC Voters will be alerted on whether what they voted for reached the voting servers even in the presence of a malicious voter PC Without changing user experience much Trust model: threshold model is bad (independency of servers?) Goal #4: Efficiency? (Further adventures of the e-vote can be secured by using standard cryptographic means) Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  8. Motivation Rage against the Machine Our Solution Integrity with Malicious PC We need two extra channels to the voter Both must be independent of PC and trusted Independence is really needed since one can revote several times — PC could memorize check codes corresponding to earlier votes Possible coercion/family voting is the main reason implementation of e-voting has been delayed in several countries Channels are easy to implement At least in Norway Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  9. Motivation Rage against the Machine Our Solution E-voting Process Postchannel Messenger Voter PC Vote Collector Tallier Prechannel Registration Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  10. Motivation Rage against the Machine Our Solution E-voting Process — Reality Postchannel Messenger Voter PC Vote Collector Tallier Prechannel Registration Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  11. Motivation Rage against the Machine Our Solution Basic Idea 5 “You voted at xx:xx:xx for Codev [ c ] ” Postchannel Messenger 4 EncM ( Codev [ c ]) 2 Candidate c Voter PC Vote Collector Tallier 3 EncM ( c ) , EncT ( c ) 6 All values EncT ( c ) ZK proof of correctness Prechannel All signed by PC 1 Candidate list with integrity check codes Codev [ c ] Registration Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  12. Motivation Rage against the Machine Our Solution Assumptions behind Our Solution Statewise PKI for signing/verification keys check, going to be implemented in parallel . . . although latest news are not so positive anymore . . . Minimal PKI to distribute the public encryption keys of voting servers check, easy to implement if you have signing/verification keys Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  13. Motivation Rage against the Machine Our Solution Assumptions behind Our Solution Prechannel to distribute check codes to voters (mostly) check, all Norwegians get a voter registration notification on paper anyways Extra server (messenger) to notify noters of the success of their actions— check, one extra computer is cheap Postchannel between messenger and voters— (mostly) check, can use SMS etc Efficient, easily understandable cryptography— ??? Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  14. Motivation Rage against the Machine Our Solution Cryptographic Protocol: In A Nutshell PC sends Enc M ( c ) to vote collector, vote collector applies proxy oblivious transfer to obtain Enc M ( Code v [ c ]) Fairly simple, but costly to implement — VC has to do 2 · ♯ candidates exponentiations PC proves correctness of its actions ZK proof that Enc M ( c ) and Enc T ( c ) “encrypt” to the same valid candidate c ZK proof looks complex but is in fact much more efficient than POT Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  15. Motivation Rage against the Machine Our Solution Proxy Oblivious Transfer: Definition Chooser has an index x ∈ { 0 , . . . , n − 1 } , sender has a database f = ( f 0 , . . . , f n − 1 ) Functionality: Proxy obtains f x Privacy: chooser gets no new information, sender obtains nothing about x , proxy only obtains f x (and no x )! In our case, f is the list of codes, x is the concrete candidate, proxy obtains f x = Code v [ c ] Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  16. Motivation Rage against the Machine Our Solution Current Status We have a mock-up implementation Sandbox (unoptimized) implementation ready One vote collector processes ≈ 3000 votes per hour at 80 candidates In recent Estonian elections, there were ≈ 4500 e-votes in the peak hour (usually much less) Considered step: implementation by using a Hardware Security Module — 10 + times speedup Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  17. Motivation Rage against the Machine Our Solution Current Status Norwegian government’s representative at NordSec 2009 in Oslo was using slides inspired by our solution Prechannel, postchannel, . . . The setting is going to be used The final Norwegian protocol is faster but not as secure Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

  18. Motivation Rage against the Machine Our Solution Questions? Full version at http://eprint.iacr.org/2010/195 Further work: we do have more efficient yet secure solutions (not published yet) > 50 000 votes per hour Heiberg, Lipmaa, Van Laenen E-Vote Integrity with Malicious Voter Computers

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

HAVA HAVA Help America Vote Act Help America Vote Act What Every Voter Should Know Why Is HAVA

HAVA HAVA Help America Vote Act Help America Vote Act What Every Voter Should Know Why Is HAVA

HAVA HAVA Help America Vote Act Help America Vote Act What Every Voter Should Know Why Is HAVA Necessary? Between 4 million and 6 million votes in the 2000 election were lost due to problems with ballots, voting machines and registration

746 views • 36 slides
I Want You to Vote: A Voter Education Presentation KAITLIN Hello and welcome. Thank you for coming

I Want You to Vote: A Voter Education Presentation KAITLIN Hello and welcome. Thank you for coming

I Want You to Vote: A Voter Education Presentation KAITLIN Hello and welcome. Thank you for coming today two Cougs Vote, a voter education HENNESSY: presentation. We're ready to get started. And my name is Caitlin Hennessy. I'm the program

413 views • 9 slides
V Voter Assistance: A i How Can I Continue to Vote? How Can I Continue to Vote?

V Voter Assistance: A i How Can I Continue to Vote? How Can I Continue to Vote?

Tammy Patrick Federal Compliance Officer Maricopa County Elections Department Maricopa County Elections Department V Voter Assistance: A i How Can I Continue to Vote? How Can I Continue to Vote? Arizona Indian Council on Aging

933 views • 44 slides
Taking Climate Action What We Can Do, Together! Become a Climate Voter Register to vote and help

Taking Climate Action What We Can Do, Together! Become a Climate Voter Register to vote and help

Taking Climate Action What We Can Do, Together! Become a Climate Voter Register to vote and help get others to vote! Find your elected officials Get to know them, learn how they vote. Discuss climate legislation with your

251 views • 9 slides
Voter Registration Register-Recruit-Vote Presented by: Youth Voter Movement and League of Women

Voter Registration Register-Recruit-Vote Presented by: Youth Voter Movement and League of Women

Voter Registration Register-Recruit-Vote Presented by: Youth Voter Movement and League of Women Voters Person giving presentation needs to be able to monitor the time and be able to adjust quickly as there is a finite amount of time. Who Are

384 views • 19 slides
Voter Suppression in Georgia Slide 1: Title Slide Slide 2: Overview Slide 3: Voter Suppression

Voter Suppression in Georgia Slide 1: Title Slide Slide 2: Overview Slide 3: Voter Suppression

Voter Suppression in Georgia Slide 1: Title Slide Slide 2: Overview Slide 3: Voter Suppression Voter suppression is used to prevent people who are otherwise eligible to vote from exercising their right to vote. Voter suppression in the

71 views • 6 slides
An Analysis on the Effects of Voter ID Laws and Minnesotas Decision to Vote Against It Amy

An Analysis on the Effects of Voter ID Laws and Minnesotas Decision to Vote Against It Amy

An Analysis on the Effects of Voter ID Laws and Minnesotas Decision to Vote Against It Amy Asell Bemidji State University Political Science Senior Thesis Dr. Patrick Donnay, Advisor Introduction The Bush v. Gore Florida recount Help

336 views • 20 slides
Election WWW.LWVSLO.ORG Julie Rodewald, Voter Service Director Voterservice@lwvslo.org League

Election WWW.LWVSLO.ORG Julie Rodewald, Voter Service Director Voterservice@lwvslo.org League

November 3 rd ` Election WWW.LWVSLO.ORG Julie Rodewald, Voter Service Director Voterservice@lwvslo.org League of Women Voters of San Luis Obispo County HOW TO VOTE ON NOVEMBER 3rd Every registered voter will receive a vote-by-mail ballot

551 views • 22 slides
Voting Lecture 22 Requirements Requirements Integrity/End-to-End verifiability Requirements

Voting Lecture 22 Requirements Requirements Integrity/End-to-End verifiability Requirements

Voting Lecture 22 Requirements Requirements Integrity/End-to-End verifiability Requirements Integrity/End-to-End verifiability Collected as cast: Each voter should be convinced that their vote was collected correctly Requirements

1.43k views • 129 slides
your new voting experience California Voter's Choice Act a new model that will modernize

your new voting experience California Voter's Choice Act a new model that will modernize

your new voting experience California Voter's Choice Act a new model that will modernize elections by allowing the voter to choose when, where, and how to vote beginning with March 3, 2020 Presidential Primary Election Receive Ballot at Home

282 views • 10 slides
Agenda Intelivote Overview Why dont people vote eVoting Voter Instruction Letter

Agenda Intelivote Overview Why dont people vote eVoting Voter Instruction Letter

2018 Candidate Session Agenda Intelivote Overview Why dont people vote eVoting Voter Instruction Letter Online Voting Web and Phone Advertisement Guidelines Candidate Module tutorial Access Questions 1

403 views • 36 slides
GREENVILLE ISD VOTER SURVEY July 19 - 23, 2018 N = 229 respondents margin of error: + 6.5%

GREENVILLE ISD VOTER SURVEY July 19 - 23, 2018 N = 229 respondents margin of error: + 6.5%

GREENVILLE ISD VOTER SURVEY July 19 - 23, 2018 N = 229 respondents margin of error: + 6.5% KEY FINDINGS After respondents hear more about the proposal, 72% would vote for, 15% would vote against it, and 1 12% are unsure Initial support

415 views • 23 slides
VOTER INFORMATION BE INFORMED. BE SAFE. Please follow CDC guidelines as you exercise your right to

VOTER INFORMATION BE INFORMED. BE SAFE. Please follow CDC guidelines as you exercise your right to

VOTER INFORMATION BE INFORMED. BE SAFE. Please follow CDC guidelines as you exercise your right to vote! VISIT MYVOTE.WI.GOV to register (extended through March 30), obtain an absentee mail-in ballot, and to stay informed about current voter

538 views • 21 slides
Voter, What Message Will Motivate You to Verify Your Vote? Maina Olembo, Karen Renaud, Steffen

Voter, What Message Will Motivate You to Verify Your Vote? Maina Olembo, Karen Renaud, Steffen

Voter, What Message Will Motivate You to Verify Your Vote? Maina Olembo, Karen Renaud, Steffen Bartsch, Usable Security Lab Crypto Lab and Melanie Volkamer Maina Olembo | USEC 14| 23.02.14 Background in electronic voting x o Yes No Yes o

150 views • 13 slides
COLORADO NATIONAL POPULAR VOTE VOTER OPINION SURVEY March 11 th 13 th , 2019 2 Colorado

COLORADO NATIONAL POPULAR VOTE VOTER OPINION SURVEY March 11 th 13 th , 2019 2 Colorado

1 COLORADO NATIONAL POPULAR VOTE VOTER OPINION SURVEY March 11 th 13 th , 2019 2 Colorado National Popular Vote Survey, 500n, +/-4.38, March 2019 Methodology Magellan Strategies is pleased to present the results of a 500n live

531 views • 32 slides
Sociological Factors Voter preferences cant be predicted by just one sociological factor.

Sociological Factors Voter preferences cant be predicted by just one sociological factor.

S E C T I O N 4 Voter Behavior What is the nonvoting problem and what is its scope? Why do people not vote? How can we compare the voting behavior of voters and nonvoters? What are the sociological and psychological factors that

237 views • 6 slides
Compact Explanation of Why Malware is Bad Speaker: Wei Chen 1 Joint Work with Charles Sutton 1 ,

Compact Explanation of Why Malware is Bad Speaker: Wei Chen 1 Joint Work with Charles Sutton 1 ,

Compact Explanation of Why Malware is Bad Speaker: Wei Chen 1 Joint Work with Charles Sutton 1 , David Aspinall 1 , Andrew D. Gordon 1 , 2 , Igor Muttik 3 , and Qi Shen 4 App Guarden Project 1 University of Edinburgh 2 Microsoft Research Cambridge

426 views • 31 slides
The POD file NAME iaoptions.config Main (and only) configuration file for JACoW.upload,

The POD file NAME iaoptions.config Main (and only) configuration file for JACoW.upload,

File Upload / Download Perl Scripts The five Perl scripts must be installed on the conference file server to enable authors and editors to upload and download manuscript and talk files. The file server must have an up-to-date version of

272 views • 9 slides
Internet Technology 14. VoIP and NAT Traversal Paul Krzyzanowski Rutgers University Spring 2013

Internet Technology 14. VoIP and NAT Traversal Paul Krzyzanowski Rutgers University Spring 2013

Internet Technology 14. VoIP and NAT Traversal Paul Krzyzanowski Rutgers University Spring 2013 April 29, 2013 2013 Paul Krzyzanowski 1 Session Initiation Protocol (SIP) Dominant protocol for Voice over IP (VoIP) RFC 3261 Allows

572 views • 40 slides
Metaprogramming & JavaScript Object Proxies Prof. Tom Austin San Jos State University

Metaprogramming & JavaScript Object Proxies Prof. Tom Austin San Jos State University

CS 252: Advanced Programming Language Principles Metaprogramming & JavaScript Object Proxies Prof. Tom Austin San Jos State University ECMAScript Schism ECMAScript 4 was divisive A group broke off to create ECMAScript 3.1

480 views • 32 slides
ExecScent: Mining for New C&C Domains in Live Networks

ExecScent: Mining for New C&C Domains in Live Networks

ExecScent: Mining for New C&C Domains in Live Networks with Adap?ve Control Protocol Templates Terry Nelms 1,2 , Roberto Perdisci 3,2 , Mustaque Ahamad 2,4 1

506 views • 33 slides
Tor: Anonymous Communications for the Dept of Defense...and you. Roger Dingledine Free Haven

Tor: Anonymous Communications for the Dept of Defense...and you. Roger Dingledine Free Haven

Tor: Anonymous Communications for the Dept of Defense...and you. Roger Dingledine Free Haven Project Electronic Frontier Foundation http://tor.eff.org/ 17 September 2005 Talk Outline Motivation: Why anonymous communication? Myth 1:

703 views • 47 slides
A Moose Once Bit My Honeypot A Story of an Embedded Linux Botnet by Olivier Bilodeau (

A Moose Once Bit My Honeypot A Story of an Embedded Linux Botnet by Olivier Bilodeau (

A Moose Once Bit My Honeypot A Story of an Embedded Linux Botnet by Olivier Bilodeau ( @obilodeau ) $ apropos Embedded Linux Malware Moose DNA (description) Moose Herding (the Operation) Whats New? Take Aways $ whoami Malware

1.19k views • 97 slides
IETF 74 DHC draft-dhankins-softwire-tunnel-option draft-ietf-dhc-option-guidelines

IETF 74 DHC draft-dhankins-softwire-tunnel-option draft-ietf-dhc-option-guidelines

IETF 74 DHC draft-dhankins-softwire-tunnel-option draft-ietf-dhc-option-guidelines draft-ietf-dhc-dhcpinform-clarify David W. Hankins Internet Systems Consortium, Inc. March, 2009 softwire-tunnel-option-03 No material changes.

347 views • 15 slides

More recommend