So#wareSupportforSo#wareIndependent Audi3ng GabrielleA.Gianelli, - - PowerPoint PPT Presentation

so ware support for so ware independent audi3ng
SMART_READER_LITE
LIVE PREVIEW

So#wareSupportforSo#wareIndependent Audi3ng GabrielleA.Gianelli, - - PowerPoint PPT Presentation

Jan 11, 2024 147 likes •377 views

So#wareSupportforSo#wareIndependent Audi3ng GabrielleA.Gianelli, JenniferD.King , EdwardW.Felten,WilliamP.Zeller CenterforInforma3onTechnologyPolicy DepartmentofComputerScience

slide-1
SLIDE 1

So#ware
Support
for
So#ware‐Independent Audi3ng

Gabrielle
A.
Gianelli,
Jennifer
D.
King, Edward
W.
Felten,
William
P.
Zeller

Center
for
Informa3on
Technology
Policy Department
of
Computer
Science Princeton
University

EVT/WOTE
‘09 August
11,
2009

slide-2
SLIDE 2

Goals
of
Post‐Elec3on
Audi3ng

  • Valid
sta3s3cal
guarantee
  • Efficient
  • Easy
to
use
  • Ins3lls
confidence
in
elec3on
results
for

voters
and
officials

  • So#ware
independent
slide-3
SLIDE 3
slide-4
SLIDE 4

Possible
Solu3ons

Efficiency Complexity Difficulty
understanding

slide-5
SLIDE 5

Possible
Solu3ons

Ease
of
use Automa9on So;ware
dependence

?

slide-6
SLIDE 6

How
to
reconcile
these
tensions?

  • One
approach:
eliminate
computers
  • Our
approach:
automate,
but
verify
slide-7
SLIDE 7

So#ware
Independence

Audi9ng System Third
Par3es for Verifica3on

slide-8
SLIDE 8

Log
Format

User
entered
data Calcula9ons ‐
Pseudorandom
numbers ‐
Input ‐
Precinct
or
ballot
selec3ons

slide-9
SLIDE 9

Log

AXributes
of
log

– XML:
can
be
easily
parsed – Stores
all
informa3on
necessary
to
recreate
an
audit, either
by
hand
or
with
another
machine

A log verifiable by a third party ensures software independence.

slide-10
SLIDE 10

Our
Solu3on

  • Web
applica3on
  • Python
with
Django
web
framework

Goal: auditing interface easy for non-expert users

slide-11
SLIDE 11
  • (screenshot
of
home
page
with
audit

status)

slide-12
SLIDE 12
  • (screenshot
of
race/algorithm
selec3on

page)

slide-13
SLIDE 13

Supported
Algorithms

Precinct‐based
algorithms:

  • Exact
Percent
  • Percent
by
Probability

Ballot‐based
algorithms:

  • Constant
Sample
Size
  • Varying
Sample
Size
slide-14
SLIDE 14

Linking
Precincts

  • Assume
two
races
A
and
B
over
the
same

set
of
precincts

  • Goal:
choose
2%
of
precincts
for
Race
A
and

3%
of
precincts
for
Race
B

slide-15
SLIDE 15

Unlinked
Precincts

Set
of
all
ballots,
S SB

SA

slide-16
SLIDE 16

Linked
Precincts

Set
of
all
ballots,
S

SB SA&
SB

slide-17
SLIDE 17

Pseudorandom
Number
Genera3on

PRNG “1,2,1,4,4,…”

slide-18
SLIDE 18

Humboldt
County
Data

  • Ballot
images
from
Humboldt
County
(CA)

Elec3on
Transparency
Project
(Nov
2008)

  • Textual
ballot
representa3ons
from
Mitch

Trachtenberg’s
Ballot
Browser
program

  • 29
races;
145
precincts;
128,144
ballots
slide-19
SLIDE 19

Process

  • Loaded
the
data
from
individual
ballots
into
our

database

  • Used
the
system
to
run
a
mock
audit
  • In
order
to
simulate
a
manual
recount,
compared

the
ballot
images
against
the
data
in
our
database

slide-20
SLIDE 20

Results

2% 4% 12% Percent
ballots chosen 3,006 N/A 99% confidence Constant Sample
Size 3 5,768 15 1%
of precincts Exact
Percent (linking) 2 15,613 33 1%
of precincts Exact
Percent 1 Ballots Chosen Precincts chosen Parameter Algorithm Audit

slide-21
SLIDE 21

In
closing…

Automa3on
can

  • Make
post‐elec3on
audits
more
efficient
  • Expand
the
scope
of
complex
audi3ng
algorithms

and
reduce
the
number
of
ballots
to
be
counted as
long
as
the
output
can
be
independently
verified.

slide-22
SLIDE 22

So#ware
Support
for
So#ware‐Independent Audi3ng

Gabrielle
A.
Gianelli,
Jennifer
D.
King, Edward
W.
Felten,
William
P.
Zeller

Center
for
Informa3on
Technology
Policy Department
of
Computer
Science Princeton
University

EVT/WOTE
‘09 August
11,
2009