Upload
rosina
View
35
Download
0
Tags:
Embed Size (px)
DESCRIPTION
An Architecture For Electronic Voting. Master Thesis Presentation Clifford Allen McCullough Department of Computer Science University of Colorado at Colorado Springs October ??, 2012. Outline. The Need for an E-Voting S ystem US Voluntary Voting System Guidelines Existing Solutions - PowerPoint PPT Presentation
Citation preview
An Architecture ForElectronic Voting
Master Thesis Presentation
Clifford Allen McCulloughDepartment of Computer Science
University of Colorado at Colorado SpringsOctober ??, 2012
An Architecture for Electronic Voting by Clifford Allen McCullough
2
OutlineThe Need for an E-Voting SystemUS Voluntary Voting System GuidelinesExisting SolutionsProposed ArchitectureA Demonstration SystemPerformance ComparisonsLessons LearnedFuture WorkSummary
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
3
The Need for an E-Voting SystemBusiness Board of DirectorsProxy votesUS citizens overseasUS military overseas
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
4
Related WorkBrief Overview of the related
literature in conferences/journal. (Pick key 3-4 papers). Just list their references. Mention how are they related to your work.
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
5
US Voluntary Voting System Guidelines (VVSG)SecurityAccuracyError RecoveryIntegrityVote TabulationCasting a BallotAccessibilityIndependent Verification System
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
6
Existing SolutionsCommercial web-based voting
systems are availableSecure Electronic Registration
and Voting Experiment (SERVE)Security Peer Review Group
(SPRG)
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
7
Proposed ArchitectureDesign RequirementsGeneral SchemaThe System ArchitecturePaillier Cryptography
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
8
Design RequirementsVVSGInformation Assurance general
rules◦Minimize the attach surface◦Mitigate the vulnerabilities
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
9
General SchemaShould not be centralizedGreatest vulnerability are from
insider attacksDenial of serviceKeep control of the ballotPublish the web application
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
10
The System ArchitectureVoting-ServerVoter AuthenticationIssue PresentationVerify the BallotCasting the BallotMutual Authentication
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
11
Election Key Pair Generation and Reproduced by Election JudgesDescribe how that work
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
12
How Ballots are Encoded/Encrypted/DecrytedWith a short example illustrate
how ballot are encoded (candidate/write in)
May include a snapshort like Figure 4.
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
13
System Diagram
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
14
Paillier CryptographyExponential [cite ref]
◦Show the formula for each methodHomomorphic [ref]Generalized Paillier [ref]
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
15
A Demonstration SystemA 32-bit demonstration and
development system based on ESXi (Do not use other people’s software product name as yours system name. Pick one that readers can remember and cited)
A 64-bit demonstration system on EAS Infrastructure. Give it a name.
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
16
32-bit Development System
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
17
64-bit Demonstration System
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
18
Performance ComparisonsCryptographic MethodsCryptographic Key GenerationBlock Paillier vs. Generalized
PaillierBallot CastingInclude Figures 3-8 Tables 3-7
in separate viewgraphs
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
19
Lessons LearnedFreeware
◦(add short description for each of these lessons)
Internet ForumsUsing Multiple Programing
Languages◦More detail here.
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
20
Future WorkRedundancySecret Share Encryption and
DecryptionError Handling and LoggingBallot GenerationBallot and Multi-lingual DatabaseQuorum Login
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
21
SummaryDeveloping an Election
Assistance Commission compliant voting system is a significant undertaking
SERVE objective too much too soon
Much future work availableThe demonstration system is a
proof of concept10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
22
DemonstrationGenerate and load a keyInitialize servicesVoteCollect the tallyDecrypt the tally
10/30/2012
An Architecture for Electronic Voting by Clifford Allen McCullough
23
References MotionVoter. (2011). Retrieved March 6, 2012, from http://www.motionvoter.com/ Cardellini, V., Casalicchio, E., Colajanni, M., & Yu, P. S. (2002). The State of the Art in Locally
Distributed Web-Server Systems. ACM Computing Surveys, Vol 34, No 2, 263-311. Damgard, I. B., & Jurik, M. J. (December 2000). A Generalisation, a Simplification and some
Applications of Paillier's Probabilstic Public-Key System. Basic Research in Computer Science, RS-00-45.
Defense, D. o. (2007). Expanding the Use of Electronic Voting Technology for UOCAVA Citizens. Department of Defense.
EAC. (2010). Election Assistance Commission. Retrieved February 29, 2012, from http://www.eac.gov/
EAC Voting System Testing and Certification Division. (2011). A Survey of Internet Voting. Washington, DC 20005.
EAC VVSG Vol I. (2010). Voluntary Voting System Guidelines Volume I. Retrieved August 24, 2012, from United States Election Assistance Commission: http://www.eac.gov/testing_and_certification/voluntary_voting_system_guidelines.aspx
EAC VVSG Vol II. (2010). Voluntary System Guidelines Volume II. Retrieved August 24, 2012, from United States Election Assistance Commission: http://www.eac.gov/testing_and_certification/voluntary_voting_system_guidelines.aspx
Jefferson, D. D., Rubin, D. A., Simons, D. B., & Wagner, D. D. (2004). A Security Analysis of the Secure Electronic Registration and Voting Experiment (SERVE).
Paillier, P. (1999). Public-Key Cryptosystems Based on Composite Degree Residuosity Clases. Advances in Cryptology - Eurocrypt '99, pp. 223-238.
Shamir, A. (November, 1979). How to Share a Secret. Communications of the ACM, 612-613. Vote-Now. (n.d.). Retrieved March 6, 2012, from https://secure.vote-now.com/
10/30/2012