An Architecture For Electronic Voting

An Architecture ForElectronic Voting

Master Thesis Presentation

Clifford Allen McCulloughDepartment of Computer Science

University of Colorado at Colorado SpringsOctober ??, 2012

An Architecture for Electronic Voting by Clifford Allen McCullough

2

OutlineThe Need for an E-Voting SystemUS Voluntary Voting System GuidelinesExisting SolutionsProposed ArchitectureA Demonstration SystemPerformance ComparisonsLessons LearnedFuture WorkSummary

10/30/2012


3

The Need for an E-Voting SystemBusiness Board of DirectorsProxy votesUS citizens overseasUS military overseas

10/30/2012


4

Related WorkBrief Overview of the related

literature in conferences/journal. (Pick key 3-4 papers). Just list their references. Mention how are they related to your work.

10/30/2012


5

US Voluntary Voting System Guidelines (VVSG)SecurityAccuracyError RecoveryIntegrityVote TabulationCasting a BallotAccessibilityIndependent Verification System

10/30/2012


6

Existing SolutionsCommercial web-based voting

systems are availableSecure Electronic Registration

and Voting Experiment (SERVE)Security Peer Review Group

(SPRG)

10/30/2012


7

Proposed ArchitectureDesign RequirementsGeneral SchemaThe System ArchitecturePaillier Cryptography

10/30/2012


8

Design RequirementsVVSGInformation Assurance general

rules◦Minimize the attach surface◦Mitigate the vulnerabilities

10/30/2012


9

General SchemaShould not be centralizedGreatest vulnerability are from

insider attacksDenial of serviceKeep control of the ballotPublish the web application

10/30/2012


10

The System ArchitectureVoting-ServerVoter AuthenticationIssue PresentationVerify the BallotCasting the BallotMutual Authentication

10/30/2012


11

Election Key Pair Generation and Reproduced by Election JudgesDescribe how that work

10/30/2012


12

How Ballots are Encoded/Encrypted/DecrytedWith a short example illustrate

how ballot are encoded (candidate/write in)

May include a snapshort like Figure 4.

10/30/2012


13

System Diagram

10/30/2012


14

Paillier CryptographyExponential [cite ref]

◦Show the formula for each methodHomomorphic [ref]Generalized Paillier [ref]

10/30/2012


15

A Demonstration SystemA 32-bit demonstration and

development system based on ESXi (Do not use other people’s software product name as yours system name. Pick one that readers can remember and cited)

A 64-bit demonstration system on EAS Infrastructure. Give it a name.

10/30/2012


16

32-bit Development System

10/30/2012


17

64-bit Demonstration System

10/30/2012


18

Performance ComparisonsCryptographic MethodsCryptographic Key GenerationBlock Paillier vs. Generalized

PaillierBallot CastingInclude Figures 3-8 Tables 3-7

in separate viewgraphs

10/30/2012


19

Lessons LearnedFreeware

◦(add short description for each of these lessons)

Internet ForumsUsing Multiple Programing

Languages◦More detail here.

10/30/2012


20

Future WorkRedundancySecret Share Encryption and

DecryptionError Handling and LoggingBallot GenerationBallot and Multi-lingual DatabaseQuorum Login

10/30/2012


21

SummaryDeveloping an Election

Assistance Commission compliant voting system is a significant undertaking

SERVE objective too much too soon

Much future work availableThe demonstration system is a

proof of concept10/30/2012


22

DemonstrationGenerate and load a keyInitialize servicesVoteCollect the tallyDecrypt the tally

10/30/2012


23

References MotionVoter. (2011). Retrieved March 6, 2012, from http://www.motionvoter.com/ Cardellini, V., Casalicchio, E., Colajanni, M., & Yu, P. S. (2002). The State of the Art in Locally

Distributed Web-Server Systems. ACM Computing Surveys, Vol 34, No 2, 263-311. Damgard, I. B., & Jurik, M. J. (December 2000). A Generalisation, a Simplification and some

Applications of Paillier's Probabilstic Public-Key System. Basic Research in Computer Science, RS-00-45.

Defense, D. o. (2007). Expanding the Use of Electronic Voting Technology for UOCAVA Citizens. Department of Defense.

EAC. (2010). Election Assistance Commission. Retrieved February 29, 2012, from http://www.eac.gov/

EAC Voting System Testing and Certification Division. (2011). A Survey of Internet Voting. Washington, DC 20005.

EAC VVSG Vol I. (2010). Voluntary Voting System Guidelines Volume I. Retrieved August 24, 2012, from United States Election Assistance Commission: http://www.eac.gov/testing_and_certification/voluntary_voting_system_guidelines.aspx

EAC VVSG Vol II. (2010). Voluntary System Guidelines Volume II. Retrieved August 24, 2012, from United States Election Assistance Commission: http://www.eac.gov/testing_and_certification/voluntary_voting_system_guidelines.aspx

Jefferson, D. D., Rubin, D. A., Simons, D. B., & Wagner, D. D. (2004). A Security Analysis of the Secure Electronic Registration and Voting Experiment (SERVE).

Paillier, P. (1999). Public-Key Cryptosystems Based on Composite Degree Residuosity Clases. Advances in Cryptology - Eurocrypt '99, pp. 223-238.

Shamir, A. (November, 1979). How to Share a Secret. Communications of the ACM, 612-613. Vote-Now. (n.d.). Retrieved March 6, 2012, from https://secure.vote-now.com/

10/30/2012

Documents

An Architecture For Electronic Voting