Design and implementation of cast-as-intended verifiability for a blockchain-based voting system

Killer, Christian; Rodrigues, Bruno; Matile, Raphael; Scheid, Eder J.; Stiller, Burkhard

doi:10.1145/3341105.3373884

Cited by 14 publications

(11 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Although the prototype implementation uses Tendermint's consensus mechanism (requiring at least 2 /3 of all consensus nodes to behave honestly), a suitable alternative is Proof-of-Authority [29], [30]. For instance, in Switzerland, cantons, down to municipalities can participate in the consensus, only requiring at least 1 /2 nodes to behave honestly.…”

Section: B Voting Schemementioning

confidence: 99%

“…AEternum provides IV, since the voter can query the PBB to find out if the ballot was recorded correctly. However, this assumes that the voter's platform is trusted, i.e., not infected with malware corrupting the voter's view of the PBB, and thus, not providing any voting verification mechanism [29]. Malware on the voter's device can intercept all communications between the voter and the DPBB, thereby modifying the voter's ballot and reflecting an incorrect state of the DPBB in order to keep the voter from noticing the modifications.…”

Section: Verifiabilitymentioning

confidence: 99%

“…In order to achieve UP, the deployment of a decentralized PBB is required. Distributed Ledgers (DL) offer a suitable approach to deploy a Decentralized PBB (DPBB) to achieve such a distribution of trust among authorities [29]. DLs are tamper-proof and immutable, replicate data securely, making them ideal for storing ballots that should not be manipulated by anyone [30].This paper proposes AEternum, the first DL-based REV system combining a voting scheme with UP and a public permissioned DL, which serves as a DPBB.…”

mentioning

confidence: 99%

See 2 more Smart Citations

Æternum: A Decentralized Voting System with Unconditional Privacy

Killer

Knecht

Müller

et al. 2021

2021 IEEE International Conference on Blockchain and Cryptocurrency (ICBC)

Self Cite

View full text Add to dashboard Cite

is crucial to protect BP against present and future adversaries, thus, not relying on computational intractability.However, REV schemes often apply cryptographic protocols based on Mixnets or Homomorphic Encryption, which rely on hardness assumptions to achieve BP [27]. Thus, Unconditional BP (UP) does not assume computational intractability and eliminates the need for Trusted Third Parties (TTP) [36]. Minimizing trust assumptions and removing the reliance on TTPs for specific tasks within the voting process is a fundamental argument for decentralized voting systems, e.g., for voting in a consortium of industry participants. Instead of relying on TTPs, the UP-based REV system can be fully decentralized. Since most prior work on REV does not achieve UP, they rely on a TTP or base their privacy on a secret shared between multiple trusted entities [36].AEternum's voting scheme provides UP and does not rely on a single trusted authority [36]. In order to achieve UP, the deployment of a decentralized PBB is required. Distributed Ledgers (DL) offer a suitable approach to deploy a Decentralized PBB (DPBB) to achieve such a distribution of trust among authorities [29]. DLs are tamper-proof and immutable, replicate data securely, making them ideal for storing ballots that should not be manipulated by anyone [30].This paper proposes AEternum, the first DL-based REV system combining a voting scheme with UP and a public permissioned DL, which serves as a DPBB. AEternum's voting scheme is based on Non-Interactive Zero-Knowledge Proofs (NIZKP) [36]. UP holds under the assumption of the existence of a PBB and an anonymous channel [37]. Furthermore, the trust assumptions do not impact UP, but are fundamental for verifiability and correctness i.e., trusted authorities are required for fairness. For instance, homomorphic threshold encryption is used to disallow trend analysis during an open voting period. Computational intractability assumptions are only relevant during the voting period to prevent the creation of invalid votes [36].The remainder of the paper is organized as follows. While essential definitions are presented in Section II, Section III discusses AEternum's system design followed by the implementation details in Section IV. Section V renders the discussion, Section VI outlines the security analysis and VII the evaluation. Finally, Section IX draws conclusions and outlines future work.Abstract-Remote Electronic Voting (REV) systems allow voters to cast their votes in an uncontrolled, distributed environment. At the same time, the REV system must provide ballot privacy and verifiability of the final tally. Research has proposed REV schemes offering ballot privacy based on computational intractability assumptions, but only a few provide Unconditional Privacy (UP).Therefore, this work proposes AEternum, a REV system with a voting scheme providing UP. AEternum does not require trust in a central authority, nor does it assume computational intractability of an underlying mathematical problem to provide UP. To satisfy UP's...

show abstract

Section: B Voting Schemementioning

confidence: 99%

Section: Verifiabilitymentioning

confidence: 99%

mentioning

confidence: 99%

See 1 more Smart Citation

Æternum: A Decentralized Voting System with Unconditional Privacy

Killer

Knecht

Müller

et al. 2021

2021 IEEE International Conference on Blockchain and Cryptocurrency (ICBC)

Self Cite

View full text Add to dashboard Cite

show abstract

“…By combining the advantages of the blockchain with smart contracts, the research community developed a profusion of distributed applications, e.g. a voting system for Switzerland [10]. Involving a trusted third party that punishes malicious actors requires setting up an escrow [11] to draw from if a misbehavior occurs, or a reputation system [12].…”

Section: Related Workmentioning

confidence: 99%

Fair Delegation of Digital Services Without Third Parties

Guillot

Théoleyre

Pelsser

2021

2021 IEEE Symposium on Computers and Communications (ISCC)

View full text Add to dashboard Cite

The software architecture of most applications is more and more fragmented, and relying on micro-services. Moreover, some parts may be specialized, and a customer may choose to delegate a task to a service provider. In this situation, the customer must be sure to get results that comply with the task when they pay the service provider, and inversely. We propose a framework based on atomic swaps to enable such simultaneous exchanges. Our scheme is based on exchanging a transactional key during an atomic swap. Our framework protects both actors, and enables non-repudiation, from both sides, even in an asynchronous environment.

show abstract

“…CaIV needs to be addressed, if the voter's platform cannot be controlled and trusted, which is typically the case, if the voter is able to cast an electronic ballot remotely. IV and CaIV together assure that the voter can detect that her vote was compromised, most probably by malicious code on the voting device [11]. While IV, UV, and E2E-V are of central importance for REV schemes, they are hard to prove in combination, but even harder to be deployed within an operational and practical RPV system.…”

Section: Definition 1 Individual Verifiability (Iv)mentioning

confidence: 99%

Proverum: A Hybrid Public Verifiability and Decentralized Identity Management

Killer,

Thorbecke,

Rodrigues

et al. 2020

Preprint

Self Cite

View full text Add to dashboard Cite

Trust in electoral processes is fundamental for democracies. Further, the identity management of citizen data is crucial, because final tallies cannot be guaranteed without the assurance that every final vote was cast by an eligible voter. In order to establish a basis for a hybrid public verifiability of voting, this work (i) introduces Proverum, an approach combining a private environment based on private permissioned Distributed Ledgers with a public environment based on public Blockchains, (ii) describes the application of the Proverum architecture to the Swiss Remote Postal Voting system, mitigating threats present in the current system, and (iii) addresses successfully the decentralized identity management in a federalistic state.

show abstract

Design and implementation of cast-as-intended verifiability for a blockchain-based voting system

Cited by 14 publications

References 21 publications

Æternum: A Decentralized Voting System with Unconditional Privacy

Æternum: A Decentralized Voting System with Unconditional Privacy

Fair Delegation of Digital Services Without Third Parties

Proverum: A Hybrid Public Verifiability and Decentralized Identity Management

Contact Info

Product

Resources

About