Electronic Voting: How Logic Can Help

Cortier, Véronique

doi:10.1007/978-3-319-08587-6_2

Cited by 3 publications

(2 citation statements)

References 60 publications

(45 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…There are many works on electronic voting using the applied pi-calculus or a similar calculus to model the protocol (see, e.g., [21,7,14,15,17,19] to name a few). The voting privacy goal is usually then expressed by the following trick: consider two processes that differ only in the concrete vote of two (honest) voters who swap their vote; then any such pair of processes must be indistinguishable.…”

Section: Modeling E-votingmentioning

confidence: 99%

Alpha-Beta Privacy

Mödersheim¹,

Viganò

2019

ACM Trans. Priv. Secur.

View full text Add to dashboard Cite

The formal specification of privacy goals in symbolic protocol models has proved to be not quite trivial so far. The most widely used approach in formal methods is based on the static equivalence of frames in the applied pi-calculus, basically asking whether or not the intruder is able to distinguish two given worlds. But then a subtle question emerges: how can we be sure that we have specified all pairs of worlds to properly reflect our intuitive privacy goal? To address this problem, we introduce in this paper a novel and declarative way to specify privacy goals, called (α, β)-privacy. This new approach is based on specifying two formulae α and β in first-order logic with Herbrand universes, where α reflects the intentionally released information and β includes the actual cryptographic ("technical") messages the intruder can see. Then (α, β)-privacy means that the intruder cannot derive any "non-technical" statement from β that he cannot derive from α already. We describe by a variety of examples how this notion can be used in practice. Even though (α, β)-privacy does not directly contain a notion of distinguishing between worlds, there is a close relationship to static equivalence of frames that we investigate formally. This allows us to justify (and criticize) the specifications that are currently used in verification tools, and obtain a decision procedure for a large fragment of (α, β)-privacy. 6

show abstract

Section: Modeling E-votingmentioning

confidence: 99%

Alpha-Beta Privacy

Mödersheim¹,

Viganò

2019

ACM Trans. Priv. Secur.

View full text Add to dashboard Cite

show abstract

“…Recently, new symbolic methods have been proposed [15]- [19] to analyse e-voting protocols. However, the applicability of these methods is still extremely limited both in the type of protocols that they can deal with and the type of security properties (including threat models) that they analyse (as acknowledged by [14], [17], [20]). The reasons for these limitations interact in a complex way with existing approaches.…”

Section: Introductionmentioning

confidence: 99%

Improving Automated Symbolic Analysis of Ballot Secrecy for E-Voting Protocols: A Method Based on Sufficient Conditions

Hirschi

Cremers²

2019

2019 IEEE European Symposium on Security and Privacy (EuroS&P)

View full text Add to dashboard Cite

We advance the state-of-the-art in automated symbolic analysis of ballot secrecy for e-voting protocols by proposing a method based on analysing three conditions that together imply ballot secrecy. Our approach has two main advantages over existing automated approaches. The first is a substantial expansion of the class of protocols and threat models that can be automatically analysed: our approach can systematically deal with (a) honest authorities present in different phases, (b) threat models in which no dishonest voters occur, and (c) protocols whose ballot secrecy depends on fresh data coming from other phases. The second advantage is that our approach can significantly improve verification efficiency, as the individual conditions are often simpler to verify. E.g., for the LEE protocol, we obtain a speedup of over two orders of magnitude. We show the scope and effectiveness of our approach using ProVerif in several case studies, including the FOO, LEE, JCJ, and Belenios protocols.

show abstract