Cryptology ePrint Archive: Report 2010/195

On E-Vote Integrity in the Case of Malicious Voter Computers

Sven Heiberg, Helger Lipmaa, Filip Van Laenen

Abstract: Norway has started to implement e-voting (over the Internet, and by using voters' own computers) within the next few years. The vulnerability of voter's computers was identified as a serious threat to e-voting. In this paper, we study the vote integrity of e-voting when the voter computers cannot be trusted. First, we make a number of assumptions about the available infrastructure. In particular, we assume the existence of two out-of-band channels that do not depend on the voter computers. The first channel is used to transmit integrity check codes to the voters prior the election, and the second channel is used to transmit a check code, that corresponds to her vote, back to a voter just after his or her e-vote vast cast. For this we also introduce a new cryptographic protocol. We present the new protocol with enough details to facilitate an implementation, and also present the timings of an actual implementation.

Category / Keywords: Implementation, integrity, malicious voter computers, nationwide e-voting, proxy oblivious transfer, zero-knowledge proofs

Publication Info: ESORICS 2010

Date: received 8 Apr 2010, last revised 22 Sep 2010

Contact author: lipmaa at research cyber ee

Available format(s): PDF | BibTeX Citation

Note: This is full version that corresponds to the ESORICS 2010 paper

Version: 20100922:112038 (All versions of this report)

Short URL: ia.cr/2010/195

Discussion forum: Show discussion | Start new discussion