On the Security Properties of e-Voting Bulletin Boards

Aggelos Kiayias, Annabell Kuldmaa, Helger Lipmaa, Janno Siim, Thomas Zacharias

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

In state-of-the-art e-voting systems, a bulletin board (BB) is a critical component for preserving election integrity and availability. Although it is common in the literature to assume that a BB is a centralized entity that is trusted, in the recent works of Culnane and Schneider [CSF 2014] and Chondros et al. [ICDCS 2016], the importance of removing BB as a single point of failure has been extensively discussed. Motivated by these works, we introduce a framework for the formal security analysis of the BB functionality. Our framework treats a secure BB as a robust public transaction ledger, defined by Garay et al. [Eurocrypt 2015], that additionally supports the generation of receipts for successful posting. Namely, in our model, a secure BB system achieves Persistence and Liveness that are confirmable, in the sense that any malicious behavior of the BB system can be detected via a verification mechanism.
As a case study for our framework, we analyze the BB system of Culnane and Schneider and point out its weaknesses. We demonstrate an attack revealing that the said system does not achieve Confirmable Liveness, even in the case where the adversary is computationally bounded and covert, i.e., it may deviate from the protocol specification but does not want to be detected. In addition, we show that special care should be taken for the choice of the underlying cryptographic primitives, so that the claimed fault tolerance threshold of N=3 out-of N corrupted peers is preserved. Next, based on our analysis, we introduce a new BB protocol that upgrades the [CSF 2014] protocol. We prove that it tolerates any number less than N=3 out-of N corrupted peers both for Persistence and Confirmable Liveness, against a computationally bounded general Byzantine adversary.
Original languageEnglish
Title of host publication11th Conference on Security and Cryptography for Networks (SCN 2018)
Place of PublicationAmalfi, Italy
PublisherSpringer, Cham
Pages505-523
Number of pages19
ISBN (Electronic)978-3-319-98113-0
ISBN (Print)978-3-319-98112-3
DOIs
Publication statusPublished - 3 Aug 2018
Event11th Conference on Security and Cryptography for Networks - Amalfi, Italy
Duration: 5 Sep 20187 Sep 2018
http://scn.di.unisa.it/index.shtml

Publication series

Name Lecture Notes in Computer Science
PublisherSpringer, Cham
Volume11035
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference11th Conference on Security and Cryptography for Networks
Abbreviated titleSCN 2018
Country/TerritoryItaly
CityAmalfi
Period5/09/187/09/18
Internet address

Keywords

  • Bulletin board
  • E-voting
  • Liveness
  • Persistence

Fingerprint

Dive into the research topics of 'On the Security Properties of e-Voting Bulletin Boards'. Together they form a unique fingerprint.

Cite this