Estonian Internet voting has been used in national-wide elections since 2005. However, the system was initially designed in a heuristic manner, with very few proven security guarantees. The Estonian Internet voting system has constantly been evolving throughout the years, with the latest version (code-named IVXV) implemented in 2018. Nevertheless, to date, no formal security analysis of the system has been given. In this work, for the first time, we provide a rigorous security modeling for the Estonian IVXV system as a ceremony, attempting to capture the effect of actual human behavior on election verifiability in the universal composability (UC) framework. Based on the voter behavior statistics collected from three actual election events in Estonia, we show that IVXV achieves end-to-end verifiability in practice despite the fact that only $4\%$ (on average) of the Estonian voters audit their ballots.
翻译:自2005年以来,全国范围的选举中一直使用爱沙尼亚互联网投票,然而,该系统最初设计时采用黑手党方式,很少有经过验证的安全保障;爱沙尼亚互联网投票系统多年来不断演变,2018年实施了最新版本(代号IVXV),但迄今尚未对该系统进行正式的安全分析;在这项工作中,我们首次为爱沙尼亚IVXV系统提供了一个严格的安全模式,作为仪式,试图在普遍可复性(UC)框架内捕捉实际人类行为对选举可核查性的影响;根据从爱沙尼亚三次实际选举活动中收集的选民行为统计数据,我们显示,尽管爱沙尼亚选民对选票进行审计时只有4美元(平均),但IVXV实际上实现了最终至最终的可核查性。
相关内容
微信扫码咨询专知VIP会员