Method and system for securing network-based electronic voting

US 20020133396A1
Filed: 03/13/2001
Published: 09/19/2002
Est. Priority Date: 03/13/2001
Status: Active Grant

First Claim

Patent Images

1. A method of securely voting over a network, comprising:

delivering an electronic ballot from a server with the vote serial number on the ballot, to an individual;

filling in the ballot and creating a set of ballot choices that are digitally signed using the individual'"'"'s secret key;

delivering the ballot choices with the individual'"'"'s electronic signature, and the vote serial number to the server; and

creating a data element from the individual'"'"'s electronic signature over the ballot choices, the server'"'"'s electronic signature over the ballot choices and the vote serial number to record the ballot choices in a data store at the server, and retaining the ballot choices as a vote.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and system for securely voting over a network, such as a global computer network, involves a system which delivers an electronic ballot from a server with the server'"'"'s private key and a vote serial number on the ballot to an individual terminal connected to the network. The ballot may be filled in and a subset of the filled-in ballot is created with a digital signature created from the individual'"'"'s secret key on the subset of the ballot corresponding to the ballot choices. The subset of the filled-in ballot together with the individual'"'"'s electronic signature, and a vote serial number is then delivered to the server. A data element is then created to record a subset of the ballot in a data store at the server, in which the ballot vote information is retained as a vote.

125 Citations

View as Search Results

28 Claims

1. A method of securely voting over a network, comprising:
- delivering an electronic ballot from a server with the vote serial number on the ballot, to an individual;
  
  filling in the ballot and creating a set of ballot choices that are digitally signed using the individual'"'"'s secret key;
  
  delivering the ballot choices with the individual'"'"'s electronic signature, and the vote serial number to the server; and
  
  creating a data element from the individual'"'"'s electronic signature over the ballot choices, the server'"'"'s electronic signature over the ballot choices and the vote serial number to record the ballot choices in a data store at the server, and retaining the ballot choices as a vote.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
- - 2. The method of claim 1 further comprising confirming the retention of the vote at the server by signing the individual'"'"'s signature of the ballot, the server'"'"'s signature of the ballot and the vote serial number, and transmitting the signed confirmation to the individual who submitted the ballot.
  - 3. The method of claim 1, further comprising:
    - recording in the server'"'"'s data store the server'"'"'s digital signature of the ballot to allow verification at the server that all of the ballots cast have not been tampered with.
  - 4. The method of claim 3, further comprising:
    - verifying for all individuals voting that none of the ballots have been tampered with by reconstructing the ballot for each individual using the vote serial number, creating a digital signature over each reconstructed ballot by using the server'"'"'s public key, and verifying the digital signature against the ballot signature using the server'"'"'s private originally recorded when the individual created and submitted the ballot with the individual'"'"'s private key and verifying the digital signature against the ballot signature originally recorded when the individual created and submitted the ballot, digitally signed with the individual'"'"'s private key.
  - 5. The method of claim 2, further comprising:
    - allowing the individual to verify that their ballot is retained in the server'"'"'s data store accurately reflecting the way it was cast by presenting the confirmation to the server;
      
      decomposing the confirmation into the individual'"'"'s signature of the ballot, the server'"'"'s signature of the ballot, the vote serial number and the server'"'"'s signature which resulted in the confirmation;
      
      recomputing the server'"'"'s signature on the confirmation to ensure the confirmation has not been altered;
      
      extracting the vote serial number out of the confirmation if it has been verified that the confirmation has not been altered; and
      
      indexing a database in the server to allow reconstruction of the individual'"'"'s ballot as it was cast.
  - 6. The method of claim 5, further comprising:
    - storing the individual'"'"'s private encryption key, a certificate for the individual'"'"'s public key and a voter identification generated when the individual registers with the system on a portable storage device; and
      
      reading the information on the portable storage device before allowing a ballot to be cast.
  - 7. The method of claim 6, wherein said portable storage device is a smart card, and further comprising reading the information on the smart card before allowing a ballot to be cast.
  - 8. The method of claim 6 wherein said certificate is an X.509 certificate.
  - 9. The method of claim 1, further comprising:
    - entering demographic data onto the ballot and storing the demographic data in relation to the ballot stored by the server.
  - 10. The method of claim 1, further comprising:
    - creating an election voter table at the server from encrypted individual'"'"'s voter identification; and
      
      comparing each ballot to the encrypted individual'"'"'s voter identification to detect if an individual attempts to cast more than one ballot.
  - 11. The method of claim 1 wherein said ballot is a bit-map.
  - 12. The method of claim 1 wherein said ballot is an HTML or XML document.
  - 16. The system of claim 15, wherein:
    - the server is further programmed for confirming retention of the vote at the data store thereof by signing the individual'"'"'s signature of the ballot, the server'"'"'s signature of the ballot and the vote serial number, and transmitting the signed confirmation to the individual who submitted the ballot.
  - 17. The system of claim 15, wherein:
    - the server is programmed for recording in the data store the server'"'"'s digital signature of the ballot for allowing verification at the server that all of the ballots cast have not been tampered with.
  - 18. The system of claim 17, wherein:
    - the server is programmed for verifying for all individuals voting, that none of the ballots have been tampered with, by reconstructing the ballot for each individual using the vote serial number, creating a digital signature over each reconstructed ballot by using the server'"'"'s public key, and verifying the server'"'"'s signature over the ballot choices originally recorded when the individual created and submitted the ballot choices.
  - 19. The system of claim 16, wherein:
    - the server is configured for allowing an individual to verify their ballot is retained in the server'"'"'s data store in a manner accurately reflecting the way it was cast in response to the individual presenting the confirmation to the server;
      
      for decomposing the confirmation with the individual'"'"'s signature of the ballot, the vote serial number and the server'"'"'s signature which resulted in the confirmation;
      
      recomputing the server'"'"'s signature on the confirmation to ensure the confirmation has not been altered, extracting the vote serial number out of the confirmation if it has been verified that the confirmation has not been altered; and
      
      for indexing a database in the server to allow reconstruction of the individual'"'"'s ballot as it was cast.
  - 20. The system of claim 19, further comprising:
    - a portable storage device configured for connection and transmission of information to the server, said information being an individual'"'"'s private encryption key, a certificate for the individual'"'"'s public key and a voter identification number generated when the individual registered to vote through the server; and
      
      the server being configured for receiving the voter ID and public key certificate from the portable storage device before allowing a ballot to be cast by the individual.
  - 21. The system of claim 20, wherein:
    - said portable storage device is a smart card, and further comprising a smart card reader connected to the individual'"'"'s terminal.
  - 22. The system of claim 20, wherein:
    - the server is configured for processing an X.509 certificate, and wherein said certificate on the portable storage device is an X.509 certificate.
  - 23. The system of claim 15, wherein:
    - the server is programmed for generating a ballot which allows input of demographic data and for storing the demographic data in relation to each ballot stored.
  - 24. The system of claim 15, wherein:
    - the server is programmed for creating an election voter table from a one-way hash of individual'"'"'s voter identification; and
      
      for comparing each ballot to the individual'"'"'s hashed voter identification to detect if an individual attempts to cat more than one ballot.
  - 25. The system of claim 15, wherein said server is programmed to generate said ballot as a bit-map.
  - 26. The system of claim 15 wherein said server is programmed to generate said ballot as an HTML or XML document.

13. A method of securely voting over a network, comprising:
- delivering an electronic ballot from a server with the vote serial number on the ballot, to an individual;
  
  filling in the ballot and creating a set of ballot choices that are digitally signed using the individual'"'"'s secret key;
  
  delivering the ballot choices with the individual'"'"'s electronic signature, and the vote serial number to the server;
  
  creating a data element from the individual'"'"'s electronic signature over the ballot choices, the server'"'"'s electronic signature over the ballot choices and the vote serial number to record the ballot choices in a data store at the server, and retaining the ballot choices as a vote;
  
  confirming the retention of the vote at the server by signing the individual'"'"'s signature of the ballot, the server'"'"'s signature of the ballot and the vote serial number;
  
  transmitting the signed confirmation to the individual who submitted the ballot; and
  
  allowing the individual to verify that their ballot is retained in the server'"'"'s data store accurately reflecting the way it was cast.

14. A method of securely voting over a network, comprising:
- delivering an electronic ballot from a server with the vote serial number on the ballot, to an individual;
  
  filling in the ballot and creating a set of ballot choices that are digitally signed using the individual'"'"'s secret key;
  
  delivering the ballot choices with the individual'"'"'s electronic signature, and the vote serial number to the server;
  
  creating a data element from the individual'"'"'s electronic signature over the ballot choices, the server'"'"'s electronic signature over the ballot choices and the vote serial number to record the ballot choices in a data store at the server, and retaining the ballot choices as a vote;
  
  recording in the server'"'"'s data store the server'"'"'s digital signature of the ballot to allow verification at the server that all of the ballots cast have not been tampered with; and
  
  verifying for all individuals voting that none of the ballots have been tampered with.

15. A system for conducting secure voting over a network, comprising:
- a server having a data store associated therewith, said server being configured for connection to the network for communicating with terminals connected to the network;
  
  said server being further configured for delivering an electronic ballot having the vote serial number on the ballot, to an individual at a terminal connected to the network, and said ballot configured for being filled in by an individual, and for having a subset thereof corresponding to the ballot choices delivered to the server with the individual'"'"'s electronic signature and the vote serial number thereon; and
  
  the server being further configured for receiving the subset of the ballot and creating a data element from the individual'"'"'s electronic signature over the ballot choices, the server'"'"'s electronic signature over the ballot choices and the vote serial number to allow recording of the subset of the ballot within the data store and retained therein as a vote.

27. A system for conducting secure voting over a network, comprising:
- a server having a data store associated therewith, said server being configured for connection to the network for communicating with terminals connected to the network;
  
  said server being further configured for delivering an electronic ballot having the vote serial number on the ballot, to an individual at a terminal connected to the network, and said ballot configured for being filled in by an individual, and for having a subset thereof corresponding to the ballot choices delivered to the server with the individual'"'"'s electronic signature and the vote serial number thereon;
  
  the server being further configured for receiving the subset of the ballot and creating a data element from the individual'"'"'s electronic signature over the ballot choices, the server'"'"'s electronic signature over the ballot choices and the vote serial number to allow recording of the subset of the ballot within the data store and retained therein as a vote; and
  
  the server being further programmed for confirming retention of the vote at the data store thereof by signing the individual'"'"'s signature of the ballot, the server'"'"'s signature of the ballot and the vote serial number, for transmitting the signed confirmation to the individual who submitted the ballot, and for allowing an individual to verify their ballot is retained in the server'"'"'s data store in a manner accurately reflecting the way it was cast in response to the individual presenting the confirmation to the server.

28. A system for conducting secure voting over a network, comprising:
- a server having a data store associated therewith, said server being configured for connection to the network for communicating with terminals connected to the network;
  
  said server being further configured for delivering an electronic ballot having the vote serial number on the ballot, to an individual at a terminal connected to the network, and said ballot configured for being filled in by an individual, and for having a subset thereof corresponding to the ballot choices delivered to the server with the individual'"'"'s electronic signature and the vote serial number thereon;
  
  the server being further configured for receiving the subset of the ballot and creating a data element from the individual'"'"'s electronic signature over the ballot choices, the server'"'"'s electronic signature over the ballot choices and the vote serial number to allow recording of the subset of the ballot within the data store and retained therein as a vote; and
  
  the server being programmed for recording in the data store the server'"'"'s digital signature of the ballot for verifying at the server that all of the ballots cast have not been tampered with, by reconstructing the ballot for each individual.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Leidos, Inc. (Leidos Holdings, Inc.)
Original Assignee
Leidos, Inc. (Leidos Holdings, Inc.)
Inventors
Barnhart, Robert M.

Granted Patent

US 8,554,607 B2
Time in Patent Office

Days
Field of Search
US Class Current

705/12
CPC Class Codes

G06Q 10/10 Office automation; Time man...

G07C 13/00 Voting apparatus

Method and system for securing network-based electronic voting

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

125 Citations

28 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for securing network-based electronic voting

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

125 Citations

28 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links