Method and system for secure computer moderated voting
First Claim
1. An improved method of electronic voting, comprising:
- (a) providing a data processing system under the control of a voter;
(b) providing an authentication server data processing system;
(c) providing a results server data processing system;
(d) electronically communicating a ballot request and voter identification information in encrypted form from said voter to said authentication server;
(e) utilizing said authentication server to determine the authenticity of said voter;
(f) utilizing said authentication server to issue a blank ballot to said voter in the form of an encrypted electronic communication;
(g) electronically communicating a completed ballot from said voter to said authentication server in encrypted form;
(h) utilizing said authentication server to receive said encrypted completed ballot;
(i) electronically communicating said encrypted completed ballot from said authentication server to said results server;
(j) utilizing said results server to tabulate votes; and
(k) removing the content of said completed ballot from the tabulation of votes if it is determined that said voter is ineligible for voting, after voting has occurred by said voter.
3 Assignments
0 Petitions
Accused Products
Abstract
A method and system is provided for improved electronic voting. The system optionally allows paper type ballots to be utilized. A plurality of cryptographic routines are utilized in a distributed data processing system to maximize the privacy of both the voter'"'"'s identity and the content of completed ballots. An authentication server is utilized to interact with a voter to issue electronic ballots and receive completed electronic ballots in a manner which determines the authenticity of the identification of the voter, while maintaining the content of the completed ballot confidential. The distributed data processing system further includes a results server which tabulates the content of completed ballots in a manner which maintains the identity of the voters associated with the particular ballots confidential. The distributed data processing system may further include a journal server which records completed ballots, in a manner which facilitates the challenge of ineligible votes and the correction of erroneous votes.
-
Citations
12 Claims
-
1. An improved method of electronic voting, comprising:
-
(a) providing a data processing system under the control of a voter; (b) providing an authentication server data processing system; (c) providing a results server data processing system; (d) electronically communicating a ballot request and voter identification information in encrypted form from said voter to said authentication server; (e) utilizing said authentication server to determine the authenticity of said voter; (f) utilizing said authentication server to issue a blank ballot to said voter in the form of an encrypted electronic communication; (g) electronically communicating a completed ballot from said voter to said authentication server in encrypted form; (h) utilizing said authentication server to receive said encrypted completed ballot; (i) electronically communicating said encrypted completed ballot from said authentication server to said results server; (j) utilizing said results server to tabulate votes; and (k) removing the content of said completed ballot from the tabulation of votes if it is determined that said voter is ineligible for voting, after voting has occurred by said voter. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An improved method of electronic voting, comprising:
-
(a) providing a data processing system under the control of a voter; (b) providing an authentication server data processing system; (c) providing a results server data processing system; (d) electronically communicating at least the following among said data processing system under control of said voter, said authentication server, and said results server; (1) a request for a ballot; (2) an electronic ballot; (3) a completed ballot; (e) utilizing a plurality of cryptographic functions in order to allow access by said authentication server to information which identifies said voter; (f) utilizing a plurality of cryptographic functions in order to prevent access by said authentication server to information contained in said completed ballot; (g) utilizing a plurality of cryptographic functions to prevent access by said results server to information which identifies said voter; (h) utilizing a plurality of cryptographic functions to allow access by said results server to the content of said completed ballot; and (i) removing the content of said completed ballot, if it is determined that said voter is ineligible to vote, without allowing access to the content to said completed vote by said authentication server, and without allowing access to information identifying said voter by said results server. - View Dependent Claims (9)
-
-
10. An apparatus for allowing electronic voting, comprising:
-
(a) a distributed data processing system; (b) a plurality of sets of data processing instructions within said distributed data processing system including at least the following routines; (1) a ballot request routine for allowing a voter to request an electronic ballot; (2) a ballot dispensation routine for issuing an electronic ballot to said voter after said voter'"'"'s identity has been authenticated; (3) a ballot receiving routine for allowing receipt of a completed electronic ballot from said voter and recordation of the completed vote to prevent the issuance of additional ballots to said voter, in a manner which maintains the content of said completed ballot confidential; (4) a ballot tabulation routine which allows tabulation of the content of said completed ballot in a manner which preserves the confidentiality of the voter'"'"'s identity; and (5) a challenge routine which allows the content of a completed ballot for an ineligible voter to be removed from the vote tabulation without revealing the identity of the voter or the content of said completed ballot; and (6) a correction routine which allows an eligible voter to delete the content of an erroneous completed ballot and substitute it with the content of a correct completed ballot, without jeopardizing the privacy of the identity of said voter, or the content of said erroneous completed ballot, and the content of said corrected completed ballot. - View Dependent Claims (11, 12)
-
Specification