Secure remote electronic voting system and cryptographic protocols and computer programs employed
First Claim
1. A secure electronic voting method which uses at least a computer device acting as a vote casting platform, a computer server acting as a polling station designed to receive and accumulate ballots in a digital ballot box during a preset voting period of time, a computer device acting as a tally site for the ballots and a computer device acting as a publication site of the results, said polling station, site and publication site being scattered, or, grouped together in a same computer device, each of said polling station, tally site and publication site being provided with computing means and interconnected to each other, when scattered, through at least a communication network comprising cryptographic processes and protocols in order to guarantee a series of specific safety requirements of an electoral process throughout the execution of the method and the electoral process, said method comprising the following steps:
- a) providing an electoral board operating said tally site with at least a pair of asymmetric keys and allowing access to a private key or a private component of one of said pair of keys, only to a number of members of the electoral board determined by a given threshold or all of the members of said electoral board according to a cryptographic protocol of secret sharing;
b) starting a process of acceptance of the votes at the polling station;
c) each voter casting a vote electronically through a set of programs acting as a voter agent and using at least one vote casting platform, the vote casting step comprising sub-steps of;
the voter making a voter choice,the voter generating a unique ballot identifier that is a pseudo random number to identify each vote cast without probable repetitions thereby identifying each of the vote by means of selecting a value for the unique ballot identifier within a predetermined range,the voter obtaining a voting receipt which provides validity at least to said unique ballot identifier for said electoral process and which verifies the results of the voting without disclosing content of the voter choice,the voter constructing a digital envelope protecting voter'"'"'s privacy by using a public component of said at least one pair of asymmetric keys of the electoral board, said digital envelope containing at least the voter choice,after or before said sub-steps, carrying out a voter authentication proof, and generating a proof of delivery of said digital envelope in the polling station which is transmitted to the voter agent as a voting voucher of having cast the vote for each voter, fully separate from non-coded voter choice;
d) ending said process of ballots acceptance at said polling station;
e) the members of the electoral board collaborating so that they have access to said at least one pair of asymmetric keys including the private key or said private component and using said private component to have access to the content of the digital envelope; and
f) counting and tabulating the voter choice of each voter and publishing the results at the publication site and allowing said voter to verify said results by using said voting receipt without disclosing the voter choice through accessing the results published on the publication site, which contain the voter'"'"'s unique ballot identifier, carrying out a search of the unique ballot identifier and allowing the voter to file a claim supported on said voting receipt and said voting voucher in the event of lack of the unique ballot identifier in the results published, without disclosing the voter choice.
7 Assignments
0 Petitions
Accused Products
Abstract
The method employs interrelated cryptographic processes and protocols to provide reliability to vote casting, ballots recount, and verification of vote or poll results. These cryptographic processes and protocols jointly constitute a cryptographic voting scheme capable of meeting the specific reliability requirements of an electronic voting where voters remotely cast their votes. These reliability requirements include voter authentication and privacy; accurate results, the impossibility of coercion and sale of votes, verifying the final results and, if necessary, the secrecy of intermediate results before completing the vote or poll. The cryptographic voting method minimizes the confidence level to be placed on any of the electronic voting individual party and participants.
179 Citations
40 Claims
-
1. A secure electronic voting method which uses at least a computer device acting as a vote casting platform, a computer server acting as a polling station designed to receive and accumulate ballots in a digital ballot box during a preset voting period of time, a computer device acting as a tally site for the ballots and a computer device acting as a publication site of the results, said polling station, site and publication site being scattered, or, grouped together in a same computer device, each of said polling station, tally site and publication site being provided with computing means and interconnected to each other, when scattered, through at least a communication network comprising cryptographic processes and protocols in order to guarantee a series of specific safety requirements of an electoral process throughout the execution of the method and the electoral process, said method comprising the following steps:
-
a) providing an electoral board operating said tally site with at least a pair of asymmetric keys and allowing access to a private key or a private component of one of said pair of keys, only to a number of members of the electoral board determined by a given threshold or all of the members of said electoral board according to a cryptographic protocol of secret sharing; b) starting a process of acceptance of the votes at the polling station; c) each voter casting a vote electronically through a set of programs acting as a voter agent and using at least one vote casting platform, the vote casting step comprising sub-steps of; the voter making a voter choice, the voter generating a unique ballot identifier that is a pseudo random number to identify each vote cast without probable repetitions thereby identifying each of the vote by means of selecting a value for the unique ballot identifier within a predetermined range, the voter obtaining a voting receipt which provides validity at least to said unique ballot identifier for said electoral process and which verifies the results of the voting without disclosing content of the voter choice, the voter constructing a digital envelope protecting voter'"'"'s privacy by using a public component of said at least one pair of asymmetric keys of the electoral board, said digital envelope containing at least the voter choice, after or before said sub-steps, carrying out a voter authentication proof, and generating a proof of delivery of said digital envelope in the polling station which is transmitted to the voter agent as a voting voucher of having cast the vote for each voter, fully separate from non-coded voter choice; d) ending said process of ballots acceptance at said polling station; e) the members of the electoral board collaborating so that they have access to said at least one pair of asymmetric keys including the private key or said private component and using said private component to have access to the content of the digital envelope; and f) counting and tabulating the voter choice of each voter and publishing the results at the publication site and allowing said voter to verify said results by using said voting receipt without disclosing the voter choice through accessing the results published on the publication site, which contain the voter'"'"'s unique ballot identifier, carrying out a search of the unique ballot identifier and allowing the voter to file a claim supported on said voting receipt and said voting voucher in the event of lack of the unique ballot identifier in the results published, without disclosing the voter choice. - View Dependent Claims (3, 4, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40)
-
-
2. A computer program which can be directly loaded in the internal memory of a digital computer and comprises parts of computer program codes that are readable by a computer system to carry out a vote casting process operation in which each voter casts a vote electronically through a set of programs acting as a voter agent and using at least one computer device acting as a vote casting platform, comprising sub-steps of:
- the voter making a voter choice, the voter generating a unique ballot identifier, the voter obtaining a voting receipt which provides validity at least to said unique ballot identifier for said electoral process and which verifies the results of the voting process without disclosing content of the voter choice, the voter constructing a digital envelope protecting voter'"'"'s privacy by using a public component of at least one pair of asymmetric keys of an electoral board, said digital envelope containing at least the voter choice, after or before said sub-steps, carrying out a voter authentication proof, generating a proof of delivery of said digital envelope in a computer server acting as a polling station which is transmitted to the voter agent as a voting voucher of having cast the vote for each voter, fully separate from non-coded voter choice;
wherein said program also comprises parts of computer program codes that are readable by a computer system to carry out a vote verification process operation that allows said voter to verify the voter'"'"'s vote by accessing the results published on a computer device acting as a publication site, which contain the voter'"'"'s unique ballot identifier, carrying out a search of the unique ballot identifier and allowing the voter to file a claim supported on said voting receipt and said voting voucher in the event of lack of the unique ballot identifier in the results published, without disclosing the voter choice. - View Dependent Claims (5)
- the voter making a voter choice, the voter generating a unique ballot identifier, the voter obtaining a voting receipt which provides validity at least to said unique ballot identifier for said electoral process and which verifies the results of the voting process without disclosing content of the voter choice, the voter constructing a digital envelope protecting voter'"'"'s privacy by using a public component of at least one pair of asymmetric keys of an electoral board, said digital envelope containing at least the voter choice, after or before said sub-steps, carrying out a voter authentication proof, generating a proof of delivery of said digital envelope in a computer server acting as a polling station which is transmitted to the voter agent as a voting voucher of having cast the vote for each voter, fully separate from non-coded voter choice;
Specification