TY - GEN
T1 - New Standards for E-Voting Systems
T2 - 2nd Workshop on Coordination of Decentralized Finance, CoDecFin 2021, 1st Workshop on Decentralized Finance, DeFi 2021, 6th Workshop on Advances in Secure Electronic Voting, VOTING 2021, and 5th Workshop on Trusted Smart Contracts, WTSC 2021, held in conjunction with the 25th International Conference on Financial Cryptography and Data Security, FC 2021
AU - Haines, Thomas
AU - Roenne, Peter
N1 - Publisher Copyright:
© 2021, International Financial Cryptography Association.
PY - 2021
Y1 - 2021
N2 - There is a difference between a system having no known attacks and the system being secure—as cryptographers know all too well. Once we begin talking about the implementations of systems this issue becomes even more prominent since the amount of material which needs to be scrutinised skyrockets. Historically, lack of transparency and low standards for e-voting system implementations have resulted in a culture where open source code is seen as a gold standard; however, this ignores the issue of the comprehensibility of that code. In this work we make concrete empirical recommendations based on our, and others, experiences and findings from examining the source code of e-voting systems. We highlight that any solution used for significant elections should be well designed, carefully analysed, deftly built, accurately documented and expertly maintained. Until e-voting system implementations are clear, comprehensible, and open to public scrutiny security standards are unlikely to improve.
AB - There is a difference between a system having no known attacks and the system being secure—as cryptographers know all too well. Once we begin talking about the implementations of systems this issue becomes even more prominent since the amount of material which needs to be scrutinised skyrockets. Historically, lack of transparency and low standards for e-voting system implementations have resulted in a culture where open source code is seen as a gold standard; however, this ignores the issue of the comprehensibility of that code. In this work we make concrete empirical recommendations based on our, and others, experiences and findings from examining the source code of e-voting systems. We highlight that any solution used for significant elections should be well designed, carefully analysed, deftly built, accurately documented and expertly maintained. Until e-voting system implementations are clear, comprehensible, and open to public scrutiny security standards are unlikely to improve.
KW - Implementation
KW - Standards
KW - Voting
UR - http://www.scopus.com/inward/record.url?scp=85115837711&partnerID=8YFLogxK
U2 - 10.1007/978-3-662-63958-0_24
DO - 10.1007/978-3-662-63958-0_24
M3 - Conference contribution
SN - 9783662639573
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 279
EP - 289
BT - Financial Cryptography and Data Security. FC 2021 International Workshops - CoDecFin, DeFi, VOTING, and WTSC, Revised Selected Papers
A2 - Bernhard, Matthew
A2 - Bracciali, Andrea
A2 - Gudgeon, Lewis
A2 - Haines, Thomas
A2 - Klages-Mundt, Ariah
A2 - Matsuo, Shin'ichiro
A2 - Perez, Daniel
A2 - Sala, Massimiliano
A2 - Werner, Sam
PB - Springer Science and Business Media Deutschland GmbH
Y2 - 5 March 2021 through 5 March 2021
ER -