When are three voters enough for privacy properties?

Myrto Arapinis 1 Véronique Cortier 2 Steve Kremer 2
2 PESTO - Proof techniques for security protocols
Inria Nancy - Grand Est, LORIA - FM - Department of Formal Methods
Abstract : Protocols for secure electronic voting are of increasing societal importance. Proving rigorously their security is more challenging than many other protocols, which aim at authentication or key exchange. One of the reasons is that they need to be secure for an arbitrary number of malicious voters. In this paper we identify a class of voting protocols for which only a small number of agents needs to be considered: if there is an attack on vote privacy then there is also an attack that involves at most 3 voters (2 honest voters and 1 dishonest voter). In the case where the protocol allows a voter to cast several votes and counts, e.g., only the last one, we also reduce the number of ballots required for an attack to 10, and under some additional hypotheses, 7 ballots. Our results are formalised and proven in a symbolic model based on the applied pi calculus. We illustrate the applicability of our results on several case studies, including different versions of Helios and Prêt-` a-Voter, as well as the JCJ protocol. For some of these protocols we can use the ProVerif tool to provide the first formal proofs of privacy for an unbounded number of voters.
Type de document :
Communication dans un congrès
21st European Symposium on Research in Computer Security, 2016, Heraklion, Crete, Greece. Springer, 2016, 21st European Symposium on Research in Computer Security
Liste complète des métadonnées

Littérature citée [31 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01351398
Contributeur : Steve Kremer <>
Soumis le : mercredi 3 août 2016 - 16:13:07
Dernière modification le : jeudi 11 janvier 2018 - 06:27:43
Document(s) archivé(s) le : mardi 8 novembre 2016 - 20:45:06

Fichier

main.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : hal-01351398, version 1

Collections

Citation

Myrto Arapinis, Véronique Cortier, Steve Kremer. When are three voters enough for privacy properties?. 21st European Symposium on Research in Computer Security, 2016, Heraklion, Crete, Greece. Springer, 2016, 21st European Symposium on Research in Computer Security. 〈hal-01351398〉

Partager

Métriques

Consultations de la notice

391

Téléchargements de fichiers

125