Civitas and the Real World: Problems and Solutions from a Practical Point of View

In the past, researchers have proposed manyvoting schemes that satisfy a wide range of security properties. These schemes often rely on strong trust assumptionsand do not consider the voter sufficiently, which currentlyrenders them inappropriate for usage in real-world elections. In this paper we focus on the voting scheme Civitas, whichfeatures provably strong security properties, such as end-toend verifiability and coercion-resistance. We identify the strongtrust assumptions and usability weaknesses of the scheme, which currently prevent its usage in real-world elections. Basedon these results, we show how most of these strong trustassumptions can be implemented, e.g., by using eID cards inorder to overcome Civitas' most critical usability problem, namely credential handling. Together with a voter-processdescription and a user-interface, we pave the way for the useof Civitas in real-world elections.

[1]  Johannes A. Buchmann,et al.  On Coercion-Resistant Electronic Elections with Linear Work , 2007, The Second International Conference on Availability, Reliability and Security (ARES'07).

[2]  Josh Benaloh,et al.  Simple Verifiable Elections , 2006, EVT.

[3]  Ralf Küsters,et al.  An Epistemic Approach to Coercion-Resistance for Electronic Voting Protocols , 2009, 2009 30th IEEE Symposium on Security and Privacy.

[4]  Melanie Volkamer,et al.  User study of the improved Helios voting system interfaces , 2011, 2011 1st Workshop on Socio-Technical Aspects in Security and Trust (STAST).

[5]  Markus Jakobsson,et al.  Coercion-resistant electronic elections , 2005, WPES '05.

[6]  Mark Ryan,et al.  Trivitas: Voters Directly Verifying Votes , 2011, VoteID.

[7]  João Mendes Trusted Civitas: Client Trust in CIVITAS Electronic Voting Protocol , 2011 .

[8]  Senator,et al.  The ThreeBallot Voting System , 2006 .

[9]  Melanie Volkamer,et al.  Robust electronic voting: Introducing robustness in Civitas , 2011, 2011 International Workshop on Requirements Engineering for Electronic Voting Systems.

[10]  Mark Ryan,et al.  Towards Automatic Analysis of Election Verifiability Properties , 2010, ARSPA-WITS.

[11]  Michael R. Clarkson,et al.  Civitas: Toward a Secure Voting System , 2008, 2008 IEEE Symposium on Security and Privacy (sp 2008).