Skip to main content

An Assessment of the Security and Transparency Procedural Components of the Estonian Internet Voting System

Nurse, Jason R. C., Agrafiotis, Ioannis, Erola, Arnau, Bada, Maria, Roberts, Taylor, Williams, Meredydd, Goldsmith, Michael, Creese, Sadie (2017) An Assessment of the Security and Transparency Procedural Components of the Estonian Internet Voting System. In: Tryfonas, Theo, ed. Lecture Notes in Computer Science. Human Aspects of Information Security, Privacy and Trust. HAS 2017. 10292. Springer ISBN 978-3-319-58459-1. (doi:10.1007/978-3-319-58460-7_26) (KAR id:67478)

PDF Author's Accepted Manuscript
Language: English
Download (226kB) Preview
[img]
Preview
Official URL
https://doi.org/10.1007/978-3-319-58460-7_26

Abstract

The I-Voting system designed and implemented in Estonia is one of the first nationwide Internet voting systems. Since its creation, it has been met with praise but also with close scrutiny. Concerns regarding security breaches have focused on in-person election observations, code reviews and adversarial testing on system components. These concerns have led many to conclude that there are various ways in which insider threats and sophisticated external attacks may compromise the integrity of the system and thus the voting process. In this paper, we examine the procedural components of the I-Voting system, with an emphasis on the controls related to procedural security mechanisms, and on system-transparency measures. Through an approach grounded in primary and secondary data sources, including interviews with key Estonian election personnel, we conduct an initial investigation into the extent to which the present controls mitigate the real security risks faced by the system. The experience and insight we present in this paper will be useful both in the context of the I-Voting system, and potentially more broadly in other voting systems.

Item Type: Conference or workshop item (Proceeding)
DOI/Identification number: 10.1007/978-3-319-58460-7_26
Uncontrolled keywords: E-voting, Cybersecurity, Transparency, Procedural controls, Human factors, Practical experiences
Subjects: Q Science
T Technology
Divisions: Faculties > Sciences > School of Computing > Security Group
Faculties > Social Sciences > School of Politics and International Relations
Depositing User: Jason Nurse
Date Deposited: 03 Jul 2018 15:34 UTC
Last Modified: 13 Jan 2020 13:46 UTC
Resource URI: https://kar.kent.ac.uk/id/eprint/67478 (The current URI for this page, for reference purposes)
Nurse, Jason R. C.: https://orcid.org/0000-0003-4118-1680
  • Depositors only (login required):

Downloads

Downloads per month over past year