The Sequent Voting Platform is an open-source E2EV internet voting system currently used in private organisations and non-legally binding elections of public organisations. The system employs standard cryptographic techniques following in the steps of well-established voting schemes proposed in the academic literature.

We demo core cryptographic components that are being developed for the next generation of Sequent’s platform. The main novelty demonstrated is the execution of (heavyweight) cryptographic operations in the browser, in a performant way. Potential applications of this technique are listed and possible benefits for security, privacy and verifiability are suggested.

Blog

E-Voting Wasm Cryptography

Blog, Technology

Add a header to begin generating the table of contents

Introduction

Like many other systems proposed in the literature, the closest ancestor in Sequent’s genealogy tree is Helios[1] in its original mixnet variant. The most significant departures from that Helios design are the use of a threshold distributed key generation mechanism, described in Pedersen[2] and featured in CGS[3] and Distributed Helios[4], and the use of a Terelius-Wikstrom[5] style mixnet rather than the Sako-Kilian[6] one. Other systems with which Sequent shares techniques are Wombat[7] and CHVote[8].

Research and development into Sequent’s next generation system is currently underway. Part of this effort has been centred around the use of Rust[9] as a core technology. One of the interesting aspects of this technology is its ability to target WebAssembly[10] through the LLVM[11] toolchain.

Internet voting systems require the use of a client component with which voters select and encrypt their votes, typically in a browser. In the past, these components have been written in Javascript or related languages. These components replicate some of the cryptography (for example, ElGamal encryption) that later processes votes in the backend. The initial motivating factor for our investigation of Rust’s WebAssembly target was the possibility of merging this overlapping cryptography into a single unified codebase. But there are further interesting possibilities.

Applications

Vote casting

Voting client software can reuse common cryptography packaged in a library compiled to Wasm, eliminating duplication.

Suggested benefits:

Security: A unified code base reduces the likelihood of mismatches between client and server cryptography, and reduces the attack surface. The amount of code that needs to be audited is also reduced.

Performance: Higher performance compared to Javascript implementations.

Ballot verification

Ballot verifiers implementing the Benaloh challenge can reuse common cryptography packaged in a library compiled to Wasm, eliminating duplication.

Suggested benefits: As above.

Election verification

Election verification, usually carried out by specialised software that must be downloaded and configured, can be executed in the browser with no installation.

Suggested benefits:

Verifiability: Making election verification procedures significantly more usable can achieve higher rates of exercised verification, moving the “universal” part of universal verifiability closer to practice.

Note that achieving performant implementations in this use case is particularly difficult as election verification involves compute intensive operations that a priori seem impossible in a browser. We have not listed performance as a benefit here as we are comparing with non-browser, native implementations; in other words, performance is a must-have rather than a benefit for this use case.

Trustee protocols

Running full trustee nodes on the browser with reduced deployment, administration and training costs.

Suggested benefits:

Real world experience has taught us that one of the barriers to running mixnet-based elections with a larger number of independent trustees is the cost that these trustees must incur in terms of deployment, administration and training. This is especially true for elections with fewer resources in human capital and infrastructure. As a result, it is not always easy to procure independent trustees to assume this important responsibility.

Any objective that is presumably achieved through distribution into independent trustees could be achieved to a greater degree when some of the costs of this distribution are reduced. For example:

Privacy: Ballot secrecy safeguards achieved through the distribution of private key material and mixing permutations would be achieved to a higher degree if more trustees participate.
Security: Correctness safeguards achieved through distribution of mixing and tallying would be achieved to a higher degree if more trustees participate.

See previous section regarding performance as a benefit.

Demonstration

We choose to demonstrate the most complex scenario described above, as it’s a proof of concept that also validates the rest of the comparatively simpler use cases. We show how trustee operations, both shuffling and decryption, can be run in the browser. We will also show that the resulting performance numbers fall within the threshold of practical applicability in small to medium elections.

As stated previously, achieving performant mixing in the browser is a particularly difficult task: this requires cutting edge technology that is currently experimental. Additionally, the full security implications of applying these techniques have to be analysed in detail.

You can access the demo directly from your web browser here [12] ** and you can also see a video of how the demo performs running in the browser below:

Note

This document was presented in its original form for the E-Vote-ID 2022 conference as a short paper for the Demo Session. You can find this short paper in the E-Vote-ID 2022 proceedings [13] at page 175.

References

[1] Helios: Web-based Open-Audit Voting
[2] Non-interactive and information-theoretic secure verifiable secret sharing
[3] A secure and optimally efficient multi-authority election scheme
[4] Distributed ElGamal à la Pedersen: Application to Helios
[5] Proofs of Restricted Shuffles
[6] Receipt-free mix-type voting scheme — a practical solution to the implementation of a voting booth
[7a] Wombat Voting
[7b] An Implementation of Dual (Paper and Cryptographic) Voting System
[8] CHVote Protocol Specification
[9] https://www.rust-lang.org/
[10] https://webassembly.org/
[11] https://llvm.org/
[12] https://strand_github_pages.sequentech.io/demo.html
[13] https://dspace.ut.ee/handle/10062/84432 (page 175)

Tagged blog

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

E-Voting Wasm Cryptography

Introduction

Applications

Vote casting

Ballot verification

Election verification

Trustee protocols

Demonstration

Note

References

Apply