BVOT: Self-Tallying Boardroom Voting with Oblivious Transfer

Thumbnail Image

Files

2010.02421.pdf (379.11 KB)

Links to Files

https://www.tandfonline.com/doi/abs/10.1080/19393555.2022.2138798?journalCode=uiss20

Permanent Link

http://hdl.handle.net/11603/20133
 https://doi.org/10.1080/19393555.2022.2138798

Collections

UMBC Computer Science and Electrical Engineering Department
UMBC Faculty Collection
UMBC Student Collection

Author/Creator

Author/Creator ORCID

https://orcid.org/0000-0002-3966-3616
 https://orcid.org/0000-0003-1130-4678

Date

2020-11-02

Type of Work

journal articles
preprints
Text

Department

Program

Citation of Original Publication

Farid Javani & Alan T. Sherman (2022) BVOT: self-tallying boardroom voting with oblivious transfer, Information Security Journal: A Global Perspective, DOI: 10.1080/19393555.2022.2138798

Rights

This is the submitted manuscript of an article published by Taylor & Francis in Information Security Journal: A Global Perspective on 02 Nov 2022, available online: http://www.tandfonline.com/10.1080/19393555.2022.2138798.

Subjects

UMBC Cyber Defense Lab

Abstract

A boardroom election is an election with a small number of voters carried out with public communications. We present BVOT, a self-tallying boardroom voting protocol with ballot secrecy, fairness (no tally information is available before the polls close), and dispute-freeness (voters can observe that all voters correctly followed the protocol). BVOT works by using a multiparty threshold homomorphic encryption system in which each candidate is associated with a masked unique prime. Each voter engages in an oblivious transfer with an untrusted distributor: the voter selects the index of a prime associated with a candidate and receives the selected prime in masked form. The voter then casts their vote by encrypting their masked prime and broadcasting it to everyone. The distributor does not learn the voter's choice, and no one learns the mapping between primes and candidates until the audit phase. By hiding the mapping between primes and candidates, BVOT provides voters with insufficient information to carry out effective cheating. The threshold feature prevents anyone from computing any partial tally---until everyone has voted. Multiplying all votes, their decryption shares, and the unmasking factor yields a product of the primes each raised to the number of votes received. In contrast to some existing boardroom voting protocols, BVOT does not rely on any zero-knowledge proof; instead, it uses oblivious transfer to assure ballot secrecy and correct vote casting. Also, BVOT can handle multiple candidates in one election. BVOT prevents cheating by hiding crucial information: an attempt to increase the tally of one candidate might increase the tally of another candidate. After all votes are cast, any party can tally the votes.