In the case of web login design patterns, the issue is whether web developers should get users accustomed to a mode of interaction where the user places blind trust in the specific web site they’re interacting with at the moment. When Facebook asks for my hotmail password, I have no way to know, no matter how much crypto/security I know, whether they will use this password mischievously. I have to trust them.

In the case of e2e voting systems – which, crucially, I and others prefer to call “open-audit voting systems” – *anyone* with crypto knowledge, not just the protocol designer or voting machine vendor, can verify the entire election.

That’s a crucial difference. It’s the difference between privilege (only someone on the inside can verify) and knowledge (anyone willing to put in the time to learn can verify). Bad web design patterns are about privilege, which is highly controlled. e2e voting systems are about knowledge, which is free to all.

I’ll write more about this soon.

http://www.bbvforums.org/forums/messages/8/54625.html?1192169495

In particular, I want to call your attention to the a post by Catherine Ansbro (towards the bottom - Friday, October 12, 2007 - 12:58 pm) that criticizes e2e verifiable systems because they are difficult for most people to understand and end up teaching people the lesson ‘trust the cryptographer elite’.

As a creator of Scratch & Vote I imagine that you disagree with her, but her point somewhat parallels your point in this post.