MIT Tech Review asked me for a general comment on web authentication for their article covering new technology by Delfigo. There wasn’t enough time to look in depth at Delfigo’s technology, so my comments were about multi-factor authentication in general, and whether the additional factors are easily phishable. In other words, it’s interesting if authentication looks at more than just your password, but if it’s just as easy to trick a user into communicating the extra information and replaying it against the authentication server, then it may not be all that useful. According to the Tech Review article, Delfigo looks … Continue reading Multi-Factor, maybe, but is it really harder to phish?
An election just wrapped up a few hours hours ago [public radio, le soir, RTL info]. The encrypted votes are stored in a redundant database, tied to each voter’s identifier, signed by the voting system, and available to all election participants for auditing. Each voter has a receipt of their encrypted vote they can compare to this database. In other words, the list of cast ballots is frozen, everyone can see it, and attempts to tamper with that list of cast ballots are detectable. And yet, no one knows the results. Not me, the creator of the system. Not the … Continue reading The Beautiful Magic of Cryptography
Richard Drury recently completed his documentary “Challenges for Democracy”, which covers a number of voting issues. His work is available for sale, so if you support this kind of in-depth reporting, please go buy his DVD! Richard has graciously agreed to release my segment on Open-Audit Elections under a Creative Commons license. Here it is, and I have to say that Richard has done a fantastic job of capturing the essence of open-audit voting. I only wish he’d given Andy Neff a bit more camera time, since Andy really knows how to capture some of the interesting complexity of the … Continue reading Open-Audit Elections featured in Documentary
T’is election season, so the press is covering voting. Cyrus again, this time on Salon, and with a fantastic article, and not just because it mentions Helios. Continue reading Salon on Voting
The Economist covers voting with cryptography, including some of my work. Good to see folks like the Economist paying attention… although the article misses the big point. Voting with cryptography is not about making your vote more secret. It’s about making your vote more verifiable. For those who advocate traditional paper ballots, the point is that open-audit elections are significantly more verifiable. There’s a reason for the extra complexity, promised. But since I spent 3 hours talking to Cyrus, the reporter, I blame myself as much as anyone for not getting that important point across. Continue reading The Economist Covers Voting
Scratch & Vote is in the press thanks to Peter Weiss of Science News, who gives a very good overview of election technology issues. I’ve also posted the slides and latest paper for this work, which is joint with Ronald Rivest. Continue reading Scratch & Vote in the Press again!
MIT Technology Review just published a description of Scratch & Vote, the simple paper-based cryptographic voting scheme that Ron Rivest and I devised. It’s great to see growing interest in cryptographic voting from the scientific press, especially since the debate has focused far too much on “paper or no paper,” when the real question should be “verified, or not verified.” Kudos to Duncan Graham-Rowe for extracting a concise and clear overview of the system from many long technical discussions with me. Cryptographic voting schemes like Scratch & Vote offer a far superior method of verification: you the voter, can check … Continue reading Scratch & Vote in the Press