TY - GEN
T1 - Cryptographic vote-stealing attacks against a partially homomorphic e-voting architecture
AU - Tsoutsos, Nektarios Georgios
AU - Maniatakos, Michail
N1 - Publisher Copyright:
© 2016 IEEE.
PY - 2016/11/22
Y1 - 2016/11/22
N2 - Electronic voting plays an increasingly important role in the democratic process in the US and other countries. As technology continues to advance, the security and privacy requirements of contemporary voting platforms become even more strict, and several voting protocols have been proposed. At the same time, homomorphic encryption offers powerful primitives that allow provable guarantees of security. In this paper, we analyze the security of a partially homomorphic electronic voting architecture and describe a vote-stealing attack by exploiting a length-extension vulnerability in the message authentication component of the system. Our attack scales with the public key parameters of the homomorphic encryption scheme and does not require any exhaustive search for secret keys or initialization vectors.
AB - Electronic voting plays an increasingly important role in the democratic process in the US and other countries. As technology continues to advance, the security and privacy requirements of contemporary voting platforms become even more strict, and several voting protocols have been proposed. At the same time, homomorphic encryption offers powerful primitives that allow provable guarantees of security. In this paper, we analyze the security of a partially homomorphic electronic voting architecture and describe a vote-stealing attack by exploiting a length-extension vulnerability in the message authentication component of the system. Our attack scales with the public key parameters of the homomorphic encryption scheme and does not require any exhaustive search for secret keys or initialization vectors.
UR - http://www.scopus.com/inward/record.url?scp=85006757140&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85006757140&partnerID=8YFLogxK
U2 - 10.1109/ICCD.2016.7753275
DO - 10.1109/ICCD.2016.7753275
M3 - Conference contribution
AN - SCOPUS:85006757140
T3 - Proceedings of the 34th IEEE International Conference on Computer Design, ICCD 2016
SP - 157
EP - 160
BT - Proceedings of the 34th IEEE International Conference on Computer Design, ICCD 2016
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 34th IEEE International Conference on Computer Design, ICCD 2016
Y2 - 2 October 2016 through 5 October 2016
ER -