Distributed ElGamal à la Pedersen - Application to Helios
Distributed ElGamal à la Pedersen - Application to Helios. Véronique Cortier, David Galindo, Stéphane Glondu, and Malika Izabachene. In Workshop on Privacy in the Electronic Society (WPES 2013), Berlin, Germany, 2013.
Download
Abstract
Real-world elections often require threshold cryptosystems so that any t out of l trustees can proceed to tallying. This is required to protect the confidentiality of the voters' votes against curious authorities (at least t+1 trustees must collude to learn individual votes) as well as to increase the robustness of the election (in case some trustees become unavailable, t+1 trustees suffice to compute the election result). We describe a fully distributed (with no dealer) threshold cryptosystem suitable for the Helios voting system (in particular, suitable to partial decryption), and prove it secure under the Decisional Diffie-Hellman assumption. Secondly, we propose a fully distributed variant of Helios, that allows for arbitrary threshold parameters l,t, together with a proof of ballot privacy when used for suffrage elections. Our modification of Helios can be seen as revision of the seminal multi-authority election system from Cramer, Gennaro and Schoenmakers, upon which the original Helios system is based. As such, our work implies, to our knowledge, the first formal proof of ballot privacy for the scheme by Cramer et al. Thirdly, we provide the first open-source implementation of Helios with a fully distributed key generation setup.
BibTeX
@InProceedings{wpes2013, author = {V\'eronique Cortier and David Galindo and St\'ephane Glondu and Malika Izabachene}, title = {{Distributed ElGamal \`a la Pedersen - Application to Helios}}, OPTcrossref = {}, OPTkey = {}, booktitle = {Workshop on Privacy in the Electronic Society (WPES 2013)}, OPTpages = {}, year = {2013}, OPTeditor = {}, OPTvolume = {}, OPTnumber = {}, OPTseries = {}, address = {Berlin, Germany}, OPTmonth = {}, OPTorganization = {}, OPTpublisher = {}, OPTnote = {}, OPTannote = {}, abstract = {Real-world elections often require threshold cryptosystems so that any t out of l trustees can proceed to tallying. This is required to protect the confidentiality of the voters' votes against curious authorities (at least t+1 trustees must collude to learn individual votes) as well as to increase the robustness of the election (in case some trustees become unavailable, t+1 trustees suffice to compute the election result). We describe a fully distributed (with no dealer) threshold cryptosystem suitable for the Helios voting system (in particular, suitable to partial decryption), and prove it secure under the Decisional Diffie-Hellman assumption. Secondly, we propose a fully distributed variant of Helios, that allows for arbitrary threshold parameters l,t, together with a proof of ballot privacy when used for suffrage elections. Our modification of Helios can be seen as revision of the seminal multi-authority election system from Cramer, Gennaro and Schoenmakers, upon which the original Helios system is based. As such, our work implies, to our knowledge, the first formal proof of ballot privacy for the scheme by Cramer et al. Thirdly, we provide the first open-source implementation of Helios with a fully distributed key generation setup.}, DOI = {10.1145/2517840.2517852}, }