Position innerhalb des Seitenbaumes

Start
Team
Huber, Nicolas

Nicolas Huber

Herr M.Sc.

Ph.D. Student
Institute of Information Security

Kontakt

+49 711 685 88356
E-Mail

Universitaetsstrasse 38
70569 Stuttgart
Germany
Raum: 2.454

Publikationen

2024
1. Nicolas Huber, Ralf Küsters, Julian Liedtke, und Daniel Rausch, „ZK-SNARKs for Ballot Validity: A Feasibility Study“, in Ninth International Joint Conference on Electronic Voting (E-Vote-ID 2024), 2024, Bd. 15014, S. 107--123.
  Zusammenfassung
  Electronic voting (e-voting) systems have become more prevalent in recent years, but security concerns have also increased, especially regarding the privacy and verifiability of votes. As an essential ingredient for constructing secure e-voting systems, designers often employ zero-knowledge proofs (ZKPs), allowing voters to prove their votes are valid without revealing them. Invalid votes can then be discarded to protect verifiability without compromising the privacy of valid votes. General purpose zero-knowledge proofs (GPZKPs) such as ZK-SNARKs can be used to prove arbitrary statements, including ballot validity. While a specialized ZKP that is constructed only for a specific election type/voting method, ballot format, and encryption/commitment scheme can be more efficient than a GPZKP, the flexibility offered by GPZKPs would allow for quickly constructing e-voting systems for new voting methods and new ballot formats. So far, however, the viability of GPZKPs for showing ballot validity for various ballot formats, in particular, whether and in how far they are practical for voters to compute, has only recently been investigated for ballots that are computed as Pedersen vector commitments in an ACM CCS 2022 paper by Huber et al. Here, we continue this line of research by performing a feasibility study of GPZKPs for the more common case of ballots encrypted via Exponential ElGamal encryption. Specifically, building on the work by Huber et al., we describe how the Groth16 ZK-SNARK can be instantiated to show ballot validity for arbitrary election types and ballot formats encrypted via Exponential ElGamal. As our main contribution, we implement, benchmark, and compare several such instances for a wide range of voting methods and ballot formats. Our benchmarks not only establish a basis for protocol designers to make an educated choice for or against such a GPZKP, but also show that GPZKPs are actually viable for showing ballot validity in voting systems using Exponential ElGamal.
  BibTeX
  @inproceedings{HuberKuestersLiedtkeRausch-EVOTEID-2024, abstract = {Electronic voting (e-voting) systems have become more prevalent in recent years, but security concerns have also increased, especially regarding the privacy and verifiability of votes. As an essential ingredient for constructing secure e-voting systems, designers often employ zero-knowledge proofs (ZKPs), allowing voters to prove their votes are valid without revealing them. Invalid votes can then be discarded to protect verifiability without compromising the privacy of valid votes. General purpose zero-knowledge proofs (GPZKPs) such as ZK-SNARKs can be used to prove arbitrary statements, including ballot validity. While a specialized ZKP that is constructed only for a specific election type/voting method, ballot format, and encryption/commitment scheme can be more efficient than a GPZKP, the flexibility offered by GPZKPs would allow for quickly constructing e-voting systems for new voting methods and new ballot formats. So far, however, the viability of GPZKPs for showing ballot validity for various ballot formats, in particular, whether and in how far they are practical for voters to compute, has only recently been investigated for ballots that are computed as Pedersen vector commitments in an ACM CCS 2022 paper by Huber et al. Here, we continue this line of research by performing a feasibility study of GPZKPs for the more common case of ballots encrypted via Exponential ElGamal encryption. Specifically, building on the work by Huber et al., we describe how the Groth16 ZK-SNARK can be instantiated to show ballot validity for arbitrary election types and ballot formats encrypted via Exponential ElGamal. As our main contribution, we implement, benchmark, and compare several such instances for a wide range of voting methods and ballot formats. Our benchmarks not only establish a basis for protocol designers to make an educated choice for or against such a GPZKP, but also show that GPZKPs are actually viable for showing ballot validity in voting systems using Exponential ElGamal.}, author = {Huber, Nicolas and K{\"{u}}sters, Ralf and Liedtke, Julian and Rausch, Daniel}, booktitle = {{{Ninth International Joint Conference on Electronic Voting (E-Vote-ID 2024)}}}, doi = {10.1007/978-3-031-72244-8_7}, editor = {Duenas-Cid, David and Roenne, Peter and Volkamer, Melanie and Budurushi, Jurlind and Blom, Michelle and Rodr{\'i}guez-P{\'e}rez, Adri{\`a} and Spycher-Krivonosova, Iuliia and Castell{\`a} Roca, Jordi and Barrat Esteve, Jordi}, pages = {107--123}, publisher = {Springer}, series = {Lecture Notes in Computer Science}, title = {{ZK-SNARKs for Ballot Validity: A Feasibility Study}}, url = {https://publ.sec.uni-stuttgart.de/huberkuestersliedtkerausch-evoteid-2024.pdf}, volume = 15014, year = 2024 }
  Link
  https://publ.sec.uni-stuttgart.de/huberkuestersliedtkerausch-evoteid-2024.pdf
2023
1. Johannes Reinhart, Bastian Lüttig, Nicolas Huber, Julian Liedtke, und Björn Annighöfer, „Verifiable Computing in Avionics for Assuring Computer-Integrity without Replication“, in 2023 IEEE/AIAA 42nd Digital Avionics Systems Conference (DASC), 2023, S. 1--10.
  Zusammenfassung
  Safety-critical digital systems such as Fly-by-wire control have demanding integrity and availability requirements which significantly exceed the occurrence rates of random hardware faults observed in digital computers. As a result, system designers need to employ reliable fault detection and mitigation techniques. Until now, the only method to achieve sufficiently reliable fault detection for systems that can cause hazardous or catastrophic events, is to replicate computer lanes and detect faults by comparing outputs. However, this comes with a large overhead in development cost, computing resources and additional requirements towards the application. We propose to apply a novel cryptographic technique to reliably detect faults and thereby assure integrity of avionics computers: Succinct Non-Interactive Arguments of Knowledge allow components to quickly verify computations without repeating the computation. We present a novel concept for building high-integrity avionics systems and set up a laboratory demonstrator for a simplified pitch control system. Our major results include the successful demonstration of the first self-proving and self-verifying cyber-physical system in a laboratory environment.
  BibTeX
  @inproceedings{ReinhartLuettigHuberLiedtkeAnnighoefer-DASC-2023, abstract = {Safety-critical digital systems such as Fly-by-wire control have demanding integrity and availability requirements which significantly exceed the occurrence rates of random hardware faults observed in digital computers. As a result, system designers need to employ reliable fault detection and mitigation techniques. Until now, the only method to achieve sufficiently reliable fault detection for systems that can cause hazardous or catastrophic events, is to replicate computer lanes and detect faults by comparing outputs. However, this comes with a large overhead in development cost, computing resources and additional requirements towards the application. We propose to apply a novel cryptographic technique to reliably detect faults and thereby assure integrity of avionics computers: Succinct Non-Interactive Arguments of Knowledge allow components to quickly verify computations without repeating the computation. We present a novel concept for building high-integrity avionics systems and set up a laboratory demonstrator for a simplified pitch control system. Our major results include the successful demonstration of the first self-proving and self-verifying cyber-physical system in a laboratory environment.}, author = {Reinhart, Johannes and L{\"{u}}ttig, Bastian and Huber, Nicolas and Liedtke, Julian and Annigh{\"{o}}fer, Bj{\"{o}}rn}, booktitle = {{2023 IEEE/AIAA 42nd Digital Avionics Systems Conference (DASC)}}, doi = {10.1109/DASC58513.2023.10311290}, pages = {1--10}, publisher = {IEEE}, title = {{Verifiable Computing in Avionics for Assuring Computer-Integrity without Replication}}, url = {https://publ.sec.uni-stuttgart.de/reinhartluettighuberliedtkeannighoefer-dasc-2023.pdf}, year = 2023 }
  Link
  https://publ.sec.uni-stuttgart.de/reinhartluettighuberliedtkeannighoefer-dasc-2023.pdf
2. Carmen Wabartha, Julian Liedtke, Nicolas Huber, Daniel Rausch, und Ralf Küsters, „Fully Tally-Hiding Verifiable E-Voting for Real-World Elections with Seat-Allocations“, in 28th European Symposium on Research in Computer Security (ESORICS 2023), 2023, Bd. 14346, S. 209--228.
  Zusammenfassung
  Modern e-voting systems provide what is called verifiability, i.e., voters are able to check that their votes have actually been counted despite potentially malicious servers and voting authorities. Some of these systems, called tally-hiding systems, provide increased privacy by revealing only the actual election result, e.g., the winner of the election, but no further information that is supposed to be kept secret. However, due to these very strong privacy guarantees, supporting complex voting methods at a real-world scale has proven to be very challenging for tally-hiding systems. A widespread class of elections, and at the same time, one of the most involved ones is parliamentary election with party-based seat-allocation. These elections are performed for millions of voters, dozens of parties, and hundreds of individual candidates competing for seats; they also use very sophisticated multi-step algorithms to compute the final assignment of seats to candidates based on, e.g., party lists, hundreds of electoral constituencies, possibly additional votes for individual candidates, overhang seats, and special exceptions for minorities. So far, it has not been investigated whether and in how far such elections can be performed in a verifiable tally-hiding manner. In this work, we design and implement the first verifiable (fully) tally-hiding e-voting system for an election from this class, namely, for the German parliament (Bundestag). As part of this effort, we propose several new tally-hiding building blocks that are of independent interest. We perform benchmarks based on actual election data, which show, perhaps surprisingly, that our proposed system is practical even at a real-world scale. Our work thus serves as a foundational feasibility study for this class of elections.
  BibTeX
  @inproceedings{WabarthaLiedtkeHuberRauschKuesters-ESORICS-2023, abstract = {Modern e-voting systems provide what is called verifiability, i.e., voters are able to check that their votes have actually been counted despite potentially malicious servers and voting authorities. Some of these systems, called tally-hiding systems, provide increased privacy by revealing only the actual election result, e.g., the winner of the election, but no further information that is supposed to be kept secret. However, due to these very strong privacy guarantees, supporting complex voting methods at a real-world scale has proven to be very challenging for tally-hiding systems. A widespread class of elections, and at the same time, one of the most involved ones is parliamentary election with party-based seat-allocation. These elections are performed for millions of voters, dozens of parties, and hundreds of individual candidates competing for seats; they also use very sophisticated multi-step algorithms to compute the final assignment of seats to candidates based on, e.g., party lists, hundreds of electoral constituencies, possibly additional votes for individual candidates, overhang seats, and special exceptions for minorities. So far, it has not been investigated whether and in how far such elections can be performed in a verifiable tally-hiding manner. In this work, we design and implement the first verifiable (fully) tally-hiding e-voting system for an election from this class, namely, for the German parliament (Bundestag). As part of this effort, we propose several new tally-hiding building blocks that are of independent interest. We perform benchmarks based on actual election data, which show, perhaps surprisingly, that our proposed system is practical even at a real-world scale. Our work thus serves as a foundational feasibility study for this class of elections.}, author = {Wabartha, Carmen and Liedtke, Julian and Huber, Nicolas and Rausch, Daniel and K{\"u}sters, Ralf}, booktitle = {{28th European Symposium on Research in Computer Security (ESORICS 2023)}}, doi = {10.1007/978-3-031-50594-2_11}, pages = {209--228}, publisher = {Springer}, series = {Lecture Notes in Computer Science}, title = {{Fully Tally-Hiding Verifiable E-Voting for Real-World Elections with Seat-Allocations}}, url = {https://publ.sec.uni-stuttgart.de/wabarthaliedtkehuberrauschkuesters-esorics-2023.pdf}, volume = 14346, year = 2023 }
  Link
  https://publ.sec.uni-stuttgart.de/wabarthaliedtkehuberrauschkuesters-esorics-2023.pdf
3. Carmen Wabartha, Julian Liedtke, Nicolas Huber, Daniel Rausch, und Ralf Küsters, „Fully Tally-Hiding Verifiable E-Voting for Real-World Elections with Seat-Allocations“, Cryptology ePrint Archive, Technical Report 2023/1289, 2023.
  Zusammenfassung
  Modern e-voting systems provide what is called verifiability, i.e., voters are able to check that their votes have actually been counted despite potentially malicious servers and voting authorities. Some of these systems, called tally-hiding systems, provide increased privacy by revealing only the actual election result, e.g., the winner of the election, but no further information that is supposed to be kept secret. However, due to these very strong privacy guarantees, supporting complex voting methods at a real-world scale has proven to be very challenging for tally-hiding systems. A widespread class of elections, and at the same time, one of the most involved ones is parliamentary election with party-based seat-allocation. These elections are performed for millions of voters, dozens of parties, and hundreds of individual candidates competing for seats; they also use very sophisticated multi-step algorithms to compute the final assignment of seats to candidates based on, e.g., party lists, hundreds of electoral constituencies, possibly additional votes for individual candidates, overhang seats, and special exceptions for minorities. So far, it has not been investigated whether and in how far such elections can be performed in a verifiable tally-hiding manner. In this work, we design and implement the first verifiable (fully) tally-hiding e-voting system for an election from this class, namely, for the German parliament (Bundestag). As part of this effort, we propose several new tally-hiding building blocks that are of independent interest. We perform benchmarks based on actual election data, which show, perhaps surprisingly, that our proposed system is practical even at a real-world scale. Our work thus serves as a foundational feasibility study for this class of elections.
  BibTeX
  @techreport{WabarthaLiedtkeHuberRauschKuesters-IACR-2023-1289, abstract = {Modern e-voting systems provide what is called verifiability, i.e., voters are able to check that their votes have actually been counted despite potentially malicious servers and voting authorities. Some of these systems, called tally-hiding systems, provide increased privacy by revealing only the actual election result, e.g., the winner of the election, but no further information that is supposed to be kept secret. However, due to these very strong privacy guarantees, supporting complex voting methods at a real-world scale has proven to be very challenging for tally-hiding systems. A widespread class of elections, and at the same time, one of the most involved ones is parliamentary election with party-based seat-allocation. These elections are performed for millions of voters, dozens of parties, and hundreds of individual candidates competing for seats; they also use very sophisticated multi-step algorithms to compute the final assignment of seats to candidates based on, e.g., party lists, hundreds of electoral constituencies, possibly additional votes for individual candidates, overhang seats, and special exceptions for minorities. So far, it has not been investigated whether and in how far such elections can be performed in a verifiable tally-hiding manner. In this work, we design and implement the first verifiable (fully) tally-hiding e-voting system for an election from this class, namely, for the German parliament (Bundestag). As part of this effort, we propose several new tally-hiding building blocks that are of independent interest. We perform benchmarks based on actual election data, which show, perhaps surprisingly, that our proposed system is practical even at a real-world scale. Our work thus serves as a foundational feasibility study for this class of elections.}, author = {Wabartha, Carmen and Liedtke, Julian and Huber, Nicolas and Rausch, Daniel and K{\"u}sters, Ralf}, institution = {Cryptology ePrint Archive}, number = {2023/1289}, title = {{Fully Tally-Hiding Verifiable E-Voting for Real-World Elections with Seat-Allocations}}, type = {Technical Report}, url = {https://publ.sec.uni-stuttgart.de/wabarthaliedtkehuberrauschkuesters-iacr-2023-1289.pdf}, year = 2023 }
  Link
  https://publ.sec.uni-stuttgart.de/wabarthaliedtkehuberrauschkuesters-iacr-2023-1289.pdf
2022
1. Nicolas Huber, Ralf Küsters, Toomas Krips, Julian Liedtke, Johannes Müller, Daniel Rausch, Pascal Reisert, und Andreas Vogt, „Kryvos: Publicly Tally-Hiding Verifiable E-Voting“, in CCS ’22: ACM Conference on Computer and Communications Security, November 7--11, 2022, Los Angeles, USA, 2022, S. 1443--1457.
  Zusammenfassung
  Elections are an important corner stone of democratic processes. In addition to publishing the final result (e.g., the overall winner), elections typically publish the full tally consisting of all (aggregated) individual votes. This causes several issues, including loss of privacy for both voters and election candidates as well as so-called Italian attacks that allow for easily coercing voters. Several e-voting systems have been proposed to address these issues by hiding (parts of) the tally. This property is called tally-hiding. Existing tally-hiding e-voting systems in the literature aim at hiding (part of) the tally from everyone, including voting authorities, while at the same time offering verifiability, an important and standard feature of modern e-voting systems which allows voters and external observers to check that the published election result indeed corresponds to how voters actually voted. In contrast, real elections often follow a different common practice for hiding the tally: the voting authorities internally compute (and learn) the full tally but publish only the final result (e.g., the winner). This practice, which we coin publicly tally-hiding, indeed solves the aforementioned issues for the public, but currently has to sacrifice verifiability due to a lack of practical systems. In this paper, we close this gap. We formalize the common notion of publicly tally-hiding and propose the first provably secure verifiable e-voting system, called Kryvos, which directly targets publicly tally-hiding elections. We instantiate our system for a wide range of both simple and complex voting methods and various result functions. We provide an extensive evaluation which shows that Kryvos is practical and able to handle a large number of candidates, complex voting methods and result functions. Altogether, Kryvos shows that the concept of publicly tally-hiding offers a new trade-off between privacy and efficiency that is different from all previous tally-hiding systems and which allows for a radically new protocol design resulting in a practical e-voting system.
  BibTeX
  @inproceedings{HuberKuestersKripsLiedtkeMuellerRauschReisert-CCS-2022, abstract = {Elections are an important corner stone of democratic processes. In addition to publishing the final result (e.g., the overall winner), elections typically publish the full tally consisting of all (aggregated) individual votes. This causes several issues, including loss of privacy for both voters and election candidates as well as so-called Italian attacks that allow for easily coercing voters. Several e-voting systems have been proposed to address these issues by hiding (parts of) the tally. This property is called \emph{tally-hiding}. Existing tally-hiding e-voting systems in the literature aim at hiding (part of) the tally from everyone, including voting authorities, while at the same time offering verifiability, an important and standard feature of modern e-voting systems which allows voters and external observers to check that the published election result indeed corresponds to how voters actually voted. In contrast, real elections often follow a different common practice for hiding the tally: the voting authorities internally compute (and learn) the full tally but publish only the final result (e.g., the winner). This practice, which we coin \emph{publicly tally-hiding}, indeed solves the aforementioned issues for the public, but currently has to sacrifice verifiability due to a lack of practical systems. In this paper, we close this gap. We formalize the common notion of publicly tally-hiding and propose the first provably secure verifiable e-voting system, called Kryvos, which directly targets publicly tally-hiding elections. We instantiate our system for a wide range of both simple and complex voting methods and various result functions. We provide an extensive evaluation which shows that Kryvos is practical and able to handle a large number of candidates, complex voting methods and result functions. Altogether, Kryvos shows that the concept of publicly tally-hiding offers a new trade-off between privacy and efficiency that is different from all previous tally-hiding systems and which allows for a radically new protocol design resulting in a practical e-voting system.}, author = {Huber, Nicolas and K{\"u}sters, Ralf and Krips, Toomas and Liedtke, Julian and M{\"u}ller, Johannes and Rausch, Daniel and Reisert, Pascal and Vogt, Andreas}, booktitle = {{CCS '22: ACM Conference on Computer and Communications Security, November 7--11, 2022, Los Angeles, USA}}, doi = {10.1145/3548606.3560701}, pages = {1443--1457}, publisher = {{ACM}}, title = {{Kryvos: Publicly Tally-Hiding Verifiable E-Voting}}, url = {https://publ.sec.uni-stuttgart.de/huberkuesterskripsliedtkemuellerrauschreisert-ccs-2022.pdf}, year = 2022 }
  Link
  https://publ.sec.uni-stuttgart.de/huberkuesterskripsliedtkemuellerrauschreisert-ccs-2022.pdf
2. Nicolas Huber, Ralf Küsters, Toomas Krips, Julian Liedtke, Johannes Müller, Daniel Rausch, Pascal Reisert, und Andreas Vogt, „Kryvos: Publicly Tally-Hiding Verifiable E-Voting“, Cryptology ePrint Archive, Technical Report 2022/1132, 2022.
  Zusammenfassung
  Elections are an important corner stone of democratic processes. In addition to publishing the final result (e.g., the overall winner), elections typically publish the full tally consisting of all (aggregated) individual votes. This causes several issues, including loss of privacy for both voters and election candidates as well as so-called Italian attacks that allow for easily coercing voters. Several e-voting systems have been proposed to address these issues by hiding (parts of) the tally. This property is called tally-hiding. Existing tally-hiding e-voting systems in the literature aim at hiding (part of) the tally from everyone, including voting authorities, while at the same time offering verifiability, an important and standard feature of modern e-voting systems which allows voters and external observers to check that the published election result indeed corresponds to how voters actually voted. In contrast, real elections often follow a different common practice for hiding the tally: the voting authorities internally compute (and learn) the full tally but publish only the final result (e.g., the winner). This practice, which we coin publicly tally-hiding, indeed solves the aforementioned issues for the public, but currently has to sacrifice verifiability due to a lack of practical systems. In this paper, we close this gap. We formalize the common notion of publicly tally-hiding and propose the first provably secure verifiable e-voting system, called Kryvos, which directly targets publicly tally-hiding elections. We instantiate our system for a wide range of both simple and complex voting methods and various result functions. We provide an extensive evaluation which shows that Kryvos is practical and able to handle a large number of candidates, complex voting methods and result functions. Altogether, Kryvos shows that the concept of publicly tally-hiding offers a new trade-off between privacy and efficiency that is different from all previous tally-hiding systems and which allows for a radically new protocol design resulting in a practical e-voting system.
  BibTeX
  @techreport{HuberKuestersKripsLiedtkeMuellerRauschReisert-IACR-2022, abstract = {Elections are an important corner stone of democratic processes. In addition to publishing the final result (e.g., the overall winner), elections typically publish the full tally consisting of all (aggregated) individual votes. This causes several issues, including loss of privacy for both voters and election candidates as well as so-called Italian attacks that allow for easily coercing voters. Several e-voting systems have been proposed to address these issues by hiding (parts of) the tally. This property is called \emph{tally-hiding}. Existing tally-hiding e-voting systems in the literature aim at hiding (part of) the tally from everyone, including voting authorities, while at the same time offering verifiability, an important and standard feature of modern e-voting systems which allows voters and external observers to check that the published election result indeed corresponds to how voters actually voted. In contrast, real elections often follow a different common practice for hiding the tally: the voting authorities internally compute (and learn) the full tally but publish only the final result (e.g., the winner). This practice, which we coin \emph{publicly tally-hiding}, indeed solves the aforementioned issues for the public, but currently has to sacrifice verifiability due to a lack of practical systems. In this paper, we close this gap. We formalize the common notion of publicly tally-hiding and propose the first provably secure verifiable e-voting system, called Kryvos, which directly targets publicly tally-hiding elections. We instantiate our system for a wide range of both simple and complex voting methods and various result functions. We provide an extensive evaluation which shows that Kryvos is practical and able to handle a large number of candidates, complex voting methods and result functions. Altogether, Kryvos shows that the concept of publicly tally-hiding offers a new trade-off between privacy and efficiency that is different from all previous tally-hiding systems and which allows for a radically new protocol design resulting in a practical e-voting system.}, author = {Huber, Nicolas and K{\"u}sters, Ralf and Krips, Toomas and Liedtke, Julian and M{\"u}ller, Johannes and Rausch, Daniel and Reisert, Pascal and Vogt, Andreas}, doi = {10.1145/3548606.3560701}, institution = {Cryptology ePrint Archive}, number = {2022/1132}, title = {{Kryvos: Publicly Tally-Hiding Verifiable E-Voting}}, type = {Technical Report}, url = {https://publ.sec.uni-stuttgart.de/huberkuesterskripsliedtkemuellerrauschreisert-iacr-2022.pdf}, year = 2022 }
  Link
  https://publ.sec.uni-stuttgart.de/huberkuesterskripsliedtkemuellerrauschreisert-iacr-2022.pdf
2021
1. Fabian Hertel, Nicolas Huber, Jonas Kittelberger, Ralf Küsters, Julian Liedtke, und Daniel Rausch, „Extending the Tally-Hiding Ordinos System: Implementations for Borda, Hare-Niemeyer, Condorcet, and Instant-Runoff Voting“, in Sixth International Joint Conference on Electronic Voting (E-Vote-ID 2021), 2021, S. 269–284.
  Zusammenfassung
  Modern electronic voting systems (e-voting systems) are designed to achieve a variety of security properties, such as verifiability, accountability, and vote privacy. Some of these systems aim at so-called tally-hiding: they compute the election result, according to some result function, like the winner of the election, without revealing any other information to any party. In particular, if desired, they neither reveal the full tally consisting of all (aggregated or even individual) votes nor parts of it, except for the election result, according to the result function. Tally-hiding systems offer many attractive features, such as strong privacy guarantees both for voters and for candidates, and protection against Italian attacks. The Ordinos system is a recent provably secure framework for accountable tally-hiding e-voting that extends Helios and can be instantiated for various election methods and election result functions. So far, practical instantiations and implementations for only rather simple result functions (e.g., computing the k best candidates) and single/multi-vote elections have been developed for Ordinos. In this paper, we propose and implement several new Ordinos instantiations in order to support Borda voting, the Hare-Niemeyer method for proportional representation, multiple Condorcet methods, and Instant-Runoff Voting. Our instantiations, which are based on suitable secure multi-party computation (MPC) components, offer the first tally-hiding implementations for these voting methods. To evaluate the practicality of our MPC components and the resulting e-voting systems, we provide extensive benchmarks for all our implementations.
  BibTeX
  @inproceedings{HertelHuberKittelbergerKuestersLiedtkeRausch-EVOTEID-2021, abstract = {Modern electronic voting systems (e-voting systems) are designed to achieve a variety of security properties, such as verifiability, accountability, and vote privacy. Some of these systems aim at so-called tally-hiding: they compute the election result, according to some result function, like the winner of the election, without revealing any other information to any party. In particular, if desired, they neither reveal the full tally consisting of all (aggregated or even individual) votes nor parts of it, except for the election result, according to the result function. Tally-hiding systems offer many attractive features, such as strong privacy guarantees both for voters and for candidates, and protection against Italian attacks. The Ordinos system is a recent provably secure framework for accountable tally-hiding e-voting that extends Helios and can be instantiated for various election methods and election result functions. So far, practical instantiations and implementations for only rather simple result functions (e.g., computing the k best candidates) and single/multi-vote elections have been developed for Ordinos. In this paper, we propose and implement several new Ordinos instantiations in order to support Borda voting, the Hare-Niemeyer method for proportional representation, multiple Condorcet methods, and Instant-Runoff Voting. Our instantiations, which are based on suitable secure multi-party computation (MPC) components, offer the first tally-hiding implementations for these voting methods. To evaluate the practicality of our MPC components and the resulting e-voting systems, we provide extensive benchmarks for all our implementations.}, author = {Hertel, Fabian and Huber, Nicolas and Kittelberger, Jonas and K{\"{u}}sters, Ralf and Liedtke, Julian and Rausch, Daniel}, booktitle = {{Sixth International Joint Conference on Electronic Voting (E-Vote-ID 2021)}}, doi = {10062/74533}, pages = {269-284}, publisher = {{University of Tartu Press}}, title = {{Extending the Tally-Hiding Ordinos System: Implementations for Borda, Hare-Niemeyer, Condorcet, and Instant-Runoff Voting}}, url = {https://publ.sec.uni-stuttgart.de/hertelhuberkittelbergerkuestersliedtkerausch-evoteid-2021.pdf}, year = 2021 }
  Link
  https://publ.sec.uni-stuttgart.de/hertelhuberkittelbergerkuestersliedtkerausch-evoteid-2021.pdf
2. Fabian Hertel, Nicolas Huber, Jonas Kittelberger, Ralf Küsters, Julian Liedtke, und Daniel Rausch, „Extending the Tally-Hiding Ordinos System: Implementations for Borda, Hare-Niemeyer, Condorcet, and Instant-Runoff Voting“, Cryptology ePrint Archive, Technical Report 2021/1420, 2021.
  Zusammenfassung
  Modern electronic voting systems (e-voting systems) are designed to achieve a variety of security properties, such as verifiability, accountability, and vote privacy. Some of these systems aim at so-called tally-hiding: they compute the election result, according to some result function, like the winner of the election, without revealing any other information to any party. In particular, if desired, they neither reveal the full tally consisting of all (aggregated or even individual) votes nor parts of it, except for the election result, according to the result function. Tally-hiding systems offer many attractive features, such as strong privacy guarantees both for voters and for candidates, and protection against Italian attacks. The Ordinos system is a recent provably secure framework for accountable tally-hiding e-voting that extends Helios and can be instantiated for various election methods and election result functions. So far, practical instantiations and implementations for only rather simple result functions (e.g., computing the k best candidates) and single/multi-vote elections have been developed for Ordinos. In this paper, we propose and implement several new Ordinos instantiations in order to support Borda voting, the Hare-Niemeyer method for proportional representation, multiple Condorcet methods, and Instant-Runoff Voting. Our instantiations, which are based on suitable secure multi-party computation (MPC) components, offer the first tally-hiding implementations for these voting methods. To evaluate the practicality of our MPC components and the resulting e-voting systems, we provide extensive benchmarks for all our implementations.
  BibTeX
  @techreport{HertelHuberKittelbergerKuestersLiedtkeRausch-IACR-2021, abstract = {Modern electronic voting systems (e-voting systems) are designed to achieve a variety of security properties, such as verifiability, accountability, and vote privacy. Some of these systems aim at so-called tally-hiding: they compute the election result, according to some result function, like the winner of the election, without revealing any other information to any party. In particular, if desired, they neither reveal the full tally consisting of all (aggregated or even individual) votes nor parts of it, except for the election result, according to the result function. Tally-hiding systems offer many attractive features, such as strong privacy guarantees both for voters and for candidates, and protection against Italian attacks. The Ordinos system is a recent provably secure framework for accountable tally-hiding e-voting that extends Helios and can be instantiated for various election methods and election result functions. So far, practical instantiations and implementations for only rather simple result functions (e.g., computing the k best candidates) and single/multi-vote elections have been developed for Ordinos. In this paper, we propose and implement several new Ordinos instantiations in order to support Borda voting, the Hare-Niemeyer method for proportional representation, multiple Condorcet methods, and Instant-Runoff Voting. Our instantiations, which are based on suitable secure multi-party computation (MPC) components, offer the first tally-hiding implementations for these voting methods. To evaluate the practicality of our MPC components and the resulting e-voting systems, we provide extensive benchmarks for all our implementations.}, author = {Hertel, Fabian and Huber, Nicolas and Kittelberger, Jonas and K{\"{u}}sters, Ralf and Liedtke, Julian and Rausch, Daniel}, institution = {Cryptology ePrint Archive}, number = {2021/1420}, title = {{Extending the Tally-Hiding Ordinos System: Implementations for Borda, Hare-Niemeyer, Condorcet, and Instant-Runoff Voting}}, type = {Technical Report}, url = {https://publ.sec.uni-stuttgart.de/hertelhuberkittelbergerkuestersliedtkerausch-iacr-2021.pdf}, year = 2021 }
  Link
  https://publ.sec.uni-stuttgart.de/hertelhuberkittelbergerkuestersliedtkerausch-iacr-2021.pdf
2019
1. Bernhard Beckert, Achim Brelle, Rüdiger Grimm, Nicolas Huber, Michael Kirsten, Ralf Küsters, Jörn Müller-Quade, Maximilian Noppel, Kai Reinhard, Jonas Schwab, Rebecca Schwerdt, Tomasz Truderung, Melanie Volkamer, und Cornelia Winter, „GI Elections with POLYAS: a Road to End-to-End Verifiable Elections“, in Fourth International Joint Conference on Electronic Voting (E-Vote-ID 2019), 2019, S. 293--294.
  - BibTeX
  BibTeX
  @inproceedings{BeckertBrelleEtAl-EVOTE-ID-2019, author = {Beckert, Bernhard and Brelle, Achim and Grimm, R{\"u}diger and Huber, Nicolas and Kirsten, Michael and K{\"u}sters, Ralf and M{\"u}ller-Quade, J{\"o}rn and Noppel, Maximilian and Reinhard, Kai and Schwab, Jonas and Schwerdt, Rebecca and Truderung, Tomasz and Volkamer, Melanie and Winter, Cornelia}, booktitle = {{Fourth International Joint Conference on Electronic Voting (E-Vote-ID 2019)}}, pages = {293--294}, publisher = {TalTech Press}, title = {{GI Elections with POLYAS: a Road to End-to-End Verifiable Elections}}, year = 2019 }

Umfangreichere Informationen finden Sie auf unserer englischsprachigen Seite.

Nicolas Huber

Kontakt

Publikationen

2024

Zusammenfassung

BibTeX

Link

2023

Zusammenfassung

BibTeX

Link

Zusammenfassung

BibTeX

Link

Zusammenfassung

BibTeX

Link

2022

Zusammenfassung

BibTeX

Link

Zusammenfassung

BibTeX

Link

2021

Zusammenfassung

BibTeX

Link

Zusammenfassung

BibTeX

Link

2019

BibTeX

Zielgruppe

Formalia

Services

Organisation

Nicolas Huber

Kontakt

Publikationen

2024

Zusammenfassung

BibTeX

Link

2023

Zusammenfassung

BibTeX

Link

Zusammenfassung

BibTeX

Link

Zusammenfassung

BibTeX

Link

2022

Zusammenfassung

BibTeX

Link

Zusammenfassung

BibTeX

Link

2021

Zusammenfassung

BibTeX

Link

Zusammenfassung

BibTeX

Link

2019

BibTeX

So erreichen Sie uns

Zielgruppe

Formalia

Services

Organisation