Hacker News new | ask | show | jobs
by wh1te_n0ise 3120 days ago
I'm confused how you can say paper ballots have any of those properties.

Once you've handed off your paper ballot, it's no longer "transparent". You have no signature (physical or digital) that verifies that your vote was counted in the final tally. You also have no proof that all other votes submitted in that election were legitimate votes from real, identified eligible voters. Ballot stuffing and mis-recording of votes are both forms of fraud that have been performed under the so-called "transparent" paper voting systems...

"Accountable" implies that you have adequate identification. Last time I checked (last presidential election), I only needed to provide a name and a birthday in order to vote, which are both things that are publicly available information. Without adequate identification of people (see: biometrics + smart cards, ideally), you don't have accountability or even the ability to reliably detect voter fraud. Why would you want to favor a paper system which relies on people (who can be paid off, blackmailed) when better solutions exist that get rid of some of the possibility of human error?

Personally, I'd rather have a public electronic voting system where all voting transactions are stored on a public blockchain. That way I can verify the vote tallies for myself and I can also verify that the vote that I submitted was actually recorded and included on the public blockchain. You add in the assumption that all voting machines must be closed source and un-audited - but that's not an inherent property of voting machines. Governments could just as easily use open source and publicly-audited voting machines.
2 comments
tony101 3120 days ago
>I can also verify that the vote that I submitted was actually recorded and included on the public blockchain.

Would this allow you to prove to someone else how you voted in the election? If so, that's not a desired property.

Currently there is no way for you to prove, to yourself or someone else, who you voted for in an election because nobody gets to see your ballot and you cannot take a photo. This makes vote buying and coercion much more difficult. I'd like our voting system to keep this feature.

link
wh1te_n0ise 3120 days ago
I can see how that would be a concern, and I'd say to that - it really depends on the implementation.

You could have a blockchain-based system where everything is public (say, like Bitcoin), which from your perspective would be bad.

You could have a blockchain-based system where you need a "view key" in order to actually view the details of a particular transaction (say, like Monero), which from your perspective would also be bad.

In the latter system I'm describing, you could have a procedural control that you have a choice of receiving your "view key" or something along those lines to deter coercion and vote buying.

Other possibilities would be allowing voters to change their votes at a later date, or creating a system that allows voters to vote remotely such that they could do so in the comfort of their own home where they'd be (presumably) free from coercion and other influences.

link
Godel_unicode 3120 days ago
If it's possible to get vote attestations (using view keys for instance) then coercion and vote buying will happen. Consider that if I can coerce/buy your vote I can coerce/buy your view key (no a duress key doesn't help, if it exists I'll demand both).

The system needs to retain the current property of being able to lie about having voted a certain way with 0 chance that you will be discovered because getting proof is impossible.

Consider that it won't be "comfort of their own home" it'll be the comfort of their union bosses office so he can be sure they voted as directed.

link
wh1te_n0ise 3120 days ago
First off, I hope you realize that in the current paper systems that your "union boss" could literally walk down to the voting station themselves and give them your name & birthday and just submit votes on your behalf without needing to "coerce" or "buy" any votes.

Regardless, I said that it was dependent on the implementation. If I am able to change my votes at a later date, then who cares if my union boss can pull me into his office and force me to vote a certain way? I'll just go in that evening and issue a corrective vote and be issued a new "view key" associated with that transaction and my boss would be none the wiser.

Or you could have a system where the blockchain isn't public, but rather it's only accessible by a few designated government machines. Then for auditing purposes if you want to verify your vote, you go into a facility (no electronics [besides your identification] allowed) with your "view key" and prove your identity (biometrics, smart card) and then you're able to then receive assurance that your vote was recorded as expected by viewing the transaction from one of the government machines.

Then your union boss doesn't have the ability to check your votes.

You know what I love though - people who make all discussions black and white and don't consider the large spectrum of possibilities.

link
rspeer 3120 days ago
> First off, I hope you realize that in the current paper systems that your "union boss" could literally walk down to the voting station themselves and give them your name & birthday and just submit votes on your behalf without needing to "coerce" or "buy" any votes.

Your threat model is nonsense.

Yes, people do commit fraud in elections, but they do it as insiders where they have the opportunity to covertly meddle with large numbers of votes.

They do not do it by walking into a precinct in plain sight and claiming to be someone else, risking everything for the chance to cast one vote, unless they are very, very dumb.

link
walshemj 3120 days ago
In the Uk with paper ballots when you vote your checked against the electoral register before you get the ballot.
link