Hacker News new | ask | show | jobs
by beat 2875 days ago
The solution to every security problem is more complexity.

And, in a well designed paper voting system, you do know your vote was not tampered with, because nobody's votes were tampered with.

There are only three mechanisms for tampering with the actual vote count - adding ballots, removing ballots, or altering the content of ballots. (Replacing ballots is a combined add/remove.) The blockchain mechanism only checks for alteration/removal, and only for a single vote. One individual can verify their own ballot, but repudiation requires breaking secrecy. It's simply not a very good solution.

And the reason it's not a good solution is philosophical - it's focused on the individual, when the election is about the collective. Any effective election validation system must validate the collective, not just the individual. The collective is validated by insuring that no tampering happened anywhere. And if we can demonstrate that, then verification/repudiation of individual ballots is irrelevant. If A is true for all B, and C is a B, then A is true for C.

But when you really love your hammer, every problem looks like a nail. Blockchain is basically useless for elections, but people obsess over it anyway.
1 comments
d0lph 2875 days ago
How do you know nobody's vote was tampered with?
link
beat 2875 days ago
Because the process is well designed. No single person or single party was left alone with ballots, marked or unmarked, at any point. Any counting machines get spot-checked. Any count discrepancies from voter rolls to ballots cast trigger manual counts. Packages of blank ballots are sealed. Voting machines are locked, so no one can easily get into them to add/remove/replace ballots without the key(s). Used ballots are sealed at the end of the election. Signed chains of custody for everything. Etc.
link
d0lph 2875 days ago
Collusion among multiple persons would break that, whereas a verifiable distributed system would be unaffected.
link
roywiggins 2875 days ago
Multiple people in both parties, more or less constantly observed by completely unrelated election observers? That is probably the single hardest scenario possible to execute a conspiracy. Conspiracies are hard enough when there are back rooms and hidden corners. Ballot counts are designed to have none.
link