References of "Ribeiro, Carlos"
     in
Bookmark and Share    
Full Text
Peer Reviewed
See detailEVIV: An end-to-end verifiable Internet voting system
Joaquim, Rui UL; Ferreira, Paulo; Ribeiro, Carlos

in Computers and Security (2013), 32(0), 170-191

Traditionally, a country’s electoral system requires the voter to vote at a specific day and place, which conflicts with the mobility usually seen in modern live styles. Thus, the widespread of Internet ... [more ▼]

Traditionally, a country’s electoral system requires the voter to vote at a specific day and place, which conflicts with the mobility usually seen in modern live styles. Thus, the widespread of Internet (mobile) broadband access can be seen as an opportunity to deal with this mobility problem, i.e. the adoption of an Internet voting system can make the live of voter’s much more convenient; however, a widespread Internet voting systems adoption relies on the ability to develop trustworthy systems, i.e. systems that are verifiable and preserve the voter’s privacy. Building such a system is still an open research problem. Our contribution is a new Internet voting system: EVIV, a highly sound End-to-end Verifiable Internet Voting system, which offers full voter’s mobility and preserves the voter’s privacy from the vote casting PC even if the voter votes from a public PC, such as a PC at a cybercafe´ or at a public library. Additionally, EVIV has private vote verificationmechanisms, in which the voter just has to perform a simple match of two small strings (4-5 alphanumeric characters), that detect and protect against vote manipulations both at the insecure vote client platform and at the election server side. [less ▲]

Detailed reference viewed: 131 (13 UL)
Full Text
Peer Reviewed
See detailAn Efficient and Highly Sound Voter Verification Technique and Its Implementation
Joaquim, Rui UL; Ribeiro, Carlos

in Kiayias, Aggelos; Lipmaa, Helger (Eds.) E-Voting and Identity (2012)

This paper presents MarkPledge3 (MP3), the most efficient specification of the MarkPledge (MP) technique. The MP technique allows the voter to verify that her vote is correctly encrypted with a soundness ... [more ▼]

This paper presents MarkPledge3 (MP3), the most efficient specification of the MarkPledge (MP) technique. The MP technique allows the voter to verify that her vote is correctly encrypted with a soundness of 1−2−α, with 20 ≤ α ≤ 30, just by performing a match of a small string (4-5 characters). Due to its simplicity, verifying the election public data (vote encryptions and tally) in MP3 is 2.6 times faster than with MP2 and the vote encryption creation on devices with low computational power, e.g. smart cards, is approximately 6 times better than the best of the previous MP specifications (MP1 and MP2). [less ▲]

Detailed reference viewed: 145 (2 UL)
Full Text
Peer Reviewed
See detailImproving Remote Voting Security with CodeVoting
Joaquim, Rui UL; Ribeiro, Carlos; Ferreira, Paulo

in Chaum, David; Jakobsson, Markus; Rivest, Ronaldl (Eds.) et al Towards Trustworthy Elections (2010)

One of the major problems that prevents the spread of elections with the possibility of remote voting over electronic networks, also called Internet Voting, is the use of unreliable client platforms, such ... [more ▼]

One of the major problems that prevents the spread of elections with the possibility of remote voting over electronic networks, also called Internet Voting, is the use of unreliable client platforms, such as the voter’s computer and the Internet infrastructure connecting it to the election server. A computer connected to the Internet is exposed to viruses, worms, Trojans, spyware, malware and other threats that can compromise the election’s integrity. For instance, it is possible to write a virus that changes the voter’s vote to a predetermined vote on election’s day. Another possible attack is the creation of a fake election web site where the voter uses a malicious vote program on the web site that manipulates the voter’s vote (phishing/pharming attack). Such attacks may not disturb the election protocol, therefore can remain undetected in the eyes of the election auditors. We propose the use of CodeVoting to overcome insecurity of the client platform. CodeVoting consists in creating a secure communication channel to communicate the voter’s vote between the voter and a trusted component attached to the voter’s computer. Consequently, no one controlling the voter’s computer can change the his/her’s vote. The trusted component can then process the vote according to a cryptographic voting protocol to enable cryptographic verification at the server’s side. [less ▲]

Detailed reference viewed: 91 (5 UL)
Full Text
Peer Reviewed
See detailVeryVote: A Voter Verifiable Code Voting System
Joaquim, Rui UL; Ribeiro, Carlos; Ferreira, Paulo

in Ryan, Petery A.; Schoenmakers, Berry (Eds.) E-Voting and Identity (2009)

Code voting is a technique used to address the secure platform problem of remote voting. A code voting system consists in secretly sending, e.g. by mail, code sheets to voters that map their choices to ... [more ▼]

Code voting is a technique used to address the secure platform problem of remote voting. A code voting system consists in secretly sending, e.g. by mail, code sheets to voters that map their choices to entry codes in their ballot. While voting, the voter uses the code sheet to know what code to enter in order to vote for a particular candidate. In effect, the voter does the vote encryption and, since no malicious software on the PC has access to the code sheet it is not able to change the voter’s intention. However, without compromising the voter’s privacy, the vote codes are not enough to prove that the vote is recorded and counted as cast by the election server. We present a voter verifiable code voting solution which, without revealing the voter’s vote, allows the voter to verify, at the end of the election, that her vote was cast and counted as intended by just performing the match of a few small strings. Moreover, w.r.t. a general code voting system, our solution comes with only a minor change in the voting interaction. [less ▲]

Detailed reference viewed: 99 (4 UL)
Full Text
Peer Reviewed
See detailCodeVoting Protection Against Automatic Vote Manipulation in an Uncontrolled Environment
Joaquim, Rui UL; Ribeiro, Carlos

in Alkassar, Ammar; Volkamer, Melanie (Eds.) E-Voting and Identity (2007)

One of the major problems that prevent the widespread of Internet voting is the vulnerability of the voter’s computer. A computer connected to the Internet is exposed to virus, worms, spyware, malware and ... [more ▼]

One of the major problems that prevent the widespread of Internet voting is the vulnerability of the voter’s computer. A computer connected to the Internet is exposed to virus, worms, spyware, malware and other threats that can endanger the election’s integrity. For instance, it is possible to write a virus that changes the voter’s vote to one predetermined vote on election’s day. It is possible to write such a virus so that the voter would not notice anything wrong with the voting application. This attack is very dangerous because it may pass undetected. To prevent such attack it is necessary to prevent automatic vote manipulation at voter’s computer. Here we present CodeVoting, a technique to create a secure communication channel to a smart card that prevents vote manipulation by the voter’s PC, while at the same time allows the use of any cryptographic voting protocol to protect the election’s integrity at the server side of the voting application. [less ▲]

Detailed reference viewed: 139 (1 UL)