Paper published in a book (Scientific congresses, symposiums and conference proceedings)
How Efficient are Replay Attacks against Vote Privacy? A Formal Quantitative Analysis
Mestel, David; Mueller, Johannes; Reisert, Pascal
2022In 35th IEEE Computer Security Foundations Symposium
Peer reviewed
 

Files


Full Text
main.pdf
Publisher postprint (422.12 kB)
Download
Annexes
priv_calc_ktv.cpp
(2.62 kB)
Download
strong_priv.cpp
(3.1 kB)
Download

All documents in ORBilu are protected by a user license.

Send to



Details



Abstract :
[en] Replay attacks are among the most well-known attacks against vote privacy. Many e-voting systems have been proven vulnerable to replay attacks, including systems like Helios that are used in real practical elections. Despite their popularity, it is commonly believed that replay attacks are inefficient but the actual threat that they pose to vote privacy has never been studied formally. Therefore, in this paper, we precisely analyze for the first time how efficient replay attacks really are. We study this question from commonly used and complementary perspectives on vote privacy, showing as an independent contribution that a simple extension of a popular game-based privacy definition corresponds to a strong entropy-based notion. Our results demonstrate that replay attacks can be devastating for a voter's privacy even when an adversary's resources are very limited. We illustrate our formal findings by applying them to a number of real-world elections, showing that a modest number of replays can result in significant privacy loss. Overall, our work reveals that, contrary to a common belief, replay attacks can be very efficient and must therefore be considered a serious threat.
Disciplines :
Computer science
Author, co-author :
Mestel, David ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > APSIA
Mueller, Johannes  ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > APSIA
Reisert, Pascal;  University of Stuttgart
External co-authors :
yes
Language :
English
Title :
How Efficient are Replay Attacks against Vote Privacy? A Formal Quantitative Analysis
Publication date :
2022
Event name :
IEEE CSF 2022
Event date :
from 07-08-2022 to 10-10-2022
Main work title :
35th IEEE Computer Security Foundations Symposium
Peer reviewed :
Peer reviewed
Focus Area :
Security, Reliability and Trust
FnR Project :
FNR14698166 - Future-proofing Privacy In Secure Electronic Voting, 2020 (01/01/2021-31/12/2023) - Johannes Mueller
Available on ORBilu :
since 09 June 2022

Statistics


Number of views
169 (7 by Unilu)
Number of downloads
134 (6 by Unilu)

Scopus citations®
 
3
Scopus citations®
without self-citations
1

Bibliography


Similar publications



Contact ORBilu