Abstract
In this paper we analyze the security of the online Danish party endorsement system (DVE) and present two attacks: one technical, which we discovered during our study of the system in 2016 and which compromises the integrity of the endorsements stored in the DVE-database and another socio-technical, which allows parties to circumvent mechanisms to protect voters against abuse. To understand these attacks, we introduce the legal and technical frameworks of the DVE-system, analyze its problems, and describe a sequence of events that has led to endorsing three new parties that stood in the 2019 Danish Parliament election.
Original language | English |
---|---|
Title of host publication | Electronic Voting |
Number of pages | 15 |
Volume | LLNCS11759 |
Publisher | Springer |
Publication date | 24 Sept 2019 |
Pages | 200-215 |
ISBN (Print) | 978-3-030-30625-0 |
Publication status | Published - 24 Sept 2019 |
Keywords
- DVE system
- Security analysis
- Technical attacks
- Socio-technical attacks
- Danish election integrity