一个安全电子投票系统的研究与设计
|
摘要
投票,是民主社会中经常发生的行为,而传统的手工投票由于存在种种弊端,已不适应当前的投票需求。随着网络技术和密码学技术的发展,电子投票产生了,它是以密码学为基础,运用计算机和网络技术来实现投票功能,具有很高的效率和灵活性,可应用于诸多领域,有广阔的应用前景。
要使电子投票能够安全可靠地运行,首先必须在密码学技术的基础之上设计出一个安全的电子投票协议。自从1981年Chaum设计了第一个电子投票协议以来,已有多位学者设计了满足不同要求的电子投票协议,但这些协议都还或多或少的存在着缺陷,无法在实际中应用。
为了实现一个安全实用的电子投票系统,本文首先对Fujioka, Okamoto和Ohta三人于1992年设计的一个电子投票协议——FOO协议进行了研究,详细分析了FOO协议的安全性,深入探讨了该协议存在的漏洞和弊端,以及产生这些缺陷的原因。在此基础上,借鉴现实生活中投票方式的某些优点,提出了改进的策略和方法,从而设计出一个新的电子投票协议。新协议在FOO协议的基础上将投票中心进行了进一步的分解,同时增加了一个监督机构,目的在于使得其投票机制更接近于现实生活中的投票,让投票人的投票行为更加灵活和方便,提高整个投票流程的效率,并且通过投票中心不同机构间的相互牵制,来制约投票中心的舞弊行为。所设计的新协议对解决FOO协议存在的某些问题进行了有益的探索,并预期其可以在一定的网络环境中实现有效的电子投票。以新的协议为核心,本文设计了一个安全电子投票系统,详细介绍了该系统的体系结构和模块功能,并且在Windows平台上使用Visual C++6.0实现了其中的关键环节。
最后,本文对研究工作进行了总结并对今后的发展和需要的进一步研究工作进行了探讨。
Voting is a behavior that often takes place in democratic society. The traditional craft voting can’t meet the present voting demand because of its weakness. With the development of network and cryptography technologies, the electronic voting arises at the historic moment. Based on cryptography, electronic voting uses computer and network technology to realize the functions of voting. Electronic voting has the advantage of high efficiency, convenience and flexibility, can be applied to many field. It has broad outlook of application.
In order to make the electronic voting be carried out securely and reliably, a secure electronic voting protocol must be designed. Chaum designed the first electronic voting protocol in 1981. Since then many scholars have designed different protocols that are adapted to different situation. However, these protocols have some defaults. They are not applied very well.
In order to realize the electronic voting system applied in actual life, this paper has studied FOO protocol which is designed in 1992 by Fujioka, Okamoto and Ohta , carried detailed analysis on FOO and found several shortages in FOO, then referring to the advantage of traditional voting, presented several strategies and methods to improve the protocol. Based on these facts, a new protocol is designed by this paper. The new protocol reduces the power of voting centre and imports a new sub-center called supervisor in order to make the mechanism of new protocol more close to that of actual life, improve the efficiency of voting greatly, and make voting more flexible and convenient. The new protocol also reduced the possibility of that the centers practice fraud of voting. This new protocol explores the methods to solve FOO’s problems, is expected to be suitable for elections. Based on this new protocol, this paper designs a secure electronic voting system, introduces the systematic structures and modules’function of the system, and realizes the key parts of the system using Visual C++ 6.0 in Windows platform.
In the end, the research work in this paper is summarized and the development and further work for the secure electronic voting system is discussed.
要使电子投票能够安全可靠地运行,首先必须在密码学技术的基础之上设计出一个安全的电子投票协议。自从1981年Chaum设计了第一个电子投票协议以来,已有多位学者设计了满足不同要求的电子投票协议,但这些协议都还或多或少的存在着缺陷,无法在实际中应用。
为了实现一个安全实用的电子投票系统,本文首先对Fujioka, Okamoto和Ohta三人于1992年设计的一个电子投票协议——FOO协议进行了研究,详细分析了FOO协议的安全性,深入探讨了该协议存在的漏洞和弊端,以及产生这些缺陷的原因。在此基础上,借鉴现实生活中投票方式的某些优点,提出了改进的策略和方法,从而设计出一个新的电子投票协议。新协议在FOO协议的基础上将投票中心进行了进一步的分解,同时增加了一个监督机构,目的在于使得其投票机制更接近于现实生活中的投票,让投票人的投票行为更加灵活和方便,提高整个投票流程的效率,并且通过投票中心不同机构间的相互牵制,来制约投票中心的舞弊行为。所设计的新协议对解决FOO协议存在的某些问题进行了有益的探索,并预期其可以在一定的网络环境中实现有效的电子投票。以新的协议为核心,本文设计了一个安全电子投票系统,详细介绍了该系统的体系结构和模块功能,并且在Windows平台上使用Visual C++6.0实现了其中的关键环节。
最后,本文对研究工作进行了总结并对今后的发展和需要的进一步研究工作进行了探讨。
Voting is a behavior that often takes place in democratic society. The traditional craft voting can’t meet the present voting demand because of its weakness. With the development of network and cryptography technologies, the electronic voting arises at the historic moment. Based on cryptography, electronic voting uses computer and network technology to realize the functions of voting. Electronic voting has the advantage of high efficiency, convenience and flexibility, can be applied to many field. It has broad outlook of application.
In order to make the electronic voting be carried out securely and reliably, a secure electronic voting protocol must be designed. Chaum designed the first electronic voting protocol in 1981. Since then many scholars have designed different protocols that are adapted to different situation. However, these protocols have some defaults. They are not applied very well.
In order to realize the electronic voting system applied in actual life, this paper has studied FOO protocol which is designed in 1992 by Fujioka, Okamoto and Ohta , carried detailed analysis on FOO and found several shortages in FOO, then referring to the advantage of traditional voting, presented several strategies and methods to improve the protocol. Based on these facts, a new protocol is designed by this paper. The new protocol reduces the power of voting centre and imports a new sub-center called supervisor in order to make the mechanism of new protocol more close to that of actual life, improve the efficiency of voting greatly, and make voting more flexible and convenient. The new protocol also reduced the possibility of that the centers practice fraud of voting. This new protocol explores the methods to solve FOO’s problems, is expected to be suitable for elections. Based on this new protocol, this paper designs a secure electronic voting system, introduces the systematic structures and modules’function of the system, and realizes the key parts of the system using Visual C++ 6.0 in Windows platform.
In the end, the research work in this paper is summarized and the development and further work for the secure electronic voting system is discussed.
引文
[1] 郑燕飞,陈克非.电子选举:理论、实践与未来.计算机科学,2002,29(4):12-14
[2] 刘景美,傅晓彤,程相国 等.电子投票的安全性及应用前景.计算机安全,2004,19(12):24-26
[3] 段琪,孙淑玲.电子选举研究概况计.计算机应用,1998,18(4):23-25
[4] 孟江涛,冯登国,胡振宇.电子选举中的安全协议.中国科学院研究生院学报,2002,19(3):295-305
[5] 陈晓峰,王育民.基于匿名通讯信道的安全电子投票方案.电子学报,2003,31(3):390-393
[6] 何莉莉,廖梦婕.安全电子投票的研究.中国数据通信,2004,6(9):87-89
[7] Gritzalis A.Principles and requirements for a secure e-voting system.Computers and Security,2002,21(6):539-556
[8] Kai R,Larsen T.Voting technology implementation.Communications of the ACM,1999,42(12):55-57
[9] Barbara Simons.Electronic voting systems: the good, the bad, and the stupid.ACM Queue,2004,2(7):20
[10] Bannet J,Price D,Rudys A et al.Hack-a-vote: Security issues with electronic voting systems.Security & Privacy Magazine,2004,2(1):32-37
[11] Selker T,Goler J.The save system-secure architecture for voting electronically.BT Technology Journal,2004,22(4):89-91
[12] 姚立,李仲麟.一个实用的电子投票协议的设计.华南理工大学学报(自然科学版),1997,25(5):96-100
[13] 李旭,蒋绍权.一种电子选举协议的分析与改进.密码与信息,1999,18(1):22-26
[14] 杨建沾,王勇,易星.RSA 公开密钥密码体制的密钥生成研究.武汉大学学报(自然科学版),1999,45(3):303-306
[15] Wenbo Mao.现代密码学理论与实践.王继林 译.北京:电子工业出版社,2004
[16] Bruce Schneier.应用密码学.吴世忠,祝世雄,张文政 译.北京:机械工业出版社,2001
[17] Stinso D.Cryptography: theory and practice.Second Edition.Boca Raton:Chapman & Hall/CRC,2003
[18] William Stallings.Cryptography and network security: principles and practice. Second Edition.Upper Saddle River,New Jersey:Prentice Hall,1999
[19] 李大兴,赵霖.数字签名方案的一般理论.西安电子科技大学学报,1990,17(4):26-34
[20] 肖攸安,李腊元.数字签名技术的研究.武汉理工大学学报(交通科学与工程版),2002,26(6):737-740
[21] 唐三平.基于散列函数的数字签名.信息网络安全,2005,5(2):75-76
[22] 汪保友,杨凤基.基于盲签名的在线选举方案.小型微型计算机系统,2003,24(3):588-591
[23] 祁明,肖国镇.盲消息签名方案的设计与应用.微型计算机,1997,17(3):8-10
[24] Huang Hui Feng,Chang Chin Chen.A new design of efficient partially blind signature scheme.Journal of Systems and Software,2004,73(3):397-403
[25] Chaum D.Blind signatures for untraceable payments.in:Chaum D,Rivest R, Sherman AT . eds . Advanced in Cryptology Proc Crypto’82 . Berlin :Springer-Verlag,1983.199-203.
[26] 钟鸣,杨义先.一种基于比特承诺的部分盲签名方案.通信学报,2001,22(9):1-6
[27] Chou Jue Sam,Yeh Yi Shiung.Mental poker game based on a bit commitment scheme through network.Computer Networks,2002,38(2):247-255
[28] 郑东.一种有效的比特承诺方案.通信学报,2000,21(2):78-80
[29] Fujioka A,Okatoma T,Ohta K.A practical secret voting scheme for large scale elections . in : Seberry J , Zheng Y . eds . Advances in Cryptology- AUSCRYPT’92.Berlin:Springer-Verlag,1992.244-251
[30] 刘俊.基于 Internet 的电子投票协议的研究与设计.硕士论文,广西大学,2001
[31] Lin Iuon Chang,Hwang Min Shiang,Chang Chin Chen.Security enhancement for anonymous secure e-voting over a network.Computer Standards and Interfaces,2003,25(2):131-139
[32] Dini,Gianluca.A secure and available electronic voting service for a large-scale distributed system.Future Generation Computer Systems,2003,19(1):69-85
[33] Ku Wei Chi , Wang Sheng De . A secure and practical electronic voting scheme.Computer Communications,1999,22(3):279-286
[34] Rubin D.Security considerations for remote electronic voting.Communications of the ACM,2002,45(12):39
[35] 焦建.电子选举系统的模型设计与实现.硕士论文,华北电力大学,2003
[36] 李彦江,马传贵,刘黄生.一种电子投票方案.软件学报,2005,16(10):1805-1810
[37] 鲁军.电子投票系统及其身份认证和投票协议的设计与实现.硕士论文,重庆大学,2004
[38] Liaw Horng Twu . A secure electronic voting protocol for general elections.Computers and Security,2004,23(2):107-119
[39] 蒋东兴,林鄂华,印敏 等.Windows Sockets 网络程序设计大全.北京:清华大学出版社,1999
[40] 雷斌,杨建华,黄超 等.Visual C++6.0 网络编程技术.北京:人民邮电出版社,2000
[41] 凌晨,买磊.基于两种不同存储方式的大整数运算及性能比较.安庆师范学院学报(自然科学版),2003,9(1):86-88
[42] Bruce Schneier.应用密码学协议、算法与 C 源程序.第二版.吴世忠 译.北京:机械工业出版社,2000
[2] 刘景美,傅晓彤,程相国 等.电子投票的安全性及应用前景.计算机安全,2004,19(12):24-26
[3] 段琪,孙淑玲.电子选举研究概况计.计算机应用,1998,18(4):23-25
[4] 孟江涛,冯登国,胡振宇.电子选举中的安全协议.中国科学院研究生院学报,2002,19(3):295-305
[5] 陈晓峰,王育民.基于匿名通讯信道的安全电子投票方案.电子学报,2003,31(3):390-393
[6] 何莉莉,廖梦婕.安全电子投票的研究.中国数据通信,2004,6(9):87-89
[7] Gritzalis A.Principles and requirements for a secure e-voting system.Computers and Security,2002,21(6):539-556
[8] Kai R,Larsen T.Voting technology implementation.Communications of the ACM,1999,42(12):55-57
[9] Barbara Simons.Electronic voting systems: the good, the bad, and the stupid.ACM Queue,2004,2(7):20
[10] Bannet J,Price D,Rudys A et al.Hack-a-vote: Security issues with electronic voting systems.Security & Privacy Magazine,2004,2(1):32-37
[11] Selker T,Goler J.The save system-secure architecture for voting electronically.BT Technology Journal,2004,22(4):89-91
[12] 姚立,李仲麟.一个实用的电子投票协议的设计.华南理工大学学报(自然科学版),1997,25(5):96-100
[13] 李旭,蒋绍权.一种电子选举协议的分析与改进.密码与信息,1999,18(1):22-26
[14] 杨建沾,王勇,易星.RSA 公开密钥密码体制的密钥生成研究.武汉大学学报(自然科学版),1999,45(3):303-306
[15] Wenbo Mao.现代密码学理论与实践.王继林 译.北京:电子工业出版社,2004
[16] Bruce Schneier.应用密码学.吴世忠,祝世雄,张文政 译.北京:机械工业出版社,2001
[17] Stinso D.Cryptography: theory and practice.Second Edition.Boca Raton:Chapman & Hall/CRC,2003
[18] William Stallings.Cryptography and network security: principles and practice. Second Edition.Upper Saddle River,New Jersey:Prentice Hall,1999
[19] 李大兴,赵霖.数字签名方案的一般理论.西安电子科技大学学报,1990,17(4):26-34
[20] 肖攸安,李腊元.数字签名技术的研究.武汉理工大学学报(交通科学与工程版),2002,26(6):737-740
[21] 唐三平.基于散列函数的数字签名.信息网络安全,2005,5(2):75-76
[22] 汪保友,杨凤基.基于盲签名的在线选举方案.小型微型计算机系统,2003,24(3):588-591
[23] 祁明,肖国镇.盲消息签名方案的设计与应用.微型计算机,1997,17(3):8-10
[24] Huang Hui Feng,Chang Chin Chen.A new design of efficient partially blind signature scheme.Journal of Systems and Software,2004,73(3):397-403
[25] Chaum D.Blind signatures for untraceable payments.in:Chaum D,Rivest R, Sherman AT . eds . Advanced in Cryptology Proc Crypto’82 . Berlin :Springer-Verlag,1983.199-203.
[26] 钟鸣,杨义先.一种基于比特承诺的部分盲签名方案.通信学报,2001,22(9):1-6
[27] Chou Jue Sam,Yeh Yi Shiung.Mental poker game based on a bit commitment scheme through network.Computer Networks,2002,38(2):247-255
[28] 郑东.一种有效的比特承诺方案.通信学报,2000,21(2):78-80
[29] Fujioka A,Okatoma T,Ohta K.A practical secret voting scheme for large scale elections . in : Seberry J , Zheng Y . eds . Advances in Cryptology- AUSCRYPT’92.Berlin:Springer-Verlag,1992.244-251
[30] 刘俊.基于 Internet 的电子投票协议的研究与设计.硕士论文,广西大学,2001
[31] Lin Iuon Chang,Hwang Min Shiang,Chang Chin Chen.Security enhancement for anonymous secure e-voting over a network.Computer Standards and Interfaces,2003,25(2):131-139
[32] Dini,Gianluca.A secure and available electronic voting service for a large-scale distributed system.Future Generation Computer Systems,2003,19(1):69-85
[33] Ku Wei Chi , Wang Sheng De . A secure and practical electronic voting scheme.Computer Communications,1999,22(3):279-286
[34] Rubin D.Security considerations for remote electronic voting.Communications of the ACM,2002,45(12):39
[35] 焦建.电子选举系统的模型设计与实现.硕士论文,华北电力大学,2003
[36] 李彦江,马传贵,刘黄生.一种电子投票方案.软件学报,2005,16(10):1805-1810
[37] 鲁军.电子投票系统及其身份认证和投票协议的设计与实现.硕士论文,重庆大学,2004
[38] Liaw Horng Twu . A secure electronic voting protocol for general elections.Computers and Security,2004,23(2):107-119
[39] 蒋东兴,林鄂华,印敏 等.Windows Sockets 网络程序设计大全.北京:清华大学出版社,1999
[40] 雷斌,杨建华,黄超 等.Visual C++6.0 网络编程技术.北京:人民邮电出版社,2000
[41] 凌晨,买磊.基于两种不同存储方式的大整数运算及性能比较.安庆师范学院学报(自然科学版),2003,9(1):86-88
[42] Bruce Schneier.应用密码学协议、算法与 C 源程序.第二版.吴世忠 译.北京:机械工业出版社,2000