Researchers Find Critical Backdoor In Swiss Online Voting System

An international group of researchers who have been examining the source code for an internet voting system that Switzerland plans to roll out this year have found a critical flaw in the code that would allow someone to alter votes without detection. New submitter eatmorekix shares a report: The cryptographic backdoor exists in a part of the system that is supposed to verify that all of the ballots and votes counted in an election are the same ones that voters cast. But the flaw could allow someone to swap out all of the legitimate ballots and replace them with fraudulent ones, all without detection. "The vulnerability is astonishing," said Matthew Green, who teaches cryptography at Johns Hopkins University and did not do the research but read the researchers' report. "In normal elections, there is no single person who could undetectably defraud the entire election. But in this system they built, there is a party who could do that."

The researchers provided their findings last week to Swiss Post, the country's national postal service, which developed the system with the Barcelona-based company Scytl. Swiss Post said in a statement the researchers provided Motherboard and that the Swiss Post plans to publish online on Tuesday, that the researchers were correct in their findings and that it had asked Scytl to fix the issue. It also downplayed the vulnerability, however, saying that to exploit it, an attacker would need control over Swiss Postâ(TM)s secured IT infrastructure "as well as help from several insiders with specialist knowledge of Swiss Post or the cantons."

One vulnerability less

[rgbe]

I have to say that this finding has made the whole system more secure. This is difficult to say for closed source systems.

Re:One vulnerability less

[sycodon]

Online voting is folly. Even mail in voting lacks adequate chain of custody policies.

Re:One vulnerability less

I have to say that this finding has made the whole system more secure. This is difficult to say for closed source systems.

Well, not according to a related article.

(...)
Although Swiss Post claims the system has undergone three audits by auditing giant KPMG— among them an audit of the end-to-end encryption—it has never made the auditing reports public or indicated if anything significant got changed as a result of the audits.

“Even if you sat down and read every line and determined everything was good, the code still wouldn’t pass the bar for being good code,” (...)

(...) As part of the test, the Swiss Post is making the source code for the software available to participants. But the code wasn’t supposed to be open to just anyone to examine.

Instead, to obtain access to it, participants have to agree to terms that were published with the announcement of the bug bounty program.

“[Y]ou need to agree to these strange rules they have. So in the concept of free and open source code, it’s not really accessible,” said Hernani Marques, board member and spokesperson of the Chaos Computer Club of Switzerland. “I think they don’t get the concept of free and open code.”(...)

Re:One vulnerability less

[hcs_$reboot]

Interesting. What's more secure: a heavy steel door or a 4096 bits key? Among the key combinations, one works for sure. The neophyte says "The door is not for me, too impressive ; but the key, if I'm lucky...". Back to votes, what's more dangerous: a hack that will allow someone working hard to change 1% of the votes, or some influent yet seemingly innocent media that pushes in one direction?

needs more Blockchain

[blackt0wer]

Any system where records are opaquely held is ripe for abuse and fraud.

Swiss cheese

[ShanghaiBill]

So the takeaway is that the Swiss make their voting systems the same way they make their cheese: full of holes.

Re:Swiss cheese

[youngone]

No, the takeaway is that the Swiss are testing the online voting system they haven't put into production yet, and they have found a major hole.
Because they're Swiss, the next step will be to fix it.

Re:Swiss cheese

[rickb928]

And the next hole. And the next.

Re:Swiss cheese

[Immerman]

Hey, still beats the U.S. process, where every time a hole is found everybody ignores it, and possibly tries to silence those trying to raise awareness of the problem.

Re:Swiss cheese

[Dunbal]

Except they're asking the guy who put the hole there to plug the hole. So while he plugs it, he'll just make another hole.

Re:Swiss cheese

[arglebargle_xiv]

Because they're Swiss, the next step will be to fix it.

Naah, the next step will be to sell it in different grades: Emmenthaler voting software, Appenzeller voting software, ...

A comment and a question

[AlanObject]

First point: score one for open-source-based economy. The problem can now get fixed without the usual denials from the usual vested interests.

Question: The article says the backdoor allows changes to be "undetected." If the voting system is online isn't there a way that you can go back and verify that your vote was counted correctly?

Re:A comment and a question

[shilly]

There is *no* way to verify your vote was counted correctly with online voting. It's conceptually impossible -- at the end of the day, you're always reduced to trusting that the thing on the screen in front of you in some way corresponds to reality and isn't just telling you what you want to hear.

What's worse is, quite a lot of quite clever people -- certainly much cleverer than the average voter -- are heavily invested in saying that you can, in fact, verify an online vote reliably. So they create and describe complex and elaborate protocols that they solemnly swear (or fervently believe) are 100% effective. But an average voter can't begin to know whether the protocols are effective. The complexity of these systems is well beyond their comprehension -- which is no slur on the average voter, I include myself in that category. Ultimately, we're still reduced to being asked to put our faith in a black box coupled with various people saying "trust us, it's totes legit".

Re:A comment and a question

[Mathinker]

> There is *no* way to verify your vote was counted correctly with online voting.

Unless you are volunteering to oversee the paper ballot counting process (of your own polling place, which if I am not mistaken is not usually even possible in most jurisdictions with paper ballots), the exact same is true for paper ballots. So what, exactly, is your point?

If it's that overseeing paper ballot counting is within the abilities of far more individuals than overseeing online voting, then I agree.

Re:A comment and a question

[AlanObject]

I can verify each and every ATM transaction and online banking transaction I ever made. Have for millions of dollars of transactions over decades.

And the system has made mistakes. I see them, call up, and they are corrected. Sometimes the bank corrects them before I even notice.

Not just me. Billions of customers world wide have the same capability.

And we can't have a secure online voting system. Really.

Re:A comment and a question

[shilly]

Don't you see the fundamental difference? An error at an ATM is checkable by you because it affects your bank balance. You know in advance what the right answer should be. An error (or deliberate falsification) of your vote count in an election is not checkable by you because you don't know in advance what the right answer should be when it's summed with all the other counts. This is an insuperable distinction.

Re:A comment and a question

[shilly]

It's a bit more than the fact that "overseeing paper ballot counting is within the abilities of far more individuals than overseeing online voting". It's that I don't *need* to check my individual result for a paper count. A big box of paper ballots is emptied in front of lots of people and lots of people then set to work counting. And other people check their counts. And check the sums when the counts from various boxes are added. There's no need to provide traceability of an individual vote because the conceptual model is different from an online vote: I physically place my paper ballot in the box which is in plain view of lots of people who all keep each other honest, and every step from then on is also in plain view of lots of people who keep each other honest. And it can all easily be recounted.

Re:A comment and a question

[AlanObject]

You don't seem to understand the available technology very well.

The list of all votes should be publicly accessible, countable by everyone and anyone. One URL per precinct, for example.

Each vote is anonymous but has a digital signature. Anyone can verify any vote for which they have the key which is on the receipt they got when they voted. That could be either online or at the polling place on a cheap-ass voting machine. (A Raspberry Pi with a display and mouse could do it.) But the local voters will decide what is the legal way to vote.

If fraud is suspected, which is possible but unlikely, many people will check their votes and complain if it looks like their vote is altered. If enough people raise a verifiable objection the authorities will be compelled to take action as directed by statute.

If someone manages to steal keys it will be an issue of voter privacy but not anything to do with altering the outcome of the election.

These are simple concepts that may be implemented by any of thousands (millions?) of unremarkable software coders using all open-source tools downloadable in minutes.

The only reason this isn't done is a general illiteracy among the general population, the officials, and political leaders in some combination that make it nearly impossible to move forward. After all, everyone "knows" it is impossible to have 100% secure systems. What is hard to make them understand is that although you want to have your systems as secure as you can possibly make them the key to having high-integrity elections is not that -- it is having a 1) publicly accessible verification system that would detect any fraud that matters, and 2) election laws that would respond to any fraud or error that actually occurs.

Re:A comment and a question

[bill_mcgonigle]

Trusting math means others can find holes and they can eventually be fixed. You should probably issue an HMAC on your vote using your private key (so then you have a key management problem, not a voting problem...) .

Trusting people means every single time malfeasance will happen somewhere and that can never get better. So that's worse.

But voting is the suggestion box of slaves so even if the technical problems are solved there's not likely to be any real change anyway. Securing voting is just a proxy symptom alleviation to the underlying problems.

Trust, but verity

[Wild_dog!]

There must always be a paper trail.
Then there is less likelihood that a breach won't be detected and an actual manual vote count is possible.

Re:Coincidence only

[Wild_dog!]

So people get some sort of say in how things are.
Elections have consequences.
Don't vote
Don't bitch about how things are.

would need control ... as well as help

[grep+-v+'.*'+*]

an attacker would need control over Swiss Post's secured IT infrastructure "as well as help from several insiders with specialist knowledge

I've got some chocolate to trade for a password or two. Or if not that, maybe some cheese?

Science Daily: Social engineering: Password in exchange for chocolate

Don't bother

[rickb928]

The state of the art is inadequate to ensure secure, valid, accurate vote acquisition and tabulation. And there is no reason to expect it will be any time soon.

Just stop. Those most interested in electronic voting are either profiting from the deployment, or profiting from manipulating the results.

Re:Maybe Accept Third-Party Verification?

[green1]

Paper voting has neither problem...

Look, I'm not against progress, I'm just against changing something that works when you don't have a replacement that can actually replace all it's existing features.

Not exactly reassuring

[rgmoore]

It also downplayed the vulnerability, however, saying that to exploit it, an attacker would need control over Swiss PostÃ(TM)s secured IT infrastructure "as well as help from several insiders with specialist knowledge of Swiss Post or the cantons."

Saying that the only people who could steal an election are a small cabal of government insiders is not particularly reassuring.

it's less expensive just to cancel the vote

[edris90]

As the US is thebiggest joke of the international community, I find it hard to believe that the Swiss haven't been laughing at us as we keep implementing more and more voting machines but keep getting proved to be hacked. Not just hackable. How they save themselves a bundle and just tell their people we're not having a real vote this year, and then just present whoever the voting machine manufacturer selected to win. we all expect governments to f*** over there people but do actually have to be so insultingly not sneaky about it and pretend nobody knows what they're doing?

Re: it's less expensive just to cancel the vote

[edris90]

Well that's actually part of the joke where the most powerful Nation yet the most in capable of utilizing that power to eliminate problems in our own country. All the power all the GDP and we are too short sighted to use it for anything worth doing. It may as well not exist at all for all the good it does.

Re: it's less expensive just to cancel the vote

[edris90]

Humor is not measured by power humor is measured by weather people are making fun of us. Look up stupid American jokes, research what other countries average populist think about America. Get yourself a good sampling source from other countries and then you will not be able to deny how big of a joke the us is. Power is no barrier to acting a fool. It is a gateway to you are against which is a precursor to foolish thinking and behavior

Re: it's less expensive just to cancel the vote

[kaatochacha]

Big deal. I don't worry about other countries making jokes. I worry about them shooting at me.
Make all the jokes you want, chuckles.

Should stay with paper

[AHuxley]

Count the paper votes in front of the needed set of witnesses.
Send the same count from each area to a final vote count.
Why trust a computer not to flip votes due to the politics of some NGO, think tank, mil, politics, other nation wanting Swiss votes to sway policy globally?
Return to paper and count every vote.
Make Swiss voting secure again.

Re:Coincidence only

[GlennC]

Don't vote
Don't bitch about how things are.

I prefer to turn it around. If I vote and the same group of amoral corporate whores gets in, they can reply "Well, YOU voted for this!"

Voting = plausible deniability for corrupt politicians.

Re:But

[arglebargle_xiv]

You mean the spaghetti harvest in Ticino?

Paper works ...

[JasterBobaMereel]

All computer systems are a black box, even if they are open source, how do you tell that is what the system is running ... and if you can, how do we know it is still running that after you looked ... and the system that is supposed to flag changes... who wrote that ... and can we verify it ... etc ... etc ... etc ...

Re:Everyone can be bought.

[Askmum]

Their comment shows how incomplete these people think. "Oh, you'd have to have access to our secure IT network and no hacker has that!".
Granted, I'll give you that much. But you have. Your government has. And especially that last party can have a very large interest in keeping the power where they think it belongs.
People seem to not realise that even though you can defraud paper ballots, the process is very hard and to be able to make significant impact you need a lot of people in on it. Defrauding an electronic ballot can be done by one person and can cover the complete ballot and can be undetectable. This single vulnerability is the reason why electronic ballots are a Bad Idea(tm).

Re:Keep it simple stupid

[shilly]

"Sure, you can trust this public key generator. Course you can"
"Of course no-one has linked your public key to your universal identifier number. You can totally trust us on that"
"Absolutely, what you see on the screen in front of you when you search for a universal identity number really reflects the reality of how your vote was (or was not) counted"
etc

A bit more intrincate than what it seems

[CustomSolvers2]

After quickly skimming through the corresponding paper, it is clear that the detected problem has nothing to do with what is usually understood as "backdoor". Apparently, the researchers are complaining about certain parts of the implementation of an encryption algorithm not being as reliable as they should theoretically be. Here you have a descriptive quote:

In summary: the implementation does not provide a proof, and the verifier cannot check, that the important assumption of discrete log hardness made by Bayer and Groth is valid here. It is possible for a malicious authority to generate the perfectly random G1,G2,...in a way that, at the same time, gives it a trapdoor that falsifies an assumption that is central to the security of the Bayer-Groth mixnet construction.

In other words, the reported problem could only be exploited by directly affecting the given application/code. More specifically, certain (assumed-to-be) random numbers would have to be replaced (+ wrong results introduced). The critic is that, if that happened, the given encryption algorithm wouldn't know about that alteration, unlikely what should theoretically occur.

So, the researchers found a way to theoretically affect a cryptographic algorithm in a way which, under ideal circumstances, shouldn't happen. This is what they meant with backdoor: possibility to modify the flow of information against the original intention of the program. Is that bad, should it be fixed, etc.? Sure. In fact, the main point here is precisely to not allow any unmonitored modification of precisely those results. On the other hand, the reference to a "critical backdoor" seems to imply a completely different thing. To not mention the fact that all this is a bit too theoretical and uncontrollable (even by assuming that I have access to the application, how could I get X more votes for party Y?).

I can see it now

[kaatochacha]

Switzerland votes to not be neutral, supports Russia!