OK NTU, let’s cast e-vote!

Transcript

1. OK NTU, let’s cast e-vote! RSChiang 2018.10.6 / CC BY-SA

   4.0 我們來 投票吧！

2. RSChiang Senior in NTU College of Law; Founder of NTU

   Open Source Community; Former Tech Commissioner of NTU Student Assoc. Election & Recall Exec. Committee. Feel free to reach me @RSChiang on Twitter or [email protected]
3. None

4. Elections in NTU • The 30,000-elector event drew significant influence

   to the society, almost a democracy sandbox by itself. • Even before martial law was lifted in Taiwan, Student Association in NTU adapted a new constitution in 1988, with separation of powers and direct presidential election. • With a rich history of electoral suit, NTU bears an extremely detailed voting regulations in a nationwide scale.

5. Elector–Time stream graph of 2017 Spring NTUSA Joint Election, colored

   by voting station

6. Elector–Time stream graph of 2017 Spring NTUSA Joint Election, colored

   by college

7. Traditional vote ① Examine student ID and current registration stamp

   ② Sign for the ballot ③ Mark the ballot ④ Cast the vote → →

8. Labor costs Printing ballots, shipping voting boxes, counting

9. Experimental e-vote ① Examine student ID and current registration stamp

   ② Sign for the auth code ③ Vote through tablet

10. 2014/5/25

11. “Why aren’t you sleeping?” “I was called to do a

    vote system for your school’s election next week”

12. *visible confusion*

13. 原圖取自 2014 電子投票論壇〈102-2 NTUvote 技術說明〉簡報，MouseMs CC BY-NC 4.0

14. Rethinking the Architecture

15. Remodeled e-vote ① Scan the student ID ③ Examine identity

    on tablet ② Query registration status 　 from Academic Office ④ Dispatch auth code ⑤ Cast the vote
16. None

17. Improvements • Student IDs are Mifare-based Taipei Metro EasyCards with

    additional sector information; ID numbers could be extracted from a genuine card. • Incorporating with Academic Office records eliminates the need of examining the then- obsoleted registration stamps. • Programmatically dispatching authorization codes eliminates manual typos and the risk of leakage.

18. Auditing process • Authorization codes are counted after election •

    Every piece of log is retained – Server side: Authorization and dispatch requests – Voting station: network issues, abandoned votes – Numbers of used auth codes should match after calibration • Prefile standard procedures to reduce risks

19. Challenges & Adaptations

20. 下排照片取自臺大學生會選委會粉專，原文於 2014/12/17 發佈。

21. None

22. 照片取自臺大學生會選委會粉專，原文於 2015/4/3 發佈。

23. Homebuilt hardware ④ Dispatch 　 auth code ⑥ Callback on

    completion ① Scan the student ID ③ Examine identity on tablet ② Query registration status 　 from Academic Office ⑤ Cast the vote

24. 照片取自選務人員 Facebook ，原文於 2017/5/17 發佈。

25. Architecture shift ④ Dispatch auth code ⑥ Callback on completion

    ① Scan the student ID ③ Examine identity on PC ② Query registration status 　 from Academic Office ⑤ Cast the vote
26. None
27. None

28. Findings • Electronic voting greatly reduced the burden of establishing

    new voting stations – scaling become a matter of available budgets; skilled electoral staff could instruct and diagnose most of the issues. • Pressure shifted toward development and operation end. • Change of factors would induce risks and unwanted disturbances, especially when replacing working codes; yet stability is difficult to achieve without fully owning involving hardware and systems.

29. Making things complex • Election and Recall Act allows casting

    vote remotely through preauthorized links; these applications are manually validated and processed. • Unless fully automate the whole process, the distribution of such ballot is prone to error, and opens up potential electoral suit. • The irreversible nature of election system make disaster recovery difficult if not impossible; only a margin of error could be calculated for court defense.

30. Legal challenges • In the first hour of Spring 2017

    election, about 20% of the electors’ IDs were rejected. The problem was quickly identified as a regression of sector format by subcontractor, and patch was issued before noon. • EREC board decided to extend voting period for a day, which was later rejected by court decision. • The court found that election administration were not entitled to pause, postpone, or extend election periods even under technical disturbances under current regulations.

31. xkcd: Voting Software by Randall Munroe. CC BY-NC 2.5.

32. “We devote this university to the spirit of universe”

33. Thanks! RSChiang 2018.10.6 @ g0v summit 2018 / CC BY-SA

    4.0 Join the discussion on GitHub! rschiang/ntu- vote-auth-server