iVoting
Neil McEvoy
Hi folks
I'm working on an RFP for Elections Canada, to migrate a legacy web
hosting environment to the Cloud. As part of this they want new apps
in the mix, particularly 'iVoting' - Online voting for elections.
A use case that i-Cards could be employed for?
Thanks, Neil.
Charles Andres
There are at least two issues with this.
1. i-Card (or any digital verified claims system) would require claims from an IdP that has been certified by the governing body holding the election.
2. Opportunity for coerced votes.
With 1, the governing body would need to certify the IdP. My understanding is that is part of what OIX.org is working on. But these are early days. The certification method needs definition and approval. The certification infrastructure would need to be in place. IdPs would need to be set up and go through the certification process for this to be used in practice.
2. It is easy to imagine that with an online vote that matters, people could be coerced to vote by force or threat. Unlike a voting system that requires registered voters to vote in an anonymous way at a voting place with poll watchers, any online voting system does not have such safeguards. Estonia tried e-voting in 2006, but as John Dvorak complained in one of his 'Cranky Geeks' broadcasts, the opportunity for voting at knifepoint were rife.
You can read more about a voting i-card proof of concept the ICF conducted with eCitizen in 2009 here.
Hope this helps,
- Charles Andres, ICF founding E.D.
--
General mailing list for Information Cards, the Information Card Foundation, and open identity infrastructure. For more information, visit http://informationcard.net
To post to this group, send email to icf-co...@googlegroups.com
To unsubscribe from this group, send email to
icf-communit...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/icf-community?hl=en
Dave Kearns
hasn't been a (known) problem, has it? Oregon (I think) went to an all
ballot-by-mail system without gangs roaming Portland to coerce voters.
Dvorak's an old Luddite, anyway.
-dave
On 3/25/2011 12:35 PM, Charles Andres wrote:
> Neil --
>
> There are at least two issues with this.
>
> 1. i-Card (or any digital verified claims system) would require claims
> from an IdP that has been certified by the governing body holding the
> election.
> 2. Opportunity for coerced votes.
>
> With 1, the governing body would need to certify the IdP. My
> understanding is that is part of what OIX.org is working on. But these
> are early days. The certification method needs definition and
> approval. The certification infrastructure would need to be in place.
> IdPs would need to be set up and go through the certification process
> for this to be used in practice.
>
> 2. It is easy to imagine that with an online vote that matters,
> people could be coerced to vote by force or threat. Unlike a voting
> system that requires registered voters to vote in an anonymous way at
> a voting place with poll watchers, any online voting system does not
> have such safeguards. Estonia tried e-voting in 2006, but as John
> Dvorak complained in one of his 'Cranky Geeks' broadcasts, the
> opportunity for voting at knifepoint were rife.
>
> You can read more about a voting i-card proof of concept the ICF
> conducted with eCitizen in 2009 here <http://informationcard.net/blog/9>.
>
> Hope this helps,
> - Charles Andres, ICF founding E.D.
>
> On Fri, Mar 25, 2011 at 9:59 AM, Neil McEvoy
> <neil....@cloudventures.biz <mailto:neil....@cloudventures.biz>>
> wrote:
>
>
> Hi folks
>
> I'm working on an RFP for Elections Canada, to migrate a legacy web
> hosting environment to the Cloud. As part of this they want new apps
> in the mix, particularly 'iVoting' - Online voting for elections.
>
> A use case that i-Cards could be employed for?
>
> Thanks, Neil.
>
> --
> General mailing list for Information Cards, the Information Card
> Foundation, and open identity infrastructure. For more
> information, visit http://informationcard.net
> To post to this group, send email to
> icf-co...@googlegroups.com <mailto:icf-co...@googlegroups.com>
> To unsubscribe from this group, send email to
> icf-communit...@googlegroups.com
> <mailto:icf-community%2Bunsu...@googlegroups.com>
John Bradley
There are a number of e-voting systems, like Helios http://heliosvoting.org/ as an example open source one.
Doing online voting properly is arguably more complex than SSO.
It is probably something that zero-Knoledge proofs could be used for, but I think that is a significant departure from the current u-prove prototype.
Many things will depend on what sort of voting we are talking about. If it is opinion polling the bar is lower than running a federal election.
I probably don't need to mention in & out and the charges brought by Elections Canada from the last election to show that there are people who have a significant interest in winning, for whom bending the rules is not unknown, even in Canada.
There are lots of things that could be done. The question is if you want to plough new ground on this.
John B.
Neil McEvoy
Hi folks
Thanks kindly for the awesome responses.
Does Microsoft withdrawal mean the end of Info cards?
Yes, I understand iVoting and Identity two seperate domains, but I presume
they're keenly related. Ie. An identity technology platform would enable
SSO, and it would also then provide the authentication key for iVoting
too; which would then have it's own seperate workflow challenges...
Ploughing new ground is what I'm all about so I'd love to try and move
something forward on this. As y'all know it's very timely now in Canada,
given they sacked the government just a few days ago. The iVoting
component of the Elections Canada RFP suddenly got a whole lot more
relevant... :-)
While we're not going to finalize its use in time, if we were able to
pilot some kind of demo use of it within this context, it could start a
significant ball rolling...
As a minimum there's opportunity to put forward a high level proposal to
this RFP.
Neil.
--
Sandy Porter
I-card 'daughter/son or V2' was being held back by the old I-Card
implementations. There was a need to evolve and change. One step on the road
is the new claims agent group. A very good user experience and support for
all devices need to be there from day one.
Kim's comment on his blog indicate to me that it was the implementation that
is the issue and Microsoft are on the same page as the rest of us.
"But mark my words, we WILL have a selector-based identity layer for the
Internet in the future. All Internet devices will have a selector or a
selector proxy for digital identity purposes."
OpenID ABC or Facebook Connect with I-card v2 on the backend? It will be
interesting to see what evolves and dominates.
Sandy
Kind regards
Sandy Porter
Strategy and Business Development Director Avoco Secure
M: +44 7917507636 M: +44 7836 210782 T: +44 1929 480806 W:
http://www.avocosecure.com
Avoco Secure is an innovation company whose areas of focus are applications
for security, information assurance and privacy, which enable end-to-end
trust and securing of information in a de-perimeterized environment.
Registered Office: Avoco Secure, 8 Clifford Street, London W1S 2LQ. Company
number : 04778206 - Registered in England and Wales.
This email including any attachments is confidential and may be legally
privileged. This email is intended solely for the use of the individual to
whom it is addressed. If you are not the intended recipient, be advised that
you have received this email in error, please advise the sender IMMEDIATELY
by return email and then DELETE it from your system. The unauthorised use,
distribution, dissemination, copying or alteration of this email is strictly
FORBIDDEN.
--
Neil McEvoy
Thanks Sandy.
It would seem to me one way to approach this is to consider adoption via a
path of i) Governments consider i-cards as a general mechanism for citizen
ID's, that this enables SSO across various e-gov apps, and ii) then each
use case builds atop this and adds additional software for their unique
workflow requirements, eg Helios for iVoting.
So there's some kind of key relationship between Helios and i-Cards, and
Elections Canada needs to participate in a Canadian-wide adoption of
i-Cards for online Citizen IDs?
Neil.
--
Sandy Porter
Spot on.
F. Randall Farmer
national Citizen ID" with SSO and voting?
Can't speak for Canada, but I know there are a few in the states that would
reject this, rather vociferously.
Randy
Thanks Sandy.
Neil.
> Strategy and Business Development Director - Avoco Secure
>
> E: sandy....@avocosecure.com
>
> M: +44 7917507636 M: +44 7836 210782 T: +44 1929 480806 W:
> http://www.avocosecure.com
>
> Avoco Secure is an innovation company whose areas of focus are
> applications
> for security, information assurance and privacy, which enable end-to-end
> trust and securing of information in a de-perimeterized environment.
>
> Registered Office: Avoco Secure, 8 Clifford Street, London W1S 2LQ.
> Company
> number : 04778206 - Registered in England and Wales.
>
> This email including any attachments is confidential and may be legally
> privileged. This email is intended solely for the use of the individual
> to
> whom it is addressed. If you are not the intended recipient, be advised
> that
> you have received this email in error, please advise the sender
> IMMEDIATELY
> by return email and then DELETE it from your system. The unauthorised use,
> distribution, dissemination, copying or alteration of this email is
> strictly
> FORBIDDEN.
>
>
> --
>
>
>
>
--
Neil McEvoy
Oh really how come, what have I missed? I thought the core ideals were
open standards and user-driven rather than government imposed etc etc.?
Neil McEvoy
Awesome thanks.
The Government of Canada currently has an RFP out for part i).
See: http://openrfp.net/Branded_ICAM
--