Towards a Mechanized Proof of Selene Receipt-Freeness and Vote-Privacy

  • Alessandro Bruni
  • Eva Drewsen
  • Carsten SchürmannEmail author
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 10615)


Selene is a novel voting protocol that supports individual verifiability, Vote-Privacy and Receipt-Freeness. The scheme provides tracker numbers that allow voters to retrieve their votes from a public bulletin board and a commitment scheme that allows them to hide their vote from a potential coercer. So far, however, Selene was never studied formally. The Selene protocol was neither completely formalized, nor were the correctness proofs for Vote-Privacy and Receipt-Freeness.

In this paper, we give a formal model for a simplified version of Selene in the symbolic model, along with a machine-checked proof of Vote-Privacy and Receipt-Freeness. All proofs are checked with the Tamarin theorem prover.


  1. 1.
    Abadi, M., Fournet, C.: Mobile values, new names, and secure communication. In: ACM SIGPLAN Notices, vol. 36, pp. 104–115. ACM (2001)Google Scholar
  2. 2.
    Adida, B.: Helios: Web-based open-audit voting. In: USENIX Security Symposium, vol. 17, pp. 335–348 (2008)Google Scholar
  3. 3.
    Basin, D., Dreier, J., Sasse, R.: Automated symbolic proofs of observational equivalence. In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, pp. 1144–1155. ACM (2015)Google Scholar
  4. 4.
    Blanchet, B., Abadi, M., Fournet, C.: Automated verification of selected equivalences for security protocols. J. Logic Algebraic Program. 75(1), 3–51 (2008)MathSciNetCrossRefzbMATHGoogle Scholar
  5. 5.
    Cortier, V., Smyth, B.: Attacking and fixing helios: an analysis of ballot secrecy. J. Comput. Secur. 21(1), 89–148 (2013)CrossRefGoogle Scholar
  6. 6.
    Cortier, V., Wiedling, C.: A formal analysis of the norwegian e-voting protocol. J. Comput. Secur. 25(1), 21–57 (2017)CrossRefGoogle Scholar
  7. 7.
    Delaune, S., Kremer, S., Ryan, M.: Verifying privacy-type properties of electronic voting protocols. J. Comput. Secur. 17(4), 435–487 (2009)CrossRefzbMATHGoogle Scholar
  8. 8.
    Dreier, J., Duménil, C., Kremer, S., Sasse, R.: Beyond subterm-convergent equational theories in automated verification of stateful protocols. In: 6th International Conference on Principles of Security and Trust (POST) (2017)Google Scholar
  9. 9.
    Drewsen, E.: Formal analysis of the selene voting protocol. Master’s thesis, IT University of Copenhagen, June 2017Google Scholar
  10. 10.
    Durán, F., Meseguer, J.: On the church-rosser and coherence properties of conditional order-sorted rewrite theories. J. Logic Algebraic Program. 81(7–8), 816–850 (2012)MathSciNetCrossRefzbMATHGoogle Scholar
  11. 11.
    Fujioka, A., Okamoto, T., Ohta, K.: A practical secret voting scheme for large scale elections. In: Seberry, J., Zheng, Y. (eds.) AUSCRYPT 1992. LNCS, vol. 718, pp. 244–251. Springer, Heidelberg (1993). doi: 10.1007/3-540-57220-1_66 Google Scholar
  12. 12.
    Gjøsteen, K.: The norwegian internet voting protocol. In: Kiayias, A., Lipmaa, H. (eds.) Vote-ID 2011. LNCS, vol. 7187, pp. 1–18. Springer, Heidelberg (2012). doi: 10.1007/978-3-642-32747-6_1 CrossRefGoogle Scholar
  13. 13.
    Lee, B., Boyd, C., Dawson, E., Kim, K., Yang, J., Yoo, S.: Providing receipt-freeness in mixnet-based voting protocols. In: Lim, J.-I., Lee, D.-H. (eds.) ICISC 2003. LNCS, vol. 2971, pp. 245–258. Springer, Heidelberg (2004). doi: 10.1007/978-3-540-24691-6_19 CrossRefGoogle Scholar
  14. 14.
    Meier, S.: Advancing automated security protocol verification. Ph.D. thesis, ETH Zürich (2013)Google Scholar
  15. 15.
    Okamoto, T.: Receipt-free electronic voting schemes for large scale elections. In: Christianson, B., Crispo, B., Lomas, M., Roe, M. (eds.) Security Protocols 1997. LNCS, vol. 1361, pp. 25–35. Springer, Heidelberg (1998). doi: 10.1007/BFb0028157 CrossRefGoogle Scholar
  16. 16.
    Pedersen, T.P.: Non-interactive and information-theoretic secure verifiable secret sharing. In: Feigenbaum, J. (ed.) CRYPTO 1991. LNCS, vol. 576, pp. 129–140. Springer, Heidelberg (1992). doi: 10.1007/3-540-46766-1_9 Google Scholar
  17. 17.
    Ryan, P.Y.A., Rønne, P.B., Iovino, V.: Selene: voting with transparent verifiability and coercion-mitigation. In: Clark, J., Meiklejohn, S., Ryan, P.Y.A., Wallach, D., Brenner, M., Rohloff, K. (eds.) FC 2016. LNCS, vol. 9604, pp. 176–192. Springer, Heidelberg (2016). doi: 10.1007/978-3-662-53357-4_12 CrossRefGoogle Scholar
  18. 18.
    Schmidt, B.: Formal analysis of key exchange protocols and physical protocols. Ph.D. thesis, Citeseer (2012)Google Scholar
  19. 19.
    Smyth, B., Bernhard, D.: Ballot secrecy and ballot independence: definitions and relations. Technical report, Cryptology ePrint Archive, Report 2013/235 (version 20141010: 082554) (2014)Google Scholar
  20. 20.
    The Tamarin Team. Tamarin-Prover Manual, April 2017Google Scholar

Copyright information

© Springer International Publishing AG 2017

Authors and Affiliations

  • Alessandro Bruni
    • 1
  • Eva Drewsen
    • 1
  • Carsten Schürmann
    • 1
    Email author
  1. 1.IT University of CopenhagenCopenhagenDenmark

Personalised recommendations