a critical analysis of the council of europe
play

A Critical Analysis of the Council of Europe ommendations on - PowerPoint PPT Presentation

A Critical Analysis of the Council of Europe Rec- A Critical Analysis of the Council of Europe ommendations on e-voting Recommendations on e-voting Margaret McGaley and J. Paul Gibson Introduction Margaret McGaley and J. Paul Gibson


  1. Contrasting approaches A Critical Analysis of US standards effort is older the Council of Europe Rec- CoE doc. is now two years old ommendations First FEC standards were produced in 1990 on e-voting Margaret Result – wider use McGaley and J. Paul Gibson Introduction Standards Examples Conclusion

  2. Contrasting approaches A Critical Analysis of US standards effort is older the Council of Europe Rec- CoE doc. is now two years old ommendations First FEC standards were produced in 1990 on e-voting Margaret Result – wider use McGaley and J. Paul Gibson US standards nominally voluntary, legally required in many states Introduction Standards Examples Conclusion

  3. Contrasting approaches A Critical Analysis of US standards effort is older the Council of Europe Rec- CoE doc. is now two years old ommendations First FEC standards were produced in 1990 on e-voting Margaret Result – wider use McGaley and J. Paul Gibson US standards nominally voluntary, legally required in many states Introduction To my knowledge only Belgium is using CoE doc Standards Examples Conclusion

  4. Contrasting approaches A Critical Analysis of US standards effort is older the Council of Europe Rec- CoE doc. is now two years old ommendations First FEC standards were produced in 1990 on e-voting Margaret Result – wider use McGaley and J. Paul Gibson US standards nominally voluntary, legally required in many states Introduction To my knowledge only Belgium is using CoE doc Standards Size Examples Conclusion

  5. Contrasting approaches A Critical Analysis of US standards effort is older the Council of Europe Rec- CoE doc. is now two years old ommendations First FEC standards were produced in 1990 on e-voting Margaret Result – wider use McGaley and J. Paul Gibson US standards nominally voluntary, legally required in many states Introduction To my knowledge only Belgium is using CoE doc Standards Size Examples US standards – 2 volumes = 22 documents = almost 300 Conclusion pages

  6. Contrasting approaches A Critical Analysis of US standards effort is older the Council of Europe Rec- CoE doc. is now two years old ommendations First FEC standards were produced in 1990 on e-voting Margaret Result – wider use McGaley and J. Paul Gibson US standards nominally voluntary, legally required in many states Introduction To my knowledge only Belgium is using CoE doc Standards Size Examples US standards – 2 volumes = 22 documents = almost 300 Conclusion pages CoE doc 21 pages (explanatory memorandum 67 pages)

  7. Contrasting approaches A Critical Analysis of US standards effort is older the Council of Europe Rec- CoE doc. is now two years old ommendations First FEC standards were produced in 1990 on e-voting Margaret Result – wider use McGaley and J. Paul Gibson US standards nominally voluntary, legally required in many states Introduction To my knowledge only Belgium is using CoE doc Standards Size Examples US standards – 2 volumes = 22 documents = almost 300 Conclusion pages CoE doc 21 pages (explanatory memorandum 67 pages) EAC doc. has much finer granularity

  8. Contrasting approaches A Critical Analysis of US standards effort is older the Council of Europe Rec- CoE doc. is now two years old ommendations First FEC standards were produced in 1990 on e-voting Margaret Result – wider use McGaley and J. Paul Gibson US standards nominally voluntary, legally required in many states Introduction To my knowledge only Belgium is using CoE doc Standards Size Examples US standards – 2 volumes = 22 documents = almost 300 Conclusion pages CoE doc 21 pages (explanatory memorandum 67 pages) EAC doc. has much finer granularity eg CoE doc. passing reference to testing (standard 111)

  9. Contrasting approaches A Critical Analysis of US standards effort is older the Council of Europe Rec- CoE doc. is now two years old ommendations First FEC standards were produced in 1990 on e-voting Margaret Result – wider use McGaley and J. Paul Gibson US standards nominally voluntary, legally required in many states Introduction To my knowledge only Belgium is using CoE doc Standards Size Examples US standards – 2 volumes = 22 documents = almost 300 Conclusion pages CoE doc 21 pages (explanatory memorandum 67 pages) EAC doc. has much finer granularity eg CoE doc. passing reference to testing (standard 111) EAC standards list and elaborate on 5 categories of testing

  10. Standards, analysis, requirements capture A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret Analysis - maximising problem domain understanding McGaley and J. Paul Gibson Introduction Standards Examples Conclusion

  11. Standards, analysis, requirements capture A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret Analysis - maximising problem domain understanding McGaley and J. Paul Gibson Interaction w/customer, potential users Introduction Standards Examples Conclusion

  12. Standards, analysis, requirements capture A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret Analysis - maximising problem domain understanding McGaley and J. Paul Gibson Interaction w/customer, potential users Introduction General analysis makes specific analysis easier Standards Examples Conclusion

  13. Standards, analysis, requirements capture A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret Analysis - maximising problem domain understanding McGaley and J. Paul Gibson Interaction w/customer, potential users Introduction General analysis makes specific analysis easier Standards Standards doc in general problem domain Examples useful in requirements capture for a specific system Conclusion

  14. Standards and the public A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and Standards could increase trust J. Paul Gibson Introduction Standards Examples Conclusion

  15. Standards and the public A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and Standards could increase trust J. Paul Gibson Associations with CoE alone could increase trust (rightly or Introduction wrongly) Standards Examples Conclusion

  16. Standards and the public A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and Standards could increase trust J. Paul Gibson Associations with CoE alone could increase trust (rightly or Introduction wrongly) Standards If written to address specific concerns ... Examples Conclusion

  17. Standards and the public A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and Standards could increase trust J. Paul Gibson Associations with CoE alone could increase trust (rightly or Introduction wrongly) Standards If written to address specific concerns ... Examples Standards used to reject inadequate systems Conclusion

  18. Standards and government A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and J. Paul Gibson Govs need expert advise Introduction Standards Examples Conclusion

  19. Standards and government A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and J. Paul Gibson Govs need expert advise Introduction Standards are reusable expertise Standards Examples Conclusion

  20. Standards and government A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and J. Paul Gibson Govs need expert advise Introduction Standards are reusable expertise Standards Should help procure better systems Examples Conclusion

  21. Standards and manufacturers A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and Improve quality of product J. Paul Gibson Introduction Standards Examples Conclusion

  22. Standards and manufacturers A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and Improve quality of product J. Paul Gibson Maintain, identify customer base Introduction Standards Examples Conclusion

  23. Standards and manufacturers A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and Improve quality of product J. Paul Gibson Maintain, identify customer base Introduction Aid design decisions - by making priorities clear Standards Examples Conclusion

  24. Standards and manufacturers A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and Improve quality of product J. Paul Gibson Maintain, identify customer base Introduction Aid design decisions - by making priorities clear Standards Examples Feedback to improve standards Conclusion

  25. Original Standards Themselves A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and J. Paul Gibson First glance Introduction Standards Examples Conclusion

  26. Original Standards Themselves A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and J. Paul Gibson First glance Introduction Clearly written by committee Standards Examples Conclusion

  27. Original Standards Themselves A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and J. Paul Gibson First glance Introduction Clearly written by committee Standards Vague and ill-defined, or overly technical, or nonsensical Examples Conclusion

  28. Soft/eng view of original standards A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Consistency Margaret McGaley and J. Paul Gibson Introduction Standards Examples Conclusion

  29. Soft/eng view of original standards A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Consistency Margaret McGaley and Completeness, scope J. Paul Gibson Introduction Standards Examples Conclusion

  30. Soft/eng view of original standards A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Consistency Margaret McGaley and Completeness, scope J. Paul Gibson Over specification Introduction Standards Examples Conclusion

  31. Soft/eng view of original standards A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Consistency Margaret McGaley and Completeness, scope J. Paul Gibson Over specification Introduction Standards Underspecification Examples Conclusion

  32. Soft/eng view of original standards A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Consistency Margaret McGaley and Completeness, scope J. Paul Gibson Over specification Introduction Standards Underspecification Examples Redundancy, repetition Conclusion

  33. Soft/eng view of original standards A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Consistency Margaret McGaley and Completeness, scope J. Paul Gibson Over specification Introduction Standards Underspecification Examples Redundancy, repetition Conclusion Maintainability, extensibility

  34. Proposal: reverse engineering, restructuring A Critical Analysis of Categorised according to five rights the Council of Europe Rec- ommendations on e-voting Margaret McGaley and J. Paul Gibson Introduction Standards Examples Conclusion

  35. Proposal: reverse engineering, restructuring A Critical Analysis of Categorised according to five rights the Council of Europe Rec- ommendations Universal, equal, free, secret, direct suffrage on e-voting Margaret McGaley and J. Paul Gibson Introduction Standards Examples Conclusion

  36. Proposal: reverse engineering, restructuring A Critical Analysis of Categorised according to five rights the Council of Europe Rec- ommendations Universal, equal, free, secret, direct suffrage on e-voting Original began like this, but didn’t follow it through Margaret McGaley and J. Paul Gibson Introduction Standards Examples Conclusion

  37. Proposal: reverse engineering, restructuring A Critical Analysis of Categorised according to five rights the Council of Europe Rec- ommendations Universal, equal, free, secret, direct suffrage on e-voting Original began like this, but didn’t follow it through Margaret McGaley and Direct suffrage J. Paul Gibson Introduction Standards Examples Conclusion

  38. Proposal: reverse engineering, restructuring A Critical Analysis of Categorised according to five rights the Council of Europe Rec- ommendations Universal, equal, free, secret, direct suffrage on e-voting Original began like this, but didn’t follow it through Margaret McGaley and Direct suffrage J. Paul Gibson “the ballots cast by the voters directly determine the Introduction person(s) elected” Standards Examples Conclusion

  39. Proposal: reverse engineering, restructuring A Critical Analysis of Categorised according to five rights the Council of Europe Rec- ommendations Universal, equal, free, secret, direct suffrage on e-voting Original began like this, but didn’t follow it through Margaret McGaley and Direct suffrage J. Paul Gibson “the ballots cast by the voters directly determine the Introduction person(s) elected” Standards any measure used to protect the votes from tampering Examples Conclusion

  40. Proposal: reverse engineering, restructuring A Critical Analysis of Categorised according to five rights the Council of Europe Rec- ommendations Universal, equal, free, secret, direct suffrage on e-voting Original began like this, but didn’t follow it through Margaret McGaley and Direct suffrage J. Paul Gibson “the ballots cast by the voters directly determine the Introduction person(s) elected” Standards any measure used to protect the votes from tampering Examples any measure to ensure that the results are tabulated Conclusion correctly.

  41. Proposal: reverse engineering, restructuring A Critical Analysis of Categorised according to five rights the Council of Europe Rec- ommendations Universal, equal, free, secret, direct suffrage on e-voting Original began like this, but didn’t follow it through Margaret McGaley and Direct suffrage J. Paul Gibson “the ballots cast by the voters directly determine the Introduction person(s) elected” Standards any measure used to protect the votes from tampering Examples any measure to ensure that the results are tabulated Conclusion correctly. Organising reqs like this helps

  42. Proposal: reverse engineering, restructuring A Critical Analysis of Categorised according to five rights the Council of Europe Rec- ommendations Universal, equal, free, secret, direct suffrage on e-voting Original began like this, but didn’t follow it through Margaret McGaley and Direct suffrage J. Paul Gibson “the ballots cast by the voters directly determine the Introduction person(s) elected” Standards any measure used to protect the votes from tampering Examples any measure to ensure that the results are tabulated Conclusion correctly. Organising reqs like this helps prevent inconsistency and redundancy

  43. Proposal: reverse engineering, restructuring A Critical Analysis of Categorised according to five rights the Council of Europe Rec- ommendations Universal, equal, free, secret, direct suffrage on e-voting Original began like this, but didn’t follow it through Margaret McGaley and Direct suffrage J. Paul Gibson “the ballots cast by the voters directly determine the Introduction person(s) elected” Standards any measure used to protect the votes from tampering Examples any measure to ensure that the results are tabulated Conclusion correctly. Organising reqs like this helps prevent inconsistency and redundancy maximise cover - prevent underspecification

  44. Proposal: reverse engineering, restructuring A Critical Analysis of Categorised according to five rights the Council of Europe Rec- ommendations Universal, equal, free, secret, direct suffrage on e-voting Original began like this, but didn’t follow it through Margaret McGaley and Direct suffrage J. Paul Gibson “the ballots cast by the voters directly determine the Introduction person(s) elected” Standards any measure used to protect the votes from tampering Examples any measure to ensure that the results are tabulated Conclusion correctly. Organising reqs like this helps prevent inconsistency and redundancy maximise cover - prevent underspecification easier to understand and use

  45. New structured reqs A Critical Analysis of the Council of Europe Rec- ommendations About 80 on e-voting Margaret McGaley and J. Paul Gibson Introduction Standards Examples Conclusion

  46. New structured reqs A Critical Analysis of the Council of Europe Rec- ommendations About 80 on e-voting Margaret Most needed rewording McGaley and J. Paul Gibson Introduction Standards Examples Conclusion

  47. New structured reqs A Critical Analysis of the Council of Europe Rec- ommendations About 80 on e-voting Margaret Most needed rewording McGaley and J. Paul Gibson Many covered more than one idea Introduction Divided with letters (a, b, ...) Standards Examples Conclusion

  48. New structured reqs A Critical Analysis of the Council of Europe Rec- ommendations About 80 on e-voting Margaret Most needed rewording McGaley and J. Paul Gibson Many covered more than one idea Introduction Divided with letters (a, b, ...) Standards Many could be grouped together Examples Conclusion

  49. New structured reqs A Critical Analysis of the Council of Europe Rec- ommendations About 80 on e-voting Margaret Most needed rewording McGaley and J. Paul Gibson Many covered more than one idea Introduction Divided with letters (a, b, ...) Standards Many could be grouped together Examples 15 left out Conclusion Irrelevant, inadvisable, undecipherable, unjustifiable

  50. New structured reqs A Critical Analysis of the Council of Europe Rec- ommendations About 80 on e-voting Margaret Most needed rewording McGaley and J. Paul Gibson Many covered more than one idea Introduction Divided with letters (a, b, ...) Standards Many could be grouped together Examples 15 left out Conclusion Irrelevant, inadvisable, undecipherable, unjustifiable Phrase “competent electoral authorities”

  51. Requirements added A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret 19 (3d) McGaley and J. Paul Gibson There shall be a bug-tracking system. Introduction Standards Examples Conclusion

  52. Requirements added A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret 19 (3d) McGaley and J. Paul Gibson There shall be a bug-tracking system. 20 (4) Introduction Standards Security arrangements shall ensure that, for the duration of Examples operation, each component is the version tested and Conclusion approved for use.

  53. Requirements rephrased A Critical Analysis of the Council of Europe Rec- (original) ommendations on e-voting 76. Where incidents that could threaten the integrity of Margaret the system occur, those responsible for operating the McGaley and J. Paul Gibson equipment shall immediately inform the competent electoral authorities , who will take the necessary steps to Introduction mitigate the effects of the incident. The level of incident Standards which shall be reported shall be specified in advance by the Examples electoral authorities. Conclusion

  54. Requirements rephrased A Critical Analysis of the Council of Europe Rec- (original) ommendations on e-voting 76. Where incidents that could threaten the integrity of Margaret the system occur, those responsible for operating the McGaley and J. Paul Gibson equipment shall immediately inform the competent electoral authorities , who will take the necessary steps to Introduction mitigate the effects of the incident. The level of incident Standards which shall be reported shall be specified in advance by the Examples electoral authorities. Conclusion (our revision) 20 (5). Incident levels shall be defined and appropriate responses identified.

  55. Requirements rephrased A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret (original) McGaley and J. Paul Gibson 74b. Any substantial changes to key equipment shall be notified . Introduction Standards Examples Conclusion

  56. Requirements rephrased A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret (original) McGaley and J. Paul Gibson 74b. Any substantial changes to key equipment shall be notified . Introduction (our revision) Standards Examples 20 (6f). Any changes to key equipment shall be notified to Conclusion the authorities identified in the control procedure.

  57. Requirements merged A Critical (original) Analysis of the Council of Europe Rec- ommendations on e-voting Margaret McGaley and J. Paul Gibson Introduction Standards Examples Conclusion

  58. Requirements merged A Critical (original) Analysis of the Council of 25. Before any e-voting system is introduced, and at Europe Rec- ommendations appropriate intervals thereafter, and in particular after any on e-voting changes are made to the system, an independent body, Margaret appointed by the electoral authorities , shall verify that the McGaley and J. Paul Gibson e-voting system is working correctly and that all the necessary security measures have been taken. Introduction Standards Examples Conclusion

  59. Requirements merged A Critical (original) Analysis of the Council of 25. Before any e-voting system is introduced, and at Europe Rec- ommendations appropriate intervals thereafter, and in particular after any on e-voting changes are made to the system, an independent body, Margaret appointed by the electoral authorities , shall verify that the McGaley and J. Paul Gibson e-voting system is working correctly and that all the necessary security measures have been taken. Introduction 31. Before any e-election or e-referendum takes place, the Standards competent electoral authority shall satisfy itself that the Examples e-voting system is genuine and operates correctly . Conclusion

  60. Requirements merged A Critical (original) Analysis of the Council of 25. Before any e-voting system is introduced, and at Europe Rec- ommendations appropriate intervals thereafter, and in particular after any on e-voting changes are made to the system, an independent body, Margaret appointed by the electoral authorities , shall verify that the McGaley and J. Paul Gibson e-voting system is working correctly and that all the necessary security measures have been taken. Introduction 31. Before any e-election or e-referendum takes place, the Standards competent electoral authority shall satisfy itself that the Examples e-voting system is genuine and operates correctly . Conclusion 73. Before each election or referendum, the equipment shall be checked and approved in accordance with a protocol drawn up by the competent electoral authorities. The equipment shall be checked to ensure that it complies with technical specifications . The findings shall be submitted to the competent electoral authorities .

  61. Requirements merged A Critical Analysis of the Council of Europe Rec- ommendations on e-voting Margaret (our revision) McGaley and J. Paul Gibson 19 (6). The certification authority shall develop a test plan which covers testing to be carried out: before the system is Introduction introduced, at regular intervals, and triggered by specific Standards events (for example software updates, upcoming elections) Examples as well as the timing of such tests. Conclusion

  62. Requirements merged A Critical Analysis of the Council of Europe Rec- ommendations (original) on e-voting Margaret McGaley and J. Paul Gibson Introduction Standards Examples Conclusion

  63. Requirements merged A Critical Analysis of the Council of Europe Rec- ommendations (original) on e-voting 72a. Those responsible for the equipment shall use special Margaret McGaley and procedures to ensure that during the polling period the J. Paul Gibson voting equipment and its use satisfy requirements. Introduction Standards Examples Conclusion

  64. Requirements merged A Critical Analysis of the Council of Europe Rec- ommendations (original) on e-voting 72a. Those responsible for the equipment shall use special Margaret McGaley and procedures to ensure that during the polling period the J. Paul Gibson voting equipment and its use satisfy requirements. Introduction 79a. The e-voting system shall perform regular checks to Standards ensure that its components operate in accordance with its Examples technical specifications. Conclusion

  65. Requirements merged A Critical Analysis of the Council of Europe Rec- ommendations (original) on e-voting 72a. Those responsible for the equipment shall use special Margaret McGaley and procedures to ensure that during the polling period the J. Paul Gibson voting equipment and its use satisfy requirements. Introduction 79a. The e-voting system shall perform regular checks to Standards ensure that its components operate in accordance with its Examples technical specifications. Conclusion (our revision) 20 (3). The system shall be monitored during operation for compliance with requirements.

  66. Requirements contradicted A Critical Analysis of the Council of Europe Rec- ommendations (original) on e-voting 84. The e-voting system shall maintain reliable Margaret McGaley and synchronised time sources . The accuracy of the time J. Paul Gibson source shall be sufficient to maintain time marks for audit Introduction trails and observations data, as well as for maintaining the Standards time limits for registration, nomination, voting, or Examples counting. Conclusion

  67. Requirements contradicted A Critical Analysis of the Council of Europe Rec- ommendations (original) on e-voting 84. The e-voting system shall maintain reliable Margaret McGaley and synchronised time sources . The accuracy of the time J. Paul Gibson source shall be sufficient to maintain time marks for audit Introduction trails and observations data, as well as for maintaining the Standards time limits for registration, nomination, voting, or Examples counting. Conclusion (our revision) 19(2). Components’ access to time sources shall be strictly limited on a “need to know” basis.

  68. Requirements contradicted A Critical Analysis of (original) the Council of Europe Rec- ommendations on e-voting Margaret McGaley and J. Paul Gibson Introduction Standards Examples Conclusion

  69. Requirements contradicted A Critical Analysis of (original) the Council of Europe Rec- 24. The components of the e-voting system shall be ommendations on e-voting disclosed, at least to the competent electoral authorities, as required for verification and certification purposes. Margaret McGaley and J. Paul Gibson Introduction Standards Examples Conclusion

Recommend


More recommend