8/17/2019 5.2.4 - Non Functional Requirements
1/2
+ Security Requirements!!- The security requirements for this
system span all aspects of the voting process and include
voter authenticity, voter anonymity, data confidentiality,data
integrity, system accountability, system integrity, system
availability, system assurance, and system reliability- An
individual not registered to vote must not be able to cast a
ballot- A voter must not be able to vote more than once- The
privacy of the vote has to be guaranteed during the casting,
transfer, reception, collection, and tabulation of votes- No voter
should be able to prove that they voted in a certain way- None of
the participants involved in the voting process (organizers,
election officials, trusted third parties, voters, etc) should be
able to link a vote to an identifiable voter- Each vote is recorded
precisely as the voter intended!!- Each voter is ensured a "clean
slate" of the system to ensure equality,confidence, and minimize
system tampering- The outcome of the voting process must correspond
to the votes cast- It should be infeasible to exclude a valid vote
from the tabulation, and to validate a non-valid one- System
and voter operations are logged and audited- The system cannot be
re-configured during operation- Access to voted ballots is
prohibited until after the close of the polls- Additional ballots
cannot be cast once the polling place has closed- The system must
be open to independent inspection and auditing
- The system is protected against accidental and malicious
denial of service attacks
+ Privacy: the voting system has to protect privacy, concealing
the relation between voter and his/her cast vote, and ensuring that
the voter's choice will remain anonymous. This requirement must be
fulfilled once the voter has cast his/her vote and must be
preserved during the counting processes.
+ Integrity: A voting system has to protect the vote against
manipulation once it is cast and until it is counted. Therefore the
channel must to provide measures to prevent and/or detect any
attempted to change the voter's intent once the vote has been
cast.
+ Voter Verifiability - Cast as Intended: Voter must have the
possibility to check that his/her vote has been accurately
recorded. In the case of remote voting, this implies the
availability to check if the vote received by the election
officials and stored in the remote Ballot Box (in a physical or
electronic manner) is the same as cast by the voter. It is
important to note that the requirementcannot conflict with others
once.
+ Voter Verifiability - Counted as Cast: In the counted as cast
verification, voters must have the possibility to verify the
inclusion of his/her vote in the final tally. It is considered as
security improvement.
+ Prevention of Intermediate results: It is important to prevent
the disclosure
of intermediate results before the election is closed. This way,
or the voters have the same information during the voting stage.
This implies that the secrecyof the vote must be preserved until
the tally process.
+ Ballot Box Accuracy: Protection of the ballot box against the
addition of bogus -not genuine or true (used in a disapproving
manner when deception has been attempted).- ballots or the
elimination of valid ballots is needed. In the case that multiple
voting is allowed, this measured must guarantee that one vote per
voter will be counted.
