RFID-based electronic voting: What could possibly go wrong?

Yossef Oren; Avishai Wool

doi:10.1109/RFID.2010.5467269

RFID-based electronic voting: What could possibly go wrong?

Yossef Oren, Avishai Wool

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

6 Scopus citations

Abstract

When Israel's Ministry of Internal Affairs decided to move to electronic voting, it chose to replace the traditional paper ballot with secure contactless smartcards. The system was designed around HF RFID technology to make voting stations easier to use and less prone to mechanical faults. However, in doing so the system was exposed to a powerful class of hardware-based attacks called relay attacks, which can extend the interrogation range of HF RFID tags far beyond the nominal range of 5 centimetres. We show how a low-budget adversary armed with a relay device can read out all votes already cast into the ballot box, suppress the votes of one or several voters, rewrite votes at will and even completely disqualify all votes in a single voting station. Our attacks are easy to mount, very difficult to detect, and compromise both the confidentiality and the integrity of the election system.

Original language	English
Title of host publication	RFID 2010
Subtitle of host publication	International IEEE Conference on RFID
Pages	118-125
Number of pages	8
DOIs	https://doi.org/10.1109/RFID.2010.5467269
State	Published - 29 Jun 2010
Externally published	Yes
Event	4th Annual IEEE International Conference on RFID, RFID 2010 - Orlando, FL, United States Duration: 14 Apr 2010 → 15 Apr 2010

Publication series

Name	RFID 2010: International IEEE Conference on RFID

Conference

Conference	4th Annual IEEE International Conference on RFID, RFID 2010
Country/Territory	United States
City	Orlando, FL
Period	14/04/10 → 15/04/10

ASJC Scopus subject areas

Hardware and Architecture
Electrical and Electronic Engineering

Access to Document

10.1109/RFID.2010.5467269

Cite this

@inproceedings{d0aa26fecbc14c2d986c88ebdf6c528c,

title = "RFID-based electronic voting: What could possibly go wrong?",

abstract = "When Israel's Ministry of Internal Affairs decided to move to electronic voting, it chose to replace the traditional paper ballot with secure contactless smartcards. The system was designed around HF RFID technology to make voting stations easier to use and less prone to mechanical faults. However, in doing so the system was exposed to a powerful class of hardware-based attacks called relay attacks, which can extend the interrogation range of HF RFID tags far beyond the nominal range of 5 centimetres. We show how a low-budget adversary armed with a relay device can read out all votes already cast into the ballot box, suppress the votes of one or several voters, rewrite votes at will and even completely disqualify all votes in a single voting station. Our attacks are easy to mount, very difficult to detect, and compromise both the confidentiality and the integrity of the election system.",

author = "Yossef Oren and Avishai Wool",

year = "2010",

month = jun,

day = "29",

doi = "10.1109/RFID.2010.5467269",

language = "English",

isbn = "9781424457434",

series = "RFID 2010: International IEEE Conference on RFID",

pages = "118--125",

booktitle = "RFID 2010",

note = "4th Annual IEEE International Conference on RFID, RFID 2010 ; Conference date: 14-04-2010 Through 15-04-2010",

}

TY - GEN

T1 - RFID-based electronic voting

T2 - 4th Annual IEEE International Conference on RFID, RFID 2010

AU - Oren, Yossef

AU - Wool, Avishai

PY - 2010/6/29

Y1 - 2010/6/29

N2 - When Israel's Ministry of Internal Affairs decided to move to electronic voting, it chose to replace the traditional paper ballot with secure contactless smartcards. The system was designed around HF RFID technology to make voting stations easier to use and less prone to mechanical faults. However, in doing so the system was exposed to a powerful class of hardware-based attacks called relay attacks, which can extend the interrogation range of HF RFID tags far beyond the nominal range of 5 centimetres. We show how a low-budget adversary armed with a relay device can read out all votes already cast into the ballot box, suppress the votes of one or several voters, rewrite votes at will and even completely disqualify all votes in a single voting station. Our attacks are easy to mount, very difficult to detect, and compromise both the confidentiality and the integrity of the election system.

AB - When Israel's Ministry of Internal Affairs decided to move to electronic voting, it chose to replace the traditional paper ballot with secure contactless smartcards. The system was designed around HF RFID technology to make voting stations easier to use and less prone to mechanical faults. However, in doing so the system was exposed to a powerful class of hardware-based attacks called relay attacks, which can extend the interrogation range of HF RFID tags far beyond the nominal range of 5 centimetres. We show how a low-budget adversary armed with a relay device can read out all votes already cast into the ballot box, suppress the votes of one or several voters, rewrite votes at will and even completely disqualify all votes in a single voting station. Our attacks are easy to mount, very difficult to detect, and compromise both the confidentiality and the integrity of the election system.

UR - http://www.scopus.com/inward/record.url?scp=77953880124&partnerID=8YFLogxK

U2 - 10.1109/RFID.2010.5467269

DO - 10.1109/RFID.2010.5467269

M3 - Conference contribution

AN - SCOPUS:77953880124

SN - 9781424457434

T3 - RFID 2010: International IEEE Conference on RFID

SP - 118

EP - 125

BT - RFID 2010

Y2 - 14 April 2010 through 15 April 2010

ER -

RFID-based electronic voting: What could possibly go wrong?

Abstract

Publication series

Conference

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this