JP5397858B2 - Electronic voting media - Google Patents

Description

  The present invention relates to an electronic voting medium used for electronic voting.

  In recent years, with the development of computers, electronic voting using computers has been attracting attention because it can be expected to perform safe and quick processing. Electronic voting using a computer includes electronic voting using a computer for counting, electronic voting using a computer for voting, electronic voting using a network computer for voting from a remote location, and the like.

  Such electronic voting requires that no one knows who voted to whom, so-called confidentiality, and that anyone can confirm that the voting results have been correctly counted at any time after counting. The

  As a system that considers such a requirement, an electronic voting system that is disclosed in Patent Document 1 and that includes a certification authority and a counting authority is known.

  In the system disclosed in Patent Document 1, a voting device encrypts a voter's digital certificate with a public key of a certification authority, and gives predetermined information (a voter for knowing that his / her votes are correctly counted). A signature block that encrypts a voting message containing information known only by the public key of the tallying agency, concatenates the encrypted digital certificate and the encrypted voting message, and encrypts it with the secret key of the voting device To the certification body. The certificate authority decrypts the signature block with the public key of the voting device, decrypts the digital certificate with the secret key of the certificate authority, authenticates it, and transfers it to the aggregation organization. The aggregation organization decrypts the signature block with the public key of the voting device, and decrypts and aggregates the voting message with the secret key of the aggregation organization. Therefore, in the system disclosed in Patent Document 1, since the certification authority cannot decrypt the voting message and the aggregation authority cannot decrypt the digital certificate, no one knows who voted to whom. The voter can know that his / her votes have been correctly counted based on predetermined information in the voting message published by the counting organization.

JP 2005-509366 A

  However, the system disclosed in Patent Document 1 links a digital certificate and a voting message. Therefore, when the certification authority obtains the secret key of the aggregation organization or the aggregation organization obtains the secret key of the certification organization, the system disclosed in Patent Document 1 knows which voter voted to whom. End up. That is, the system disclosed in Patent Document 1 cannot ensure confidentiality.

  Moreover, in the system disclosed in Patent Document 1, the certification authority issues a unique serial number to the voter. And the system which patent document 1 discloses makes it possible to vote only once by the serial number in order to prevent an illegal vote. Such a system can be cumbersome because it is necessary to authenticate each voter in order to issue a unique serial number.

  Therefore, there is a demand for an apparatus that can prevent illegal voting in electronic voting and can vote as many times as possible within a predetermined date of vote if the same person.

  It is an object of the present invention to provide a device capable of voting as many times as possible within a predetermined vote date in the electronic voting, and easily preventing illegal voting. Objective.

  The present invention provides the following solutions.

  (1) An electronic voting medium for writing the contents of a vote, medium identification information storage means for storing medium identification information for identifying the electronic voting medium, time acquisition means for acquiring the current time, Voting identification code creating means for creating a voting identification code for each vote based on the medium identification information stored by the medium identification information storage means and the serial number including the time obtained by the time obtaining means; Voting for inputting the vote identification code output means for outputting the latest vote identification code among the vote identification codes, the electronic voting data in which the public key is written by a predetermined method, and the contents of the vote indicating the accepted candidate A data input means; a confirmation code creating means for creating a confirmation code in association with the voting content; and extracting the voting content and the confirmation code. Password creating means for creating a password for performing, voting content writing means for embedding the voting content and the confirmation code in the electronic voting data based on the password created by the password creating means, and the voting data Public key acquisition means for acquiring the public key from the electronic voting data input by the input means; and encrypting the password based on the public key acquired by the public key acquisition means in the electronic voting data. An electronic voting medium comprising: an embedded encryption writing means; and an electronic voting data output means for outputting electronic voting data written by the encrypted writing means.

  According to the configuration of (1), the electronic voting medium according to the present invention is an electronic voting medium for writing the contents of voting, and a medium identification information storage for storing medium identification information for identifying the electronic voting medium Have means. The electronic voting medium according to the present invention acquires the current time, and identifies the vote for each vote based on the medium identification information stored by the medium identification information storage unit and the serial number including the acquired time. A code is created, and the latest vote identification code among the vote identification codes is output. The electronic voting medium according to the present invention inputs the electronic voting data in which the public key is written by a predetermined method and the voting content indicating the accepted candidate, and creates a confirmation code in association with the voting content. Create a password for extracting the voting content and confirmation code, embed the voting content and confirmation code in the electronic voting data based on the created password, and obtain the public key from the input electronic voting data The password is encrypted and embedded in the electronic voting data based on the acquired public key, and the written electronic voting data is output.

  That is, the electronic voting medium according to the present invention outputs medium identification information for identifying the medium, and electronic voting data in which the voting contents and confirmation code and the encrypted password are embedded. Therefore, the system for counting electronic voting data can identify the electronic voting data output together with the medium identification information, and the electronic voting data voted many times by the same person from the same electronic voting medium until the date of voting. It can be regarded as one vote by the identification information. Therefore, the electronic voting medium according to the present invention is capable of creating electronic voting data that can be voted as many times as possible within the electronic voting by the determined date of vote, and is illegal. It is possible to create electronic voting data that can easily prevent voting.

  Furthermore, since the contents of the vote and the confirmation code are embedded in the electronic voting data based on the password, the electronic voting medium according to the present invention is a password obtained with the consent of the principal, apart from decryption with the private key. It is possible to create electronic voting data from which voting content can be extracted. Therefore, the electronic voting medium according to the present invention can create electronic voting data that can confirm and verify that the counting after voting is correctly performed.

  (2) Voting data storage means for storing the voting contents and the confirmation code in association with the password and the voting identification code; the voting contents and the confirmation code stored in the voting data storage means; The electronic voting medium according to (1), further comprising display means for displaying the password and the voting identification code in association with each other.

  According to the configuration of (2), the electronic voting medium described in (1) further stores a voting content and a confirmation code in association with a password and a voting identification code, and stores the stored voting content and confirmation. A code, a password, and a vote identification code are displayed in association with each other.

  Therefore, the electronic voting medium described in (2) can easily provide a voter with a confirmation code for confirming the voting content and a password for verifying the voting content.

  According to the present invention, in the electronic voting medium, the electronic voting medium can vote as many times as possible within a predetermined date of vote, and can easily prevent illegal voting. Electronic voting data can be created.

  Furthermore, since the voting identification code created by the electronic voting medium is created separately from the confirmation code paired with the voting content, the voting identification code is not associated with the published confirmation code. Therefore, the electronic voting medium can create electronic voting data that can be specified by the voting identification code, and can create electronic voting data that satisfies the anonymity of the voter.

  Further, the electronic voting medium can create electronic voting data that can extract the voting contents by a password obtained with the consent of the person, apart from the decryption by the secret key. Therefore, the electronic voting medium can create electronic voting data that can confirm and verify that the counting after voting is correctly performed.

It is a characteristic view which shows the characteristic of Embodiment 1 of the electronic voting system which concerns on one Embodiment of this invention. It is a figure which shows the example of the whole image data which concerns on one Embodiment of this invention. It is a figure which shows the example of the division | segmentation image data which concerns on one Embodiment of this invention. It is explanatory drawing explaining the gradation value of the pixel which comprises the divided image data based on one Embodiment of this invention, and generation | occurrence | production of a pseudorandom number. It is a figure explaining disassembling and embedding the binary value of data into bits in divided image data concerning one embodiment of the present invention. It is a figure which shows another example of the division | segmentation image data which concerns on one Embodiment of this invention. It is a figure which shows the example of the area | region set in order to calculate the position of the several pixel for embedding the data of the electronic voting data based on one Embodiment of this invention. It is a characteristic diagram which shows the characteristic of Embodiment 2 of the electronic voting system which concerns on one Embodiment of this invention. It is a functional block diagram which shows the function of the electronic voting data creation apparatus which concerns on one Embodiment of this invention. It is a functional block diagram which shows the function of the electronic voting apparatus which concerns on one Embodiment of this invention. It is a functional block diagram which shows the function of the electronic ticketing apparatus which concerns on one Embodiment of this invention. It is a flowchart which shows the processing content of the electronic voting data creation apparatus which concerns on one Embodiment of this invention. It is a flowchart which shows the content of the encryption process which concerns on one Embodiment of this invention. It is a flowchart which shows the processing content of GetPos which concerns on one Embodiment of this invention. It is a flowchart which shows the processing content of the electronic voting apparatus which concerns on one Embodiment of this invention. It is a flowchart which shows the processing content of the electronic ticketing apparatus which concerns on one Embodiment of this invention. It is a figure which shows the correspondence table of the bit which concerns on one Embodiment of this invention. It is a figure which shows the example which produces the electronic voting data 521 in the electronic voting data creation apparatus which concerns on one Embodiment of this invention. It is a figure which shows the example which displays electronic voting data in the electronic voting apparatus which concerns on one Embodiment of this invention. It is a figure which shows the example which totals and announces electronic voting data in the electronic vote counting device which concerns on one Embodiment of this invention. It is a functional block diagram which shows the function of the encryption apparatus which concerns on one Embodiment of this invention. It is a functional block diagram which shows the function of the electronic voting medium which concerns on one Embodiment of this invention. It is a figure which shows the example of the electronic voting medium which concerns on one Embodiment of this invention. It is a figure which shows the example of the electronic voting system using the electronic voting medium which concerns on one Embodiment of this invention. It is a flowchart which shows the processing content of the voting program using the electronic voting medium based on one Embodiment of this invention. It is a flowchart which shows the processing content of the electronic voting medium which concerns on one Embodiment of this invention. It is a flowchart which shows the processing content of the electronic voting data creation apparatus in the case of using the electronic voting medium based on one Embodiment of this invention. It is a flowchart which shows the processing content of the electronic vote counting apparatus when using the electronic voting medium which concerns on one Embodiment of this invention.

  Hereinafter, embodiments of the present invention will be described with reference to the drawings. That is, the electronic voting system 10 premised on the electronic voting medium 700 according to the present invention is described in the first embodiment, and the electronic voting using a password is premised on the electronic voting medium 700 according to the present invention in the second embodiment. The system 10 will be described. In the third embodiment, the encryption device 400 that executes the encryption method used in the electronic voting medium 700 according to the present invention will be described. In the fourth embodiment, the electronic voting medium 700 according to the present invention will be described. explain.

[Embodiment 1]
The first embodiment is an example of the electronic voting system 10. The electronic voting system 10 according to the first embodiment includes an electronic voting data creation device 100, an electronic voting device 200, and an electronic voting device 300. Then, the electronic voting data creation apparatus 100 creates the electronic voting data 521 by embedding the public key in the divided image data 511 among the key pair (public key and private key) created based on the entire image data 501. The electronic voting apparatus 200 encrypts the received voting content and confirmation code using the public key embedded in the electronic voting data 521 and embeds it in the electronic voting data 521. The electronic voting apparatus 300 uses the private key of the key pair (public key and private key) created based on the collected divided image data 511, and the encrypted voting content and confirmation embedded in the electronic voting data 521 Decode and publish the code.

  This embodiment is applied to a computer and its peripheral devices. The electronic voting data creation device 100, the electronic voting device 200, and the electronic voting device 300 in the present embodiment are configured by hardware included in a computer and its peripheral devices, and software that controls the hardware.

  The hardware includes a storage unit, a communication device, a display device, and an input device in addition to a CPU (Central Processing Unit) as a control unit. Examples of the storage unit include a memory (RAM: Random Access Memory, ROM: Read Only Memory, etc.), a hard disk drive (HDD: Hard Disk Drive), and an optical disk (CD: Compact Disc, DVD: Digital Versatile Drive, etc.). It is done. Examples of the communication device include various wired and wireless interface devices. Examples of the display device include various displays such as a liquid crystal display and a plasma display. Examples of the input device include a keyboard and a pointing device (mouse, tracking ball, etc.).

  The software includes a computer program and data for controlling the hardware. The computer program and data are stored in the storage unit, and are appropriately executed and referenced by the control unit. The computer program and data can be distributed via a communication line, or can be recorded on a computer-readable medium such as a CD-ROM and distributed.

  FIG. 1 is a feature diagram showing features of Embodiment 1 of an electronic voting system 10 according to an embodiment of the present invention. The outline of the electronic voting system 10 will be described for each device according to the feature diagram.

  The electronic voting data creation apparatus 100 divides the whole image data 501 and embeds a plurality of pieces of electronic voting data 521 uniquely by embedding a public key created based on the whole image data 501 in the divided divided image data 511. create. That is, the electronic voting data creation apparatus 100 creates the electronic voting data 521 by embedding a public key in a different position for each electronic voting data 521 based on the pixel values constituting the divided image data 511.

  Here, the entire image data 501 is digital image data composed of pixels which are the minimum elements of the image. Digital image data is composed of pixel values obtained by digitizing luminance and color of pixels. The pixel value is, for example, an R channel that stores gradation values obtained by digitizing red among the three primary colors, a G channel that stores gradation values obtained by digitizing green, and a gradation value obtained by digitizing blue. The B channel is configured. For example, in the digital image data, pixel values are stored in a main memory, an auxiliary storage device, or the like in a two-dimensional array format. The divided image data 511 is image data obtained by dividing the entire image data 501 by a predetermined number.

  Here, human vision is characterized in that it is difficult to notice a change in blue among the three primary colors constituting the image. Therefore, the present invention hides data in the B channel among the gradation values of the three primary colors constituting the image so that the image does not feel uncomfortable even when the image is visually recognized while serving as an encrypted book. can do.

  The electronic voting data creation apparatus 100 creates a public key by performing a predetermined calculation based on the pixel values constituting the entire image data 501. The predetermined calculation is, for example, a channel (calculation channel) other than a predetermined channel (storage channel, for example, B channel) into which a public key is written out of pixel values constituting the entire image data 501. , R channel and / or G channel) are added, bit operations are performed, and the like. Then, the electronic voting data creation device 100 creates a key pair (public key and secret key) created by, for example, the RSA encryption method, based on the entire image code that is a calculation result of a predetermined calculation.

For example, the electronic voting data creation device 100 first selects an appropriate positive integer e (for example, 60001). Next, the electronic voting data creation device 100 obtains a set of large prime numbers (p, q) at random using the entire image code as a parameter, and obtains N, which is the product of p and q. The electronic voting data creation apparatus 100 uses the obtained (e, N) as a public key. In this case, the secret key d is obtained by d = e ⁻¹ (mod (lcm (p−1) (q−1))).

  Furthermore, the electronic voting data creation device 100 converts the whole image code and a code (for example, a secret code described later in FIG. 9) calculated based on the input code (for example, a secret code described later in FIG. 9). A large prime number pair (p, q) may be obtained based on the key pair (public key and secret key).

  Then, the electronic voting data creation device 100 embeds the public key in the divided image data 511 by a method of embedding data.

Data is embedded by the following methods (1) to (3).
(1) A plurality of pixels for embedding data are calculated. A plurality of pixels are calculated as follows.
(1-1) A predetermined calculation is performed based on the gradation value of each calculation channel of the pixels constituting the divided image data 511. That is, a predetermined number of pseudo-random numbers are generated using the bit weight of the gradation value of each pixel constituting the divided image data 511. The predetermined number of pseudo-random numbers may be calculated by a predetermined calculation based on the pixels in the area set in the divided image data 511.
(1-2) A predetermined number of positions in the divided image data 511 are calculated based on the generated predetermined number of pseudo-random numbers. For example, the position is calculated by calculating the position (vertical and horizontal) in the divided image data 511 by the remainder obtained by dividing the generated pseudo-random number by the total number of pixels of the divided image data 511 (vertical pixel number × horizontal pixel number). Position) can be calculated. As described above, the position calculated based on the pseudo random number generated from the gradation value of each pixel is different when the divided image data 511 is different. Therefore, the position can be calculated for each divided image data 511 in a distributed position that cannot be predicted.

(2) A bit weight is associated with a predetermined bit of each storage channel of the calculated plurality of pixels. That is, bit weights are associated with predetermined bits (for example, 3 for embedding a public key) of each storage channel in the order calculated in (1). For example, a bit weight “2 ⁰ ” is associated with a predetermined bit (for example, bit 3) of the pixel storage channel calculated first. Similarly, a bit weight “2 ⁿ ” is associated with a predetermined bit (for example, bit 3) of the n-th calculated pixel storage channel.

(3) The data is embedded by decomposing the binary value of the data into bits and writing them in predetermined bits associated with bit weights. Thus, for example, "2 ^0" are associated to bit 3 of the storage channels of the initially calculated pixel writes "2 ^0" bit value among the bits forming the binary value of the public key. Then, "2 ^1" is associated, then the bit 3 of the storage channel of the pixel is calculated, and writes "2 ^1" bit value among the bits forming the binary value of the public key. By sequentially writing the value of “2 ⁿ ” bits among the bits constituting the binary value of the public key to bit 3 of the calculated pixel storage channel associated with “2 ⁿ ” sequentially in this way. Embed the public key.

  The predetermined bits of the storage channel are, for example, a bit for embedding the voting content and confirmation code in which bit 1 is encrypted, a bit for embedding an encrypted password in bit 2, a bit for embedding a public key, bit 4 Is a bit for embedding the unique code (MD5) of the image, bit 5 is a bit for embedding redundant information of the entire image code, and bit 6 indicates the voting state of the electronic voting data 521 (for example, 0 for the white vote state and 1 for the voted state) ) Is a bit to embed information about.

  The data embedded by the data embedding method can restore the data embedded by the data restoring method.

  The method of restoring data is by combining the value of the embedded bit with a binary value according to the bit weight associated with the predetermined bit of the storage channel in (3) of the method of embedding data described above. Restore data.

  As described above, the method of embedding data embeds data at different pixel positions depending on the image data. As a method for restoring the data, the data is restored based on the image data embedded by the data embedding method. That is, the method of embedding data encrypts data using image data as an encryption book, and the method of restoring data restores data based on image data that is an encryption book. Therefore, the electronic voting system 10 using the electronic voting data 521 that is image data executes encryption that makes the conventional encryption more secure, that is, concealing data at different positions for each electronic voting data 521.

  As described above, the electronic voting data creation device 100 can uniquely create a plurality of electronic voting data 521 by embedding the public key in the divided image data 511.

  Here, encryption and decryption using the key pair (public key and secret key) in the electronic voting data 521 will be described. Data encrypted by using the public key of the key pair (public key and private key) created based on the entire image code by the electronic voting data creation device 100 (for example, voting content and confirmation code) is created. The decryption is performed using the secret key of the key pair (public key and secret key).

  For example, the electronic voting data creation device 100 creates the electronic voting data 521 on the condition that it can be decrypted if the voting rate is 100% including an abstention vote or a blank paper vote. In this case, since all the pixels constituting the entire image data 501 can be acquired from the collected electronic voting data 521, the decoding is performed on the calculated entire image code in the same manner as the electronic voting data creation device 100. This is possible by using a secret key of a key pair (public key and secret key) created based on the key.

  Further, for example, the electronic voting data creation device 100 creates the electronic voting data 521 on the condition that it can be decrypted if the voting rate is equal to or higher than a certain ratio. In this case, the electronic voting data creation device 100 uses the signal correction theory to calculate the key pair (public key and private key) based on the plurality of electronic voting data 521. Code redundancy information is created and embedded for each electronic voting data 521. In this way, since the entire image code restored based on the redundant information embedded in the plurality of electronic voting data 521 can be obtained, the decoding is restored in the same manner as the electronic voting data creation device 100. This is possible by using a secret key of a key pair (public key and secret key) created based on the entire image code.

  Further, for example, the electronic voting data creation device 100 includes data including an entire image code having a bit string as S (for example, data obtained by supplementing the bit string S of the entire image code with an extra bit string, “1010” + S, S + “ 1010 "," 10 "+ S +" 10 ", etc.) are created and embedded for each electronic voting data 521. Then, the entire image code is necessarily acquired from the two electronic voting data 521 (the entire image code that is the same bit string by comparing the data including the entire image code written in the two electronic voting data 521. S is acquired). In this way, since the entire image code can be acquired based on the plurality of electronic voting data 521, the decoding is generated based on the acquired entire image code in the same manner as the electronic voting data generating device 100. This is possible by using a secret key of a key pair (public key and secret key). That is, the electronic voting data creation device 100 creates the electronic voting data 521 that matches the voting rate as a condition by calculating the number of divisions of the entire image data 501 into the divided image data 511 according to the required voting rate. be able to.

  Further, for example, the electronic voting data creation device 100 creates the electronic voting data 521 on condition that even one voted electronic voting data 521 can be decrypted. In this case, the electronic voting data creation device 100 embeds the entire image code for each electronic voting data 521. As with the electronic voting data creation device 100, decryption is performed using the private key of the key pair (public key and private key) created based on the embedded whole image code, using the embedded whole image code. Is possible.

  Based on the public key embedded in the electronic voting data 521, the electronic voting apparatus 200 encrypts the vote content for each accepted vote and the confirmation code associated with the vote content. The electronic voting apparatus 200 embeds the encrypted voting content and confirmation code in the electronic voting data 521. Here, the voting content is, for example, a number or code indicating a candidate. The electronic voting apparatus 200 receives voting content from an input device operated by a voter. The confirmation code is, for example, a code that the electronic voting apparatus 200 associates with the voting content.

  The electronic voting apparatus 200 restores the public key from the electronic voting data 521. In other words, the electronic voting device 200 restores the public key embedded by the electronic voting data creation device 100 by a method of restoring.

  The electronic voting apparatus 200 encrypts the voting contents and the confirmation code with the restored public key. Then, the electronic voting apparatus 200 embeds the encrypted voting content and confirmation code in the electronic voting data 521 by a method of embedding data (for example, bit 1 of the storage channel).

  The electronic vote counting device 300 collects each electronic voting data 521 encrypted by the plurality of electronic voting devices 200. Next, the electronic vote counting device 300 creates a secret key based on each collected electronic voting data 521, and based on the created secret key, the encrypted voting content acquired from each collected electronic voting data 521, and Decrypt the verification code. Then, the electronic vote counting device 300 totals and publishes the decrypted voting contents and confirmation codes.

  Here, the secret key is created in the same manner as the electronic voting data creation device 100. That is, the electronic vote counting device 300 acquires the entire image code based on the collected electronic voting data 521, and based on the acquired entire image code, for example, a key pair (public key and private key created by the RSA encryption method). ) Is created. Then, the electronic vote counting device 300 decrypts the encrypted voting content and the confirmation code restored from the electronic voting data 521 based on the created secret key. In this case, if the electronic voting data 521 cannot be collected so that a correct private key can be created, or the illegal electronic voting data 521 is mixed, the created private key correctly restores the voting contents. However, since the decryption cannot be performed, the electronic vote counting device 300 can detect that the voting is not correctly performed.

  Then, the electronic vote counting device 300 tabulates and publishes the decrypted voting contents and confirmation codes. Since the confirmation code is a code associated with the content of the vote, the electronic vote counting device 300 publishes the content of the vote and the confirmation code, so that the vote content is accurately counted for the voter who remembers the confirmation code. Can be confirmed.

  As described above, the electronic voting system 10 improves the security of the system by creating a secret key based on the electronic voting data 521 collected by the electronic voting apparatus 300 independently of the electronic voting data creating apparatus 100. Can be made.

Creation of the electronic voting data 521 will be described with reference to FIGS.
FIG. 2 is a diagram showing an example of the entire image data 501 according to an embodiment of the present invention. The example of FIG. 2 is an example in which the entire image data 501 is divided into 16 parts by a vertical broken line 591 and a horizontal broken line 592. The divided image data 511 is created by dividing the entire image data 501.

  A whole image code is calculated on the basis of pixel values constituting the whole image data 501. For example, it is assumed that the entire image data 501 is 640 × 4 pixels in the X-axis direction and 480 × 4 pixels in the Y-axis direction. Of the channels storing the gradation values of the three primary colors constituting the pixel, the storage channel is the B channel, and the calculation channels are the R channel and the G channel. Each channel has an 8-bit configuration, for example.

  For example, the entire image code (for example, 1024 bits) is obtained by adding the gradation values of the R channel and the G channel. The addition may not be performed in units of channels (each 8 bits). For example, 9 bits are added (8 bits for the R channel and LSB for the G channel, the remaining 7 bits for the G channel, and 2 bits for the R channel of the next pixel). By doing so, it is possible to avoid the value of a specific bit being periodically added. The electronic voting system 10 creates a key pair (public key and secret key) based on the entire image code.

  FIG. 3 is a diagram illustrating an example of the divided image data 511 according to the embodiment of the present invention. In the example shown in FIG. 3, a plurality of pixels (for example, P1 to P10) for embedding data as shown in FIG. 4 are calculated based on the divided image data 511, and the data is embedded as shown in FIG. It is an example to show.

  The divided image data 511 in FIG. 3 is image data obtained by dividing the entire image data 501 in FIG. The positions of the pixels constituting the divided image data 511 are represented using two-dimensional coordinates (for example, the X axis and the Y axis on the XY plane). For example, if the number of pixels in the X-axis direction is w (for example, 640 pixels) and the number of pixels in the Y-axis direction is h (for example, 480 pixels), the position of the pixel is the start point (0, 0), the end point ( 639, 479), and is represented by an arbitrary pixel position (x, y). Here, based on FIG. 4, calculation of the positions of a predetermined number of pixels using pseudorandom numbers generated based on the pixels constituting the divided image data 511 will be described.

  FIG. 4 is an explanatory diagram for explaining the gradation values of the pixels constituting the divided image data 511 and the generation of pseudo-random numbers according to an embodiment of the present invention.

  FIG. 4A shows an example of the configuration of the gradation values of the pixels constituting the divided image data 511. In the example shown in FIG. 4A, among the three primary colors constituting each pixel, an R channel that stores a red tone value, a G channel that stores a green tone value, and a blue tone value are stored. This is an example showing that the B channel to be stored is stored in the memory. The example shown in FIG. 4A is an example in which the position of each pixel in the image data is represented by a position on the XY plane.

  FIG. 4B is a diagram for explaining a predetermined calculation for generating a predetermined number of pseudo-random numbers based on the gradation value of the pixel. The electronic voting system 10 can calculate the position of a predetermined number of pixels based on a predetermined number of pseudo-random numbers generated by a predetermined calculation.

  Here, the value of each bit of the R channel of the first pixel is represented by P0R0 to P0R7, and the value of each bit of the R channel of the nth pixel is represented by PnR0 to PnR7. Similarly, the value of each bit of the G channel of the first pixel is represented by P0G0 to P0G7, and the value of each bit of the G channel of the nth pixel is represented by PnG0 to PnG7. That is, the R channel and G channel bit values can be expressed in the following sequence.

Bit value of first R channel = P0R0, P0R1, P0R2, P0R3, P0R4, P0R5, P0R6, P0R7
Bit value of first G channel = P0G0, P0G1, P0G2, P0G3, P0G4, P0G5, P0G6, P0G7
・
・
nth R channel bit value = PnR0, PnR1, PnR2, PnR3, PnR4, PnR5, PnR6, PnR7
n-th G channel bit value = PnG0, PnG1, PnG2, PnG3, PnG4, PnG5, PnG6, PnG7
・
・

The predetermined operation generates n (for example, 1024) pseudorandom numbers necessary for embedding data. The predetermined operation can be expressed as, for example, Dat [i] = Dat [i] + X (k) * 2 ^k . Here, X (k) is the value of the kth bit of the gradation value of the R channel or G channel. By executing the calculation using one more variable than the number necessary for embedding data, the predetermined calculation is periodically arranged so that the numerical value of a specific bit is calculated for a specific variable. You can avoid that.

For example, a predetermined calculation for generating 1024 pseudo random numbers is performed as follows.
1st round Dat [0] = Dat [0] + P0R0 * 2 ⁰
Dat [1] = Dat [1] + P0G0 * 2 ⁰
・
・
Dat [1022] = Dat [1022] + P63R7 * 2 ⁷
Dat [1023] = Dat [1023] + P63G7 * 2 ⁷
Dat [1023 + 1] = Dat [1023 + 1] + P64R0 * 2 ⁰
2nd round Dat [0] = Dat [0] + P64G0 * 2 ⁰
Dat [1] = Dat [1] + P64R1 * 2 ¹
・
・
Dat [1022] = Dat [1022] + P127G7 * 2 ⁷
Dat [1023] = Dat [1023] + P128R0 * 2 ⁰
Dat [1023 + 1] = Dat [1023 + 1] + P128G0 * 2 ⁰
By such an operation, for example, the first 1024 pseudo random numbers out of 1025 random numbers are obtained.

  Next, the positions of a predetermined number (for example, 1024) of pixels in the divided image data 511 are calculated based on the generated predetermined number (for example, 1024) of pseudorandom numbers. For example, remainders (Dat [0] mod w, Dat [0] mod) obtained by dividing the generated pseudo-random numbers (Dat [0] to Dat [1023]) by the number of vertical pixels and the number of horizontal pixels of the divided image data 511, respectively. The position (vertical and horizontal positions) in the divided image data 511 can be calculated by h).

  Here, in the calculation of the position, the generation of the position based on Dat [i] is concentrated near the diagonal of the image by setting the remainder calculation method to (w-2) and (h-1), respectively. Can be avoided.

  If the positions calculated in this way overlap, hash conversion is performed. The hash conversion converts the calculated position into a position that does not overlap. For example, using a hash table in which the pixel position of the divided image data 511 is associated with a flag indicating whether or not the image is used, the hash conversion is used when the calculated position is used. Can be converted to no position. Alternatively, the hash conversion may be performed by calculation for hash conversion (for example, new storage position x = (storage position x + 23) mod (w), new storage position y = (storage position y + 11) mod (h)).

  Here, returning to FIG. 3, P1 to P10 shown in FIG. 3 are pixels in the divided image data 511 calculated as described above. Here, the embedding of data in the calculated pixel will be described with reference to FIG.

  FIG. 5 is a diagram for explaining how to divide and embed binary values of data into bits in divided image data 511 according to an embodiment of the present invention.

The electronic voting system 10 associates a bit weight with a predetermined bit of each storage channel of a plurality of pixels calculated as described above. In other words, the electronic voting system 10 associates bit weights with predetermined bits (for example, 3 for embedding a public key) in each storage channel in the order in which a plurality of pixels are calculated. For example, the electronic voting system 10 calculates a position based on the pseudorandom number Dat [0], and associates a bit weight “2 ⁰ ” with a predetermined bit (for example, bit 3) of the storage channel of the calculated pixel P1. . Similarly, the electronic voting system 10 calculates a position based on the pseudorandom number Dat [n−1], and adds a bit weight “2” to a predetermined bit (for example, bit 3) of the calculated storage channel of the pixel Pn. ⁿ⁻¹ ”.

The electronic voting system 10 embeds data by decomposing the binary value of data into bits and writing them into predetermined bits associated with bit weights. That is, the electronic voting system 10, for example, the bit 3 of the storage channels of the pixel P1 where the weight of the bit "2 ^0" are associated, among bits forming the binary value of the public key "2 ^0" bit Write the value. Then, the electronic voting system 10, the "2 ^1" is stored for the channel bit 3 of the pixel P2 corresponding writes "2 ^1" bit value among the bits forming the binary value of the public key. Thus successively, the electronic voting system 10, the bit 3 of the storage channels of the pixels associated with the weight of the bit "2 ^n-1", among the bits forming the binary value of the public key "2 ^n- Embed the public key by writing the value of the “ ¹ ” bit. In this way, the electronic voting data 521 is created.

  Here, returning to FIG. 3, P1 to P10 shown in FIG. 3 are pixels in which the bits constituting the data are embedded in the pixels in the divided image data 511 calculated as described above.

  FIG. 6 is a diagram showing another example of the divided image data 511 according to the embodiment of the present invention. The example shown in FIG. 6 is an example showing that the pixel for embedding data is calculated based on the gradation value of the pixel in the region 601 set in the divided image data 511.

  An area 601 set in the divided image data 511 is represented by a start point 611 (a, b) and an end point 612 (a + A, b + B) in the XY plane. Here, A is the width in the X direction, and B is the height in the Y direction.

  Pseudorandom numbers are generated as described above based on the gradation values of the pixels constituting the region 601 set in the divided image data 511, and the positions of a plurality of pixels in which data is embedded based on the generated pseudorandom numbers are determined. Is calculated. Then, data is embedded in predetermined bits of each storage channel of the calculated plurality of pixels.

  The region 601 is set by parameters indicating the start position and the size of the region. For example, a function for calculating a plurality of pixels for embedding data based on the pixels constituting the region 601 is expressed as GetPos (* pos, num, par).

  Here, * pos indicates a pointer to a plurality of pixels for embedding data, num indicates the number of the plurality of pixels for embedding data, and par is an argument indicating a parameter for the start position. . That is, GetPos (* pos, num, par) obtains the start position (a + par, b + par) of the region by par and sets the size of the region (width is A and height is B). Then, GetPos (* pos, num, par) generates num pseudo random numbers as described above based on the gradation values of the pixels constituting the set region, and a plurality of pseudo random numbers based on the generated pseudo random numbers. The pixel position is calculated, and a pointer to the calculated pixel is returned. Here, a, b, A, and B are stored in advance in, for example, a parameter storage unit (a creation parameter storage unit 131, a voting parameter storage unit 231 and a vote counting parameter storage unit 331, which will be described later with reference to FIGS. 9, 10, and 11). Has been. When this value is a = b = 0, A = width of the electronic voting data 521, and B = height of the electronic voting data 521, GetPos (* pos, num, 0) represents the entire electronic voting data 521. A plurality of pixels for embedding data are calculated based on the constituent pixels.

  FIG. 7 is a diagram showing an example of regions set for calculating the positions of a plurality of pixels for embedding the electronic voting data 521 according to an embodiment of the present invention.

  The example illustrated in FIG. 7A is an example of embedding a public key, redundant information, voting contents, and a confirmation code based on the pixels in the region 601. For example, the electronic voting data creation device 100 associates the bits constituting the 1024-bit public key with bit 3 of the B channel of 1024 pixels 621 obtained by GetPos (* pos, 1024, 0). Embed the public key by writing according to the bit weight. Similarly, the electronic voting data creation device 100 embeds redundant information in bit 5 of the B channel. Similarly, the electronic voting apparatus 200 restores the public key from bit 3 of the B channel of the pixel acquired by GetPos (* pos, 1024, 0). Then, the electronic voting apparatus 200 embeds the voting contents and confirmation code encrypted with the restored public key in bit 1 of the B channel. Similarly, the electronic balloting device 300 restores redundant information from bit 5 of the B channel of the pixel acquired by GetPos (* pos, 1024, 0), and based on the redundant information restored from a plurality of electronic voting data 521 An image code is created, and the voting content and the confirmation code restored from bit 1 of the B channel are decrypted with the secret key calculated based on the created overall image code.

  The example shown in FIG. 7B is based on the pixels in the region 602 by embedding the public key, the redundant information, and the encrypted password based on the pixels in the region 601 in the second embodiment to be described later. This is an example of embedding voting content and a confirmation code. Here, the password is a code accepted by the electronic voting apparatus 200 (see FIG. 10 of the second embodiment described later). An area 602 is an area having a value (Ci) created based on the password as a parameter (par = Ci). For example, the electronic voting data creation device 100 embeds a public key and redundant information as in FIG. The electronic voting apparatus 200 restores the public key and encrypts the accepted password, as in FIG. Then, the electronic voting apparatus 200 embeds the encrypted password in the bit 2 of the B channel of the pixel 621 acquired by GetPos (* pos, 1024,0) and acquires it by GetPos (* pos, 1024, Ci). The received voting content and confirmation code are embedded in bit 1 of the B channel of the pixel 622.

  The example shown in FIG. 7 (3) is an example of embedding the unique code (MD5) based on the pixels in the region 603 in addition to the example of FIG. is there. Here, the unique code (MD5) is a code created by the electronic voting data creation device 100 based on the divided image data 511 (see FIG. 9 of Embodiment 2 described later). An area 603 is an area in which a value (CAS) created based on the secret code received by the electronic voting data creation apparatus 100 is used as a parameter (par = CAS). For example, the electronic voting data creation device 100 accepts a secret code (see FIG. 9 of Embodiment 2 described later). The electronic voting data creation device 100 creates and embeds a public key and redundant information based on the secret code and the entire image code. Then, the electronic voting data creation device 100 embeds a unique code (MD5) in bit 4 of the B channel of the pixel 623 acquired by GetPos (* pos, 1024, CAS). The electronic vote counting device 300 regards the electronic voting data 521 having the same restored unique code (MD5) as one electronic voting data 521.

[Embodiment 2]
The second embodiment is an example of the electronic voting system 10. In addition to the first embodiment, the electronic voting data creation device 100 creates a public key based on the entire image code and the received secret code, and is unique. A code (MD5) is created and embedded in the electronic voting data 521. The electronic voting apparatus 200 accepts the password, embeds the voting content and the confirmation code in the electronic voting data 521 based on the password, encrypts the password, and embeds it in the electronic voting data 521. The electronic vote counting device 300 regards the electronic voting data 521 having the same unique code (MD5) as one electronic voting data 521. Then, the electronic balloting device 300 determines the vote-voting conditions, and is embedded in the electronic ballot data 521 based on the secret key created based on the entire image code and the accepted secret code, as in the electronic ballot data creation device 100. The decrypted encrypted password is decrypted, and the contents of the vote and the confirmation code are obtained based on the decrypted password and made public. Details of each device will be described with reference to FIGS.

  FIG. 8 is a feature diagram showing features of the second embodiment of the electronic voting system 10 according to one embodiment of the present invention. In addition to the first embodiment, the electronic voting system 10 according to the second embodiment accepts a secret code and a password, and creates a unique code (MD5). The outline of the electronic voting system 10 will be described for each device according to the feature diagram.

  In addition to the first embodiment, the electronic voting data creation device 100 accepts a secret code input by the voting management committee. Then, the electronic voting data creation device 100 changes a part of the entire image data 501 and creates a key pair (public key and secret key based on the encrypted secret code calculated based on the received secret code and the entire image code. ). Then, the electronic voting data creation device 100 calculates the position where the public key is embedded based on the pixels constituting the area set in the divided image data 511, and embeds the public key. Further, the electronic voting data creation device 100 creates a unique code (MD5) based on the electronic voting data 521 and embeds it in the electronic voting data 521.

  The electronic voting apparatus 200 accepts a password in addition to the first embodiment. Then, the electronic voting apparatus 200 sets an area in the electronic voting data 521 using the value (Ci) created based on the accepted password as a parameter (par = Ci), and based on the pixels constituting the set area. The received voting content and confirmation code are embedded in the pixel at the calculated position. The electronic voting apparatus 200 encrypts the received password based on the restored public key and embeds it in the electronic voting data 521.

  In addition to the first embodiment, the electronic vote counting device 300 determines whether or not the same unique code (MD5) exists in the collected electronic voting data 521, and the electronic voting data having the same unique code (MD5) 521 is regarded as one electronic voting data 521. Further, the electronic vote counting device 300 receives the secret code, and the secret key of the key pair (public key and secret key) based on the received secret code and the entire image code created based on the collected electronic voting data 521. Create Then, the electronic vote counting device 300 decrypts the restored password based on the secret key, and sets an area in the electronic voting data 521 using the value (Ci) created based on the decrypted password as a parameter (par = Ci). Then, the contents of the vote and the confirmation code restored based on the pixels constituting the set area are tabulated and announced.

  FIG. 9 is a functional block diagram showing functions of the electronic voting data creation apparatus 100 according to an embodiment of the present invention. The electronic voting data creation device 100 includes a secret code reception unit 101, an entire image data change unit 102, an entire image code calculation unit 103, an encryption secret code calculation unit 104, an encryption key generation unit 105, and a division number setting unit. 106, the entire image division unit 107, the creation area setting unit 108, the public key position calculation unit 109, the unique code creation unit 110, the unique code position calculation unit 111, the redundant information writing unit 112, and electronic voting A data creation unit 113, an electronic voting data output unit 114, and a creation parameter storage unit 131 are provided. Such an electronic voting data creation apparatus 100 will be described for each unit.

  The creation parameter storage unit 131 stores predetermined parameters for an area set in the electronic voting data 521. For example, the creation parameter storage unit 131 stores the start point values (a, b), the region width A, and the region height B in FIG.

  The secret code receiving unit 101 receives an input of a secret code (CAS). The secret code is a 16-digit code, for example, and is secretly managed by the election management committee.

  The entire image data changing unit 102 changes a part of the entire image data 501 based on a random number. For example, the entire image data changing unit 102 is a pixel constituting the entire image data 501, and for pixels calculated based on random numbers so as to be included in each divided image data 511, the calculation channel of the pixel is changed. Invert bit 0.

  The entire image code calculation unit 103 calculates an entire image code (CAI) based on the entire image data 501. The entire image code is calculated by, for example, adding or bit-calculating each gradation value of the calculation channel among the three primary colors constituting the entire image data 501.

  The encryption secret code calculation unit 104 is based on the secret code (CAS) received by the secret code reception unit 101 and the entire image code (CAI) calculated by the entire image code calculation unit 103. Is calculated. The encryption secret code is calculated by adding the secret code and the entire image code, for example, by bit operation.

  The encryption key creation unit 105 creates a public key (N, e) and a secret key (d) corresponding to the public key (N, e) based on the encryption secret code calculated by the encryption secret code calculation unit 104. To do.

  The division number setting unit 106 sets the number by which the entire image data 501 is divided. The number to be divided is, for example, an integer that can equally divide the entire image data 501. In the setting, the number of divisions may be input by the number of vertical divisions and the number of horizontal divisions.

  The entire image dividing unit 107 divides the entire image data 501 based on the number set by the dividing number setting unit 106. For example, when the set number is 3 × 4, the entire image dividing unit 107 divides the vertical part into three parts and the horizontal part into four parts.

  The creation area setting unit 108 sets an area in each divided image data 511 divided by the whole image dividing unit 107 based on predetermined parameters. For example, when the predetermined parameter to the start position of the area to be set is par = 0, the creation area setting unit 108 uses the values stored in the creation parameter storage unit 131 and par as shown in FIG. ) Area 601 is set.

  The public key position calculation unit 109 calculates the public key position in which the public key is embedded based on the pixels constituting the area set by the creation area setting unit 108. That is, the public key position calculation unit 109 generates a pseudo random number based on the gradation values of the pixels constituting the region 601 as described above, and calculates the positions of a plurality of pixels based on the generated pseudo random number.

  The unique code creation unit 110 creates a unique code (MD5) based on the electronic voting data 521. The unique code creation unit 110 creates a unique unique code (MD5) for each electronic voting data 521 by, for example, adding the gradation values of the calculation channels of the pixels constituting the electronic voting data 521 and performing bit operations. .

  The unique code position calculation unit 111 calculates a unique code position in which the unique code (MD5) is embedded based on the pixels constituting the area set by the creation area setting unit 108. For example, the unique code position calculation unit 111 sets an area (for example, the area 603 in FIG. 7 (3)) set in the electronic voting data 521 based on the secret code (CAS) received by the secret code receiving unit 101. Based on the constituent pixels, a unique code position in which the unique code (MD5) is embedded is calculated. Then, the electronic voting data creation unit 113 embeds the unique code (MD5) in the unique code position calculated by the unique code position calculation unit 111.

  The redundant information writing unit 112 divides the redundant information of the entire image code into bits and embeds them in predetermined bits of each storage channel of the calculated plurality of pixels.

  The electronic voting data creation unit 113 embeds a plurality of electronic voting data 521 by embedding the public key (N, e) created by the encryption key creation unit 105 in the public key position calculated by the public key position calculation unit 109. Create your own. That is, as described above, the electronic voting data creation unit 113 divides the value of the public key into bits and embeds them in the predetermined bits of the calculated storage channels of the plurality of pixels.

  The electronic voting data output unit 114 outputs the electronic voting data 521 created by the electronic voting data creation unit 113 to the electronic voting apparatus 200. For example, the electronic voting data output unit 114 outputs the electronic voting data 521 to the electronic voting apparatus 200 via a computer network. Then, the electronic voting data output unit 114 sets the voting state of the electronic voting data 521 to the voted state.

  FIG. 10 is a functional block diagram showing functions of the electronic voting apparatus 200 according to an embodiment of the present invention. The electronic voting apparatus 200 includes a voting input unit 201, a voting area setting unit 202, a voting public key position calculating unit 203, a public key acquiring unit 204, a voting receiving unit 205, a password receiving unit 206, and a voting content area. Setting unit 207, vote content position calculation unit 208, password encryption unit 209, password position calculation unit 210, vote writing unit 211, re-voting reception unit 212, vote output unit 213, and vote parameter storage Part 231. Such an electronic voting apparatus 200 will be described for each unit.

  The voting input unit 201 inputs electronic voting data 521. The voting input unit 201 inputs the electronic voting data 521 from the electronic voting data creation device 100 via, for example, a computer network.

  The voting parameter storage unit 231 stores predetermined parameters. The predetermined parameter is the same as the parameter (value in the creation parameter storage unit 131) of the area set for embedding the public key in the electronic voting data 521 by the electronic voting data creation device 100.

  The voting area setting unit 202 sets an area in the image data constituting the electronic voting data 521 input by the voting input unit 201 based on predetermined parameters stored in the voting parameter storage unit 231. For example, when the predetermined parameter for the start position of the area to be set is par = 0, the voting area setting unit 202 sets the area 601 in FIG.

  The voting public key position calculation unit 203 calculates the public key position based on the pixels constituting the area set by the voting area setting unit 202. That is, the voting public key position calculation unit 203 calculates the public key position in the same manner as the electronic voting data creation device 100.

  The public key acquisition unit 204 acquires the public key embedded by the electronic voting data creation device 100 from the public key position calculated by the vote public key position calculation unit 203.

  The voting accepting unit 205 accepts input of voting contents and a confirmation code.

  The password receiving unit 206 receives a password input.

  The voting content area setting unit 207 sets an area in the image data constituting the electronic voting data 521 based on the password received by the password receiving unit 206. For example, the voting content area setting unit 207 calculates a predetermined parameter (Ci) for the start position of the area to be set based on the password, and sets the area 602 in FIG. 7 (3) based on the calculated parameter.

  The voting content position calculation unit 208 calculates the voting content position in which the voting content and the confirmation code are embedded based on the pixels constituting the area set by the voting content area setting unit 207.

  The password encryption unit 209 encrypts the password received by the password reception unit 206 based on the public key acquired by the public key acquisition unit 204.

  The password position calculation unit 210 calculates a password position in which the password encrypted by the password encryption unit 209 is embedded based on the pixels constituting the electronic voting data 521.

  The voting writing unit 211 embeds the password encrypted by the password encryption unit 209 in the password position calculated by the password position calculation unit 210, and at the voting content position calculated by the voting content position calculation unit 208, The contents of the vote and the confirmation code received by the vote receiving unit 205 are embedded.

  The re-voting accepting unit 212 accepts re-voting. For example, when receiving the vote again, the re-voting accepting unit 212 changes the voting state of the electronic voting data 521 to the white vote state. Then, the voting writing unit 211 embeds the newly accepted voting content and confirmation code based on the password. Alternatively, when an electronic voting medium 700 described later is used, the electronic voting device 200 requests the electronic voting data 521 from the electronic voting data creation device 100, receives the requested electronic voting data 521, and creates the electronic voting data 521. .

  The vote output unit 213 outputs the electronic vote data 521 embedded by the vote writing unit 211 to the electronic vote counting device 300. For example, the voting output unit 213 outputs the electronic voting data 521 to the electronic vote counting device 300 via the computer network.

  FIG. 11 is a functional block diagram showing functions of the electronic ticketing device 300 according to an embodiment of the present invention. The electronic balloting device 300 includes a ballot input unit 301, a ballot determination unit 302, a ballot secret code reception unit 303, a ballot unique code position calculation unit 304, a unique code acquisition unit 305, an electronic ballot data search unit 306, Electronic voting data determination unit 307, voted whole image code calculating unit 308, voted cipher secret code calculating unit 309, secret key creating unit 310, voted area setting unit 311, voted password position calculating unit 312, and encryption password An acquisition unit 313, an encryption password decryption unit 314, a vote vote content area setting unit 315, a vote vote position calculation unit 316, a vote data acquisition unit 317, a vote announcement unit 318, a vote parameter storage unit 331, an electronic A voting data storage unit 332; Such an electronic ticketing apparatus 300 will be described for each unit.

  The vote counting input unit 301 inputs electronic voting data 521 from the electronic voting apparatus 200. For example, the vote counting input unit 301 inputs the electronic voting data 521 from the electronic voting apparatus 200 via the computer network, and associates the time at the time of input.

  The electronic voting data storage unit 332 stores the electronic voting data 521 input by the vote counting input unit 301.

  The vote counting unit 302 determines whether or not the vote counting condition for counting the electronic voting data 521 is satisfied. The voting condition is, for example, the voting date and time determined for voting the electronic voting data 521.

  The vote-voting secret code receiving unit 303 receives an input of a secret code (CAS) when the vote-determining determination unit 302 determines that the vote-voting condition is satisfied. This secret code (CAS) must be the same code as the secret code (CAS) received by the electronic voting data creation device 100.

  The vote-voting unique code position calculation unit 304 calculates a unique code position in which the unique code (MD5) is embedded based on the pixels constituting the electronic voting data 521. For example, the vote-voting unique code position calculation unit 304 sets the area set in the electronic voting data 521 based on the secret code (CAS) received by the vote-voting secret code receiving unit 303 (for example, the area 603 in FIG. 7 (3)). ) To calculate the unique code position.

  The unique code acquisition unit 305 acquires the unique code (MD5) embedded by the electronic voting data creation device 100 from the unique code position calculated by the vote-voting unique code position calculation unit 304. That is, the unique code acquisition unit 305 restores the unique code (MD5) by the above-described method for restoring data.

  The electronic voting data search unit 306 searches the electronic voting data 521 stored in the electronic voting data storage unit 332 based on the unique code (MD5) acquired by the unique code acquisition unit 305.

  When the electronic voting data search unit 306 searches for electronic voting data 521 that is identical to the unique code (MD5), the electronic voting data determination unit 307 selects one electronic voting data from the searched electronic voting data 521. 521 is determined and stored in the electronic voting data storage unit 332. For example, the electronic voting data determination unit 307 determines the time at which the vote-voting input unit 301 associates the electronic voting data 521 with a plurality of electronic voting data 521 having the same unique code (MD5) searched by the electronic voting data search unit 306. The electronic voting data 521 associated with the latest time is stored in the electronic voting data storage unit 332 as the input electronic voting data 521. Note that the electronic voting data determination unit 307 may store only the electronic voting data 521 stored first among the plurality of electronic voting data 521 having the same unique code (MD5).

  The vote-voting overall image code calculation unit 308 calculates an image code after voting (post-voting CAI) based on the electronic voting data 521 stored in the electronic voting data storage unit 332. For example, when the condition is that the voting rate is 100%, the image code after voting is based on the pixels constituting all the collected electronic voting data 521, as in the electronic voting data creation device 100. Created. For example, when it is a condition that the voting rate is a certain ratio or more, the image code after voting (post-voting CAI) is a redundancy embedded in the collected electronic voting data 521 by the electronic voting data creation device 100. Created based on information. For example, if it is a condition that even if there is only one electronic voting data 521, the voted image code (post-voting CAI) is embedded in the collected electronic voting data 521 by the electronic voting data creation device 100. It is created based on the redundant information (same as the whole image code).

  The vote-voting encryption secret code calculation unit 309 includes a secret code (CAS) received by the vote-voting secret code reception unit 303 and an image code after voting (post-voting CAI) calculated by the vote-voting overall image code calculation unit 308. Based on this, a cryptographic secret code after voting (CA after voting) is calculated.

  The secret key creation unit 310 creates a secret key based on the voted cipher secret code (post-voting CA) calculated by the voted cipher secret code calculation unit 309.

  The vote counting parameter storage unit 331 stores predetermined parameters. The predetermined parameter is the same as the parameter (value in the creation parameter storage unit 131) of the area set for embedding the public key in the electronic voting data 521 by the electronic voting data creation device 100.

  The vote-voting area setting unit 311 sets an area in the image data constituting the electronic voting data 521 input by the vote-voting input unit 301 based on predetermined parameters stored in the vote-voting parameter storage unit 331. For example, when the predetermined parameter for the start position of the area to be set is par = 0, the vote-voting area setting unit 311 sets the area 601 in FIG.

  The vote-voting password position calculation unit 312 calculates the password position based on the pixels constituting the area set by the vote-voting area setting unit 311.

  The encryption password acquisition unit 313 acquires the encrypted password embedded by the electronic voting apparatus 200 from the password position calculated by the voted password position calculation unit 312.

  The encryption password decryption unit 314 decrypts the encrypted password acquired by the encryption password acquisition unit 313 based on the secret key created by the secret key creation unit 310.

  The vote vote content area setting unit 315 sets an area in the image data constituting the electronic voting data 521 based on the password decrypted by the encryption password decryption unit 314. For example, when the predetermined parameter for the start position of the area to be set is par = Ci (position in the electronic voting data 521 calculated based on the password), the vote-voting content setting section 315 displays (3) in FIG. This area 602 is set.

  The vote-voting position calculation unit 316 calculates the vote content position based on the pixels constituting the area set by the vote-voting content area setting unit 315.

  The voting data acquisition unit 317 acquires the voting content and the confirmation code embedded by the electronic voting device 200 from the voting content position calculated by the vote-voting voting position calculation unit 316. In other words, the voting data acquisition unit 317 restores the voting contents and the confirmation code by the method for restoring the above-described data.

  The vote counting publication unit 318 aggregates and publishes the voting contents and confirmation codes acquired by the voting data acquisition unit 317.

  FIG. 12 is a flowchart showing the processing contents of the electronic voting data creation apparatus 100 according to an embodiment of the present invention.

  In step S101, the CPU of the electronic voting data creation apparatus 100 (hereinafter referred to as creation CPU) receives an input of a secret code (CAS). More specifically, the creation CPU receives a secret code (CAS) from the input terminal 150 (see FIG. 9). Then, the creation CPU changes a part of the entire image data 501 based on a random number (for example, inverts bit 0 of the position calculation channel created based on the value of the secret code (CAS)). Thereafter, the creation CPU moves the process to step S102.

  In step S102, the creation CPU calculates a whole image code (CAI) based on the whole image data 501. More specifically, the creation CPU calculates the entire image code (CAI) by adding the gradation values of the calculation channels among the three primary colors constituting the entire image data 501. Thereafter, the creation CPU moves the process to step S103.

  In step S103, the creation CPU calculates an encryption secret code (CA) based on the secret code (CAS) and the entire image code (CAI). More specifically, the creation CPU calculates the encryption secret code (CA) by adding the accepted secret code (CAS) and the calculated entire image code (CAI). Thereafter, the creation CPU moves the process to step S104.

  In step S104, the creation CPU creates a public key and a secret key based on the cryptographic secret code (CA). More specifically, the creation CPU selects a positive integer e (for example, 60001). Next, a large prime number pair (p, q) is obtained based on the cryptographic secret code (CA), and N, which is the product of p and q, is obtained. Then, the creation CPU uses the obtained (e, N) as a public key. Thereafter, the creation CPU moves the process to step S105.

  In step S105, the creation CPU divides the entire image data 501. More specifically, the creation CPU divides the whole image data 501 in the vertical and horizontal directions according to the values input by the settings, and creates divided image data 511. Thereafter, the creation CPU moves the process to step S106.

  In step S106, the creation CPU embeds the public key in the electronic voting data 521 by an encryption process (see FIG. 13 described later). More specifically, the creation CPU sets an area where the parameter to the GetPos process (see FIG. 14 described later) is par = 0 by the parameters stored in the creation parameter storage unit 131, and configures the set area. Based on the pixel to be calculated, a public key position to write the public key is calculated. Then, the creation CPU decomposes and embeds the value of the public key into bits in bit 3 of each storage channel of the calculated plurality of pixels at the public key position. Here, the set area is set by a, b, A, and B stored in the creation parameter storage unit 131. For the entire electronic voting data 521, an area set in the electronic voting data 521 (for example, There is a case of FIG. Thereafter, the creation CPU moves the process to step S107.

  In step S107, the creation CPU creates redundant information of the entire image code and embeds it in the electronic voting data 521. More specifically, as in step S106, the creation CPU breaks down the redundant information of the created overall image code into bits and embeds them in bit 5 of each storage channel. Thereafter, the creation CPU moves the process to step S108.

  In step S108, the creation CPU creates a unique code (MD5) of the electronic voting data 521 and embeds it in the electronic voting data 521. More specifically, as in step S106, the creation CPU decomposes the created unique code (MD5) into bits and embeds them in bit 4 of each storage channel. Thereafter, the creation CPU moves the process to step S109.

In step S109, the creation CPU outputs electronic voting data 521. More specifically, the creation CPU outputs electronic voting data 521 to the electronic voting apparatus 200 via a computer network. The creation the CPU (e.g. bit 6 of the storage channels of the plurality of pixels calculated, 2 ⁰ 2 ⁹ 1) voting already state vote status of the electronic voting data 521 to. Thereafter, the creation CPU ends the process.

  FIG. 13 is a flowchart showing the contents of the encryption processing according to an embodiment of the present invention. The encryption process exists not only in the electronic voting data creation device 100 but also in the electronic voting device 200, the electronic voting device 300, and the electronic voting medium 700 (see FIG. 22 described later). Therefore, the CPU of this process is appropriately replaced with the CPU of the electronic voting data creation device 100, the CPU of the electronic voting device 200, the CPU of the electronic voting device 300, or the CPU of the electronic voting medium 700.

  In step S121, the CPU executes a GetPos process. Thereafter, the CPU moves the process to step S122.

In step S122, the CPU associates the bit weight with the storage position. More specifically, the CPU associates bit weights (2 ⁰ , 2 ¹ ,..., 2 ¹⁰²³ ) with the storage positions calculated by the GetPos process in the order of calculation. Thereafter, the CPU moves the process to step S123.

  In step S123, the CPU writes each bit constituting the value to be embedded in a storage location associated with the same weight as the bit weight. More specifically, the CPU writes each bit constituting the value to be embedded into a predetermined bit of the storage channel among the storage positions associated with the same weight as the weight of the bit. Thereafter, the CPU returns to the next process after the process that shifts to the main process.

  FIG. 14 is a flowchart showing the processing content of GetPos according to an embodiment of the present invention. In the GetPos process, for example, the argument is (* pas, num, par), and not only the electronic voting data creation device 100 but also the electronic voting device 200, the electronic voting device 300, and the electronic voting medium 700 (the figure will be described later). 22). Therefore, the CPU of this process is appropriately replaced with the CPU of the electronic voting data creation device 100, the CPU of the electronic voting device 200, the CPU of the electronic voting device 300, or the CPU of the electronic voting medium 700.

  In step S131, the CPU sets an area for calculating the storage position based on par. For example, the CPU sets areas (horizontal A, vertical B) in which the XY coordinates of the start point and end point are (a + par, b + par), (a + par + A, b + par + B) based on the argument value par. Here, a and b are initial coordinate values of the start point, A is the width in the X direction, and B is the height in the Y direction. a, b, A, and B are values that can be changed by a predetermined method. Thereafter, the CPU moves the process to step S132.

  In step S132, the CPU calculates num pseudo-random numbers of argument values based on the R and G channel gradation values among the pixel values constituting the set area. Thereafter, the CPU moves the process to step S133.

  In step S133, the CPU calculates a storage position based on the calculated pseudorandom number. For example, the CPU calculates the storage position by the storage position x = pseudo random number mod (w−2) and the storage position y = pseudo random number mod (h−1). Thereafter, the CPU moves the process to step S134.

  In step S134, the CPU performs hash conversion of the storage position. For example, when the CPU determines that the calculated storage positions are duplicated, the new storage position x = (storage position x + 23) mod (w) and the new storage position y = (storage position y + 11) mod (h) Hash conversion is performed to convert the overlapping storage positions into non-overlapping storage positions. Then, the CPU creates a pointer (* pos) to the calculated num storage positions, returns the processing, and moves to the processing next to the processing that moves to this processing.

  FIG. 15 is a flowchart showing the processing contents of the electronic voting apparatus 200 according to the embodiment of the present invention. The electronic voting device 200 includes processing similar to the encryption processing and GetPos processing of the electronic voting data creation device 100.

  In step S <b> 201, the CPU of the electronic voting apparatus 200 (hereinafter referred to as a voting CPU) inputs electronic voting data 521. More specifically, the voting CPU inputs the electronic voting data 521 from the electronic voting data creation device 100 via a computer network. In the case of re-voting, the voting CPU searches the electronic voting data 521 with the unique code (MD5) from the already input electronic voting data 521. Thereafter, the voting CPU moves the process to step S202.

  In step S202, the voting CPU calculates a position where the public key is embedded based on the electronic voting data 521. More specifically, the voting CPU sets an area where the parameter to the GetPos process (see FIG. 14) is par = 0, and calculates the public key position based on the pixels constituting the set area. Here, the set area is set according to the parameters of the voting parameter storage unit 231 and is the same as the area set in the electronic voting data creation device 100. Thereafter, the voting CPU moves the process to step S203.

  In step S203, the voting CPU obtains a public key from the calculated position. More specifically, the voting CPU restores the bit of the public key from bit 3 of the calculated channel for storing the public key position, and acquires the public key. Thereafter, the voting CPU moves the process to step S204.

  In step S204, the voting CPU accepts input of voting content and a confirmation code. More specifically, the voting CPU receives input of voting contents and a confirmation code from the input terminal 250 (see FIG. 10). Thereafter, the voting CPU moves the process to step S205.

  In step S205, the voting CPU accepts input of a password. More specifically, the voting CPU receives an input of a password from the input terminal 250 (see FIG. 10). Thereafter, the voting CPU moves the process to step S206.

  In step S206, the voting CPU calculates a position where the voting content and the confirmation code are embedded based on the password. More specifically, the voting CPU calculates an area setting value (Ci) based on the password, and sets and sets an area where the parameter to the GetPos process (see FIG. 14) is par = Ci. Based on the pixels constituting the area, the voting position where the voting content and the confirmation code are written is calculated. Thereafter, the voting CPU moves the process to step S207.

  In step S207, the voting CPU embeds voting contents and a confirmation code in the calculated position. More specifically, the voting CPU writes the bits constituting the voting content and the confirmation code in bit 1 of each storage channel at the calculated position. Thereafter, the voting CPU moves the process to step S208.

  In step S208, the voting CPU encrypts the password based on the public key and embeds it in the electronic voting data 521. More specifically, the voting CPU sets an area where the parameter to the GetPos process (see FIG. 14) is par = 0, and calculates the password position based on the pixels constituting the set area. Then, the voting CPU encrypts the received password based on the restored public key, and writes the bits constituting the encrypted password in bit 2 of each storage channel at the calculated password position. Thereafter, the voting CPU moves the process to step S209.

  In step S209, the voting CPU outputs electronic voting data 521. More specifically, the voting CPU outputs the electronic voting data 521 to the electronic vote counting device 300 via the computer network. Thereafter, the voting CPU ends the process.

  FIG. 16 is a flowchart showing the processing contents of the electronic ticketing device 300 according to an embodiment of the present invention. The electronic vote counting device 300 includes processing similar to the encryption processing and GetPos processing of the electronic voting data creation device 100.

  In step S301, the CPU of the electronic ticketing device 300 (hereinafter referred to as the “voting CPU”) inputs the electronic voting data 521 and stores the time in association with each other. More specifically, the vote-voting CPU inputs the electronic voting data 521 from the electronic voting device 200 via the computer network, and stores the time when the electronic voting data 521 is associated with the electronic voting data 521 in the electronic voting data storage unit 332. To do. Thereafter, the vote counting CPU moves the process to step S302.

  In step S302, the vote counting CPU determines whether or not the vote counting condition is satisfied. That is, the vote counting CPU obtains the current time and determines whether or not it is time to vote. If this determination is YES, the vote-voting CPU moves the process to step S303, and if NO, the vote-voting CPU moves the process to step S301. Here, the time may be acquired by providing a clock unit (not shown) and acquiring the current time, or by receiving a standard radio wave including standard time and acquiring the time.

  In step S303, the vote counting CPU accepts an input of a secret code (CAS). More specifically, the vote counting CPU accepts an input of a secret code (CAS) from the input terminal 350 (see FIG. 11). Thereafter, the vote counting CPU moves the process to step S304.

  In step S304, when the vote-voting CPU acquires the unique code (MD5) from the electronic voting data 521 and determines that there is electronic voting data 521 having the same unique code (MD5), it is associated with the latest time. The electronic voting data 521 is stored in the electronic voting data storage unit 332. More specifically, the vote-voting CPU acquires each unique code (MD5) from each electronic voting data 521 stored in the electronic voting data storage unit 332. The unique code (MD5) can be acquired by restoring from the pixel embedded by the electronic voting data creation device 100. Then, the vote-voting CPU searches the electronic voting data storage unit 332 by using the acquired unique code (MD5), and determines that the electronic voting data 521 having the same unique code (MD5) exists, the same unique code The time associated with the electronic voting data 521 having (MD5) is compared, and the electronic voting data 521 associated with the latest time is stored in the electronic voting data storage unit 332. Thereafter, the vote counting CPU moves the process to step S305. The vote-voting CPU may compare the times and store the first electronic voting data 521 in the electronic voting data storage unit 332.

  In step S305, the vote-voting CPU obtains the image code after voting from the input electronic voting data 521. More specifically, the vote-voting CPU acquires an image code after voting based on redundant information embedded in the collected electronic voting data 521. Thereafter, the vote counting CPU moves the process to step S306.

  In step S306, the vote counting CPU calculates the encrypted secret code after voting based on the secret code and the image code after voting. More specifically, similarly to the electronic voting data creation device 100, the vote-voting CPU adds the accepted secret code (CAS) and the acquired image code after voting (CAI after voting) and after voting. The secret code (CA after voting) is calculated. Thereafter, the vote counting CPU moves the process to step S307.

  In step S307, the vote counting CPU calculates a secret key based on the encrypted secret code after voting. More specifically, the vote-voting CPU calculates a secret key, similar to the electronic voting data creation device 100. Thereafter, the vote counting CPU moves the process to step S308.

  In step S308, the vote-voting CPU obtains an encrypted password from the input electronic voting data 521 and decrypts it with the secret key. More specifically, the vote-voting CPU sets an area in which the parameter for the GetPos process (see FIG. 14) is par = 0. Here, the set area is set by a parameter in the vote-voting parameter storage unit 331 and is the same as the area set in the electronic voting data creation device 100. Next, the vote counting CPU calculates the password position where the password is written based on the pixels constituting the set area, and restores the encrypted password from bit 2 of the storage channel of the calculated password position. . Then, the vote counting CPU decrypts the restored password based on the secret key. Thereafter, the vote counting CPU moves the process to step S309.

  In step S309, the vote-voting CPU acquires the voting content and the confirmation code based on the decrypted password. More specifically, the vote-voting CPU calculates an area setting value (Ci) based on the decrypted password, sets an area where the parameter to the GetPos process (see FIG. 14) is par = Ci, and sets the area. The voting position is calculated on the basis of the pixels constituting the area. Then, the vote-voting CPU restores the voting content and the confirmation code bit from bit 1 of the calculated voting position storage channel, and acquires the voting content and the confirmation code. Thereafter, the vote counting CPU moves the process to step S310.

  In step S310, the vote counting CPU counts and publishes the acquired voting contents and confirmation codes. More specifically, the vote counting CPU totals the acquired voting contents and confirmation codes based on the voting contents, and acquires the voting results. Then, the vote counting CPU randomly displays the vote contents and the confirmation code on the display device 360 (see FIG. 20). In addition, the vote counting CPU receives a request for transmission of the total content, and transmits the total content according to the received request. Thereafter, the vote counting CPU ends the process.

  FIG. 17 is a diagram showing a bit association table according to an embodiment of the present invention.

The bit association table stores gradation values and bit weights in association with pixel positions. The pixel position is the pixel position calculated by the GetPos process. Weight bits, in the order in which GetPos process is calculated, are stored in association with each of ^{2 0} 2 ^n-1.

  FIG. 18 is a diagram showing an example of creating electronic voting data 521 in the electronic voting data creating apparatus 100 according to an embodiment of the present invention.

  The example illustrated in FIG. 18 is an example in which the electronic voting data creation device 100 displays the entire image data 501 on the display device 160. The electronic voting data creation device 100 accepts the secret code input in the secret code input field 161. Also, the electronic voting data creation device 100 accepts the division number input in the division number setting field 162 and divides the entire image data 501 to create the electronic voting data 521.

  FIG. 19 is a diagram showing an example of displaying electronic voting data 521 in the electronic voting apparatus 200 according to an embodiment of the present invention.

  The example shown in FIG. 19 is an example showing that the electronic voting apparatus 200 displays the electronic voting data 521 on the display device 260. The electronic voting apparatus 200 receives the voting content input in the voting input field 261. Then, the electronic voting apparatus 200 accepts the confirmation code input in the confirmation code input field 262. When the electronic voting medium 700 (see FIG. 22 described later) is connected, the electronic voting medium 700 automatically creates a confirmation code.

  FIG. 20 is a diagram illustrating an example in which the electronic voting data 521 is tabulated and published in the electronic vote counting device 300 according to an embodiment of the present invention.

  The example illustrated in FIG. 20 is an example in which the electronic ticketing device 300 displays the total content on the display device 360. The electronic vote counting device 300 can indicate to the voter that the voting results are correctly counted by displaying the voting contents and the confirmation code side by side on the display device 360, and confirm the voting result to the voter. Can be made.

[Embodiment 3]
The third embodiment is an embodiment of an encryption device 400 that performs encryption processing.

  FIG. 21 is a functional block diagram showing functions of the encryption device 400 according to an embodiment of the present invention. The encryption device 400 includes an image reading unit 401, a region setting unit 402, a pseudo random number generation unit 403, a position calculation unit 404, a hash value calculation unit 405, a weight association unit 406, and an embedding unit 407. Is provided.

  The image reading unit 401 reads an image constituted by pixels composed of gradation values of three primary colors.

  The area setting unit 402 sets an area in the image.

  The pseudo random number generation unit 403 generates a plurality of pseudo random numbers based on the gradation values of one primary color or two primary colors among the three primary colors constituting the image read by the image reading unit 401. Further, the pseudo random number generation unit 403 generates a plurality of pseudo random numbers based on the gradation values of one primary color or two primary colors among the pixels constituting the region set by the region setting unit 402.

  The position calculation unit 404 performs a predetermined calculation based on the plurality of pseudorandom numbers generated by the pseudorandom number generation unit 403, and sequentially calculates a plurality of pixel positions in the image. Further, the hash value calculation unit 405 calculates a hash value using the pixel position as an argument. Then, when the calculated pixel position overlaps, the position calculation unit 404 calculates a hash value by the hash value calculation unit 405 using the position of the overlapped pixel as an argument, and calculates the pixel position based on the calculated hash value. calculate. For example, the flowcharts of the area setting unit 402, the pseudo random number generation unit 403, the position calculation unit 404, and the hash value calculation unit 405 are the same as those in FIG. 14 of the second embodiment.

  The weight association unit 406 uses one primary color or two secondary color values used to generate a pseudo-random number among the three primary color gradation values constituting the pixels at each of the plurality of positions calculated by the position calculation unit 404. Bit weights are associated with predetermined bits among the bits constituting the gradation values of primary colors other than the primary colors in the order calculated by the position calculation unit 404.

  The embedding unit 407 embeds the value of the bit having the same weight as the weight associated with the predetermined bit among the bits constituting the information in the predetermined bit associated with the weight by the weight association unit 406. For example, the flowcharts of the weight association unit 406 and the embedding unit 407 are the same as those in FIG. 13 of the second embodiment.

[Embodiment 4]
The fourth embodiment is an embodiment in which the voting content and the confirmation code are written in the electronic voting data 521 by the electronic voting medium 700 and the voting is performed again.

  FIG. 22 is a functional block diagram showing functions of the electronic voting medium 700 according to an embodiment of the present invention. The electronic voting medium 700 includes a time acquisition unit 701, a voting identification code creation unit 702, a voting identification code output unit 703, a voting data input unit 704, a confirmation code creation unit 705, a password creation unit 706, and voting contents. Writing unit 707, public key obtaining unit 708, encrypted writing unit 709, electronic voting data output unit 710, display unit 711, medium parameter storage unit 731, voting data storage unit 732, medium identification And an information storage unit 733.

  The medium parameter storage unit 731 stores predetermined parameters for an area set in the electronic voting data 521. For example, the medium parameter storage unit 731 stores the starting point values (a, b), the region width A, and the region height B in FIG. 6 of the first embodiment.

  The medium identification information storage unit 733 stores medium identification information (product ID) for identifying the electronic voting medium.

  The time acquisition unit 701 acquires the current time.

  The voting identification code creating unit 702 performs voting identification for each vote based on the medium identification information (product ID) stored in the medium identification information storage unit 733 and the serial number including the time acquired by the time acquisition unit 701. Create a code (called vote ID). For example, if the product ID is PQRS01234, the voting identification code creating unit 702 creates PQRS01234-200901123659-0001 as the voting ID. Note that the electronic voting data creation device 100 uses a fixed product ID portion of the voting ID when transmitting the same electronic voting data 521 as the first time based on the received voting ID.

  The vote identification code output unit 703 outputs the latest vote ID among the vote IDs.

  The voting data input unit 704 inputs electronic voting data 521 which is image data in which a public key is written by a predetermined method, and voting contents indicating accepted candidates.

  The confirmation code creation unit 705 creates a confirmation code in association with the vote contents.

  The password creation unit 706 creates a password for extracting the contents of the vote and the confirmation code.

  The voting content writing unit 707 embeds the voting content and the confirmation code in the electronic voting data 521 based on the password created by the password creating unit 706. For example, the voting content writing unit 707, like the electronic voting apparatus 200 of the second embodiment, based on the password created by the password creating unit 706, parameters to the GetPos process (see FIG. 14) (par = Ci) And an area is set according to the calculated parameters. Next, the voting content writing unit 707 calculates a voting content position for embedding the voting content and the confirmation code based on the pixels constituting the set area, and bit the voting content and the confirmation code in the calculated voting content position. Decompose and embed.

  The public key acquisition unit 708 acquires a public key from the electronic voting data 521 input by the voting data input unit 704.

  The encryption writing unit 709 encrypts and embeds the password in the electronic voting data 521 based on the public key acquired by the public key acquisition unit 708. For example, the encryption writing unit 709 sets an area where the parameter for the GetPos process (see FIG. 14) is par = 0, as in the electronic voting apparatus 200 of the second embodiment. Next, the encryption writing unit 709 calculates a password position for embedding the password based on the pixels constituting the set area. Then, the encryption writing unit 709 embeds the encrypted password by breaking it into bits at the calculated password position.

  The electronic voting data output unit 710 outputs electronic voting data 521 in which the voting contents and confirmation code, and the password are written.

  The voting data storage unit 732 stores a password and a voting ID in association with voting contents and a confirmation code.

  The display unit 711 displays the voting contents and confirmation code stored in the voting data storage unit 732, the password, and the voting ID in association with each other.

  FIG. 23 is a diagram showing an example of an electronic voting medium 700 according to an embodiment of the present invention. The electronic voting medium 700 includes a CPU (not shown, hereinafter referred to as a medium CPU), a storage unit (not shown, including a medium parameter storage unit 731, a voting data storage unit 732, and a medium identification information storage unit 733), and a connection unit 734. A display device 735 and operation buttons (an ID creation button 721, a confirmation code creation button 722, a display button 723, and a voting button 724). The connection unit 734 is configured by a connection interface such as USB (Universal Serial Bus) or near field communication, for example. The display device 735 is configured by, for example, a liquid crystal display.

The electronic voting medium 700 is used as follows as a medium for writing the electronic voting data 521, for example.
(1) First, the electronic voting data creation apparatus 100 connects the electronic voting medium 700. The electronic voting data creation device 100 registers the voting ID created by the electronic voting medium 700 and writes the electronic voting data 521 in the electronic voting medium 700. The electronic voting medium 700 activates the latest voting ID.
(2) The electronic voting apparatus 200 connects the electronic voting medium 700 and writes the received voting content in the electronic voting medium 700. The electronic voting medium 700 creates a confirmation code and creates a password. Then, the electronic voting medium 700 embeds the voting content and confirmation code, and the password in the electronic voting data 521.
(3) The electronic voting apparatus 300 connects the electronic voting medium 700, inputs the voting contents and the confirmation code, aggregates them, and publishes them.

  Further, the electronic voting medium 700 is used in the electronic voting system 10 as follows. FIG. 24 is a diagram illustrating an example of the electronic voting system 10 using the electronic voting medium 700 according to an embodiment of the present invention. A personal computer, a portable terminal, or the like (hereinafter referred to as an electronic voting medium connection terminal 790) to which the electronic voting medium 700 is connected communicates with the electronic voting data creation device 100 and the electronic voting device 300, and transmits and receives electronic voting data 521. . The electronic voting medium connection terminal 790 operates by downloading a program for the electronic voting system 10.

  The electronic voting medium connection terminal 790 connects the electronic voting medium 700. The electronic voting medium 700 creates a voting ID. The electronic voting medium connection terminal 790 transmits a transmission request for the electronic voting data 521 to the electronic voting data creation device 100 based on the voting ID read from the electronic voting medium 700. The electronic voting medium connection terminal 790 receives the electronic voting data 521 from the electronic voting data creation device 100 and displays the received electronic voting data 521 (for example, a display as shown in FIG. Display with no input field). Then, the electronic voting medium connection terminal 790 receives the input of the voting content, and writes the received voting content and the electronic voting data 521 in the electronic voting medium 700. The electronic voting medium 700 acquires the public key from the electronic voting data 521, encrypts the automatically generated password based on the acquired public key, and writes the voting contents and the automatically generated confirmation code in the electronic voting data 521. Then, the electronic voting medium connection terminal 790 reads the electronic voting data 521 from the electronic voting medium 700 and transmits it to the electronic voting apparatus 300.

  In the case of re-voting, the electronic voting medium connection terminal 790 reads the latest voting ID that is active from the electronic voting medium 700, and sends the electronic voting data 521 to the electronic voting data creation apparatus 100 based on the read voting ID. Send a send request. The electronic voting data creation device 100 transmits the same electronic voting data 521 as the first time based on the received voting ID. Then, as described above, the electronic voting medium connection terminal 790 accepts new voting contents based on the received electronic voting data 521 and transmits the electronic voting data 521 written by the electronic voting medium 700 to the electronic vote counting device 300. To do.

  FIG. 25 is a flowchart showing the processing contents of a voting program using the electronic voting medium 700 according to an embodiment of the present invention.

  In step S <b> 401, the CPU of the electronic voting medium connection terminal 790 (hereinafter referred to as a terminal CPU) reads the voting ID from the electronic voting medium 700. Thereafter, the terminal CPU moves the process to step S402.

  In step S402, the terminal CPU receives the electronic voting data 521 from the electronic voting data creation device 100 based on the voting ID. Thereafter, the terminal CPU moves the process to step S403.

  In step S403, the terminal CPU displays the electronic voting data 521. Thereafter, the terminal CPU moves the process to step S404.

  In step S404, the terminal CPU accepts voting content. Thereafter, the terminal CPU moves the process to step S405.

  In step S405, the terminal CPU writes the voting content and the electronic voting data 521 in the electronic voting medium 700. Thereafter, the terminal CPU moves the process to step S406.

  In step S406, the terminal CPU reads the encrypted electronic voting data 521 from the electronic voting medium 700. Thereafter, the terminal CPU shifts the processing to step S407.

  In step S <b> 407, the terminal CPU transmits the read electronic voting data 521 to the electronic vote counting device 300. Thereafter, the terminal CPU ends the process.

  FIG. 26 is a flowchart showing the processing contents of the electronic voting medium 700 according to an embodiment of the present invention.

  In step S501, the medium CPU determines whether the input data is electronic voting data 521 or not. If the determination is YES, the medium CPU moves the process to step S502, and if the determination is NO, the medium CPU moves the process to step S503.

  In step S502, the medium CPU stores the voting content and the electronic voting data 521 in the storage unit. Thereafter, the medium CPU moves the process to step S501.

  In step S503, the medium CPU determines whether or not the ID creation button 721 has been pressed. If the determination is YES, the medium CPU moves the process to step S504, and if the determination is NO, the medium CPU moves the process to step S505.

  In step S504, the medium CPU creates a vote ID. More specifically, the medium CPU creates a vote ID based on the serial number including the current time and the product ID stored in the medium identification information storage unit 733. Then, the medium CPU activates only the latest created vote ID. Thereafter, the medium CPU moves the process to step S501.

  In step S505, the medium CPU determines whether or not the confirmation code creation button 722 has been pressed. If the determination is YES, the medium CPU moves the process to step S506, and if the determination is NO, the medium CPU moves the process to step S507.

  In step S506, the medium CPU creates and stores a confirmation code and a password. More specifically, the medium CPU generates a random number for confirmation code and a random number for password one after another by pressing the confirmation code creation button 722, and the second time by pressing the confirmation code creation button 722. Determine the random number. Then, the medium CPU creates a confirmation code and a password by combining the determined random number and the current time, and stores the confirmation code and the password in the storage unit in association with the contents of the vote. Thereafter, the medium CPU moves the process to step S501.

  In step S507, the medium CPU determines whether or not the display button 723 is pressed. If this determination is YES, the medium CPU moves the process to step S508, and if NO, the medium CPU moves the process to step S509.

  In step S508, the medium CPU displays the vote contents, the confirmation code, and the password. More specifically, the medium CPU displays the content of the vote, the confirmation code, and the password on the display device 735 when the detected display button 723 is pressed. Then, each time the detected display button 723 is pressed, the medium CPU displays the voting content, the confirmation code, and the password stored in the storage unit on the display device 735. Thereafter, the medium CPU moves the process to step S501.

  In step S509, the medium CPU determines whether or not the voting button 724 has been pressed. If the determination is YES, the medium CPU moves the process to step S510, and if the determination is NO, the medium CPU moves the process to step S501.

  In step S <b> 510, the medium CPU embeds the voting content and confirmation code, and the password in the electronic voting data 521. More specifically, the medium CPU calculates a parameter (par = Ci) for the GetPos process (see FIG. 14) based on the password, and sets and sets an area in the electronic voting data 521 based on the calculated parameter. The voting content and the confirmation code are embedded in the voting content position calculated based on the pixels constituting the area. Next, the medium CPU acquires a public key from the electronic voting data 521 and encrypts a password based on the acquired public key. Then, the medium CPU embeds the encrypted password in the password position in the electronic voting data 521 calculated by the GetPos process (see FIG. 14, par = 0). Thereafter, the medium CPU moves the process to step S501.

  FIG. 27 is a flowchart showing the processing contents of the electronic voting data creation device 100 when using the electronic voting medium 700 according to an embodiment of the present invention.

  In step S151, the creation CPU creates electronic voting data 521. The creation CPU creates electronic voting data 521 in the same manner as steps S101 to S108 in FIG. Thereafter, the creation CPU moves the process to step S152.

  In step S152, the creation CPU determines whether or not a vote ID is received. That is, the creation CPU determines whether or not a vote ID has been received from the electronic voting medium connection terminal 790. If this determination is YES, the creating CPU moves the process to step S153, and if NO, the creating CPU ends the process.

  In step S153, the creation CPU determines whether it is the first time. That is, the creation CPU determines whether or not the vote ID is stored in a storage unit (not shown). If this determination is YES, the creating CPU moves the process to step S154, and if NO, the creating CPU moves the process to step S156.

  In step S154, the creation CPU stores the electronic voting data 521 in association with the voting ID. Thereafter, the creation CPU moves the process to step S155.

  In step S155, the creation CPU transmits electronic voting data 521. That is, the creation CPU transmits the electronic voting data 521 to the electronic voting medium connection terminal 790 that has transmitted the voting ID. Thereafter, the creation CPU ends the process.

  In step S156, the creation CPU searches by the received vote ID, and acquires the electronic vote data 521 associated with the searched vote ID. That is, the creation CPU searches a storage unit (not shown) that stores the electronic voting data 521 and the voting ID in association with each other by the voting ID, and acquires the electronic voting data 521 associated with the searched voting ID. . Thereafter, the creation CPU moves the process to step S155.

  FIG. 28 is a flowchart showing the processing contents of the electronic balloting device 300 when using the electronic voting medium 700 according to one embodiment of the present invention.

  In step S351, the vote-voting CPU inputs electronic voting data 521. That is, the vote-voting CPU inputs the electronic voting data 521 as in step S301 in FIG. Thereafter, the vote counting CPU moves the process to step S352.

  In step S352, the vote counting CPU determines whether or not a vote ID is received. That is, the vote counting CPU determines whether or not the vote ID is received from the electronic voting medium connection terminal 790. If this determination is YES, the vote-voting CPU moves the process to step S353, and if NO, the vote-voting CPU moves the process to step S355.

  In step S353, the vote counting CPU determines whether it is the first time. That is, the vote counting CPU determines whether or not the vote ID is stored in the electronic vote data storage unit 332. If this determination is YES, the vote-voting CPU moves the process to step S354, and if NO, the vote-voting CPU moves the process to step S357.

  In step S354, the vote-voting CPU stores the electronic voting data storage unit 332 in association with the electronic voting data 521 with the vote ID. Thereafter, the vote counting CPU moves the process to step S355.

  In step S355, the vote counting CPU determines whether or not the vote counting condition is satisfied. That is, the vote-voting CPU determines whether or not the vote-voting condition is satisfied, similarly to step S302 in FIG. If this determination is YES, the vote-voting CPU moves the process to step S356, and if NO, the vote-voting CPU moves the process to step S351.

  In step S356, the vote counting CPU performs a vote counting process. That is, the vote counting CPU performs the vote counting process in the same manner as in steps S303 to S310 in FIG. Thereafter, the vote counting CPU ends the process.

  In step S357, the vote-voting CPU searches for the received vote ID and overwrites the electronic vote data 521 associated with the searched vote ID. That is, the vote-voting CPU searches the electronic voting data storage unit 332 that stores the electronic voting data 521 and the voting ID in association with each other by the product ID, and associates the electronic voting data 521 with the voting ID including the searched product ID. The electronic voting data 521 is overwritten and stored in the electronic voting data storage unit 332. Thereafter, the vote counting CPU moves the process to step S355. Note that the vote counting CPU may overwrite the time based on the time included in the vote ID.

  According to the present embodiment, the electronic voting medium 700 has the medium identification information storage unit 733 that stores medium identification information for identifying the electronic voting medium 700. Then, the electronic voting medium 700 acquires the current time, and creates a voting ID for each vote based on the medium identification information stored by the medium identification information storage unit 733 and the serial number including the acquired time. The latest vote ID is output. Then, the electronic voting medium 700 inputs the electronic voting data 521 in which the public key is written by a predetermined method and the voting content indicating the accepted candidate, creates a confirmation code in association with the voting content, Create a password to extract voting details and verification code. Next, the electronic voting medium 700 embeds the voting content and the confirmation code in the electronic voting data 521 based on the created password, acquires the public key from the input electronic voting data 521, and uses the acquired public key as the public key. Based on this, the password is encrypted, embedded in the electronic voting data 521, and output. Therefore, the electronic voting medium 700 can create the electronic voting data 521 that can be voted as many times as possible within a predetermined vote date in the electronic voting, and the illegal voting. It is possible to create electronic voting data 521 that easily prevents the occurrence of voting. Furthermore, the electronic voting medium 700 can create electronic voting data 521 that can confirm that the counting after the voting is correctly performed by the confirmation code and verify the voting contents by the password.

  Furthermore, the electronic voting medium 700 stores the voting content and the confirmation code in association with the password and the voting ID, and displays the stored voting content and confirmation code, the password, and the voting ID in association with each other. . Therefore, the electronic voting medium 700 can provide information that can confirm that the counting after the voting is correctly performed and verify the voting contents.

  As mentioned above, although embodiment of this invention was described, this invention is not restricted to embodiment mentioned above. The effects described in the embodiments of the present invention are only the most preferable effects resulting from the present invention, and the effects of the present invention are limited to those described in the embodiments of the present invention. is not.

DESCRIPTION OF SYMBOLS 10 Electronic voting system 100 Electronic voting data creation apparatus 101 Secret code reception part 102 Whole image data change part 103 Whole image code calculation part 104 Cryptographic secret code calculation part 105 Encryption key creation part 106 Division number setting part 107 Whole image division part 108 Creation Area setting unit 109 Public key position calculation unit 110 Unique code creation unit 111 Unique code position calculation unit 112 Redundant information writing unit 113 Electronic voting data creation unit 114 Electronic voting data output unit 131 Creation parameter storage unit 200 Electronic voting device 201 Voting input Unit 202 voting area setting unit 203 voting public key position calculating unit 204 public key obtaining unit 205 voting receiving unit 206 password receiving unit 207 voting content area setting unit 208 voting content position calculating unit 209 password encryption unit 210 password position calculating unit 2 DESCRIPTION OF SYMBOLS 1 Vote writing part 212 Re-voting reception part 213 Vote output part 231 Voting parameter memory | storage part 300 Electronic ticket-voting apparatus 301 Vote-voting input part 302 Vote-voting determination part 303 Voting secret code reception part 304 Voting-inheritance code | cord | chord code | cord | Electronic voting data search unit 307 Electronic voting data determination unit 308 Total voted image code calculation unit 309 Voted cryptographic secret code calculation unit 310 Secret key creation unit 311 Voted region setting unit 312 Voted password position calculation unit 313 Encryption password acquisition unit 314 Encryption password decryption Unit 315 voted vote content area setting unit 316 voted vote position calculating unit 317 vote data obtaining unit 318 voted publication unit 331 voted parameter storage unit 332 electronic vote data storage unit 400 encryption device 401 image reading unit 402 area setting unit 403 Pseudorandom number generation unit 404 Position calculation unit 405 Hash value calculation unit 406 Weight correspondence unit 407 Embedding unit 700 Electronic voting medium 701 Time acquisition unit 702 Vote identification code creation unit 703 Vote identification code output unit 704 Vote data input unit 705 Confirmation code Creation unit 706 Password creation unit 707 Vote content writing unit 708 Public key acquisition unit 709 Encryption writing unit 710 Electronic voting data output unit 711 Display unit 721 ID creation button 722 Confirmation code creation button 723 Display button 724 Vote button 731 Media parameter Storage unit 732 Voting data storage unit 733 Medium identification information storage unit 734 Connection unit 735 Display device

Claims (2)

An electronic voting medium for writing the contents of a vote,
Medium identification information storage means for storing medium identification information for identifying an electronic voting medium;
Time acquisition means for acquiring the current time;
Voting identification code creating means for creating a voting identification code for each vote based on the medium identification information stored by the medium identification information storage means and a serial number including the time obtained by the time obtaining means;
Voting identification code output means for outputting the latest voting identification code among the voting identification codes;
Voting data input means for inputting electronic voting data in which a public key is written by a predetermined method, and voting contents indicating accepted candidates;
Confirmation code creating means for creating a confirmation code in association with the content of the vote;
Password creating means for creating a password for extracting the voting content and the confirmation code;
Voting content writing means for embedding the voting content and the confirmation code based on the password created by the password creating means in the electronic voting data;
Public key acquisition means for acquiring the public key from the electronic voting data input by the voting data input means;
Encrypted writing means for encrypting and embedding the password in the electronic voting data based on the public key acquired by the public key acquiring means;
Electronic voting data output means for outputting electronic voting data written by the encrypted writing means;
An electronic voting medium comprising: Voting data storage means for storing the password and the voting identification code in association with the voting content and the confirmation code;
Display means for displaying the voting content and confirmation code stored in the voting data storage means, the password, and the voting identification code in association with each other;
The electronic voting medium according to claim 1, further comprising:

Images