FR3103610A1 - PROCESS FOR CONDUCTING AN ANONYMIZED ELECTRONIC POLLING INTERFACED TO A CHAIN OF BLOCKS - Google Patents

Abstract

The present invention is a method of carrying out an anonymized electronic ballot interfaced to a chain of blocks, composed of an information base of an electronic ballot, of a distributed database register and interfaced in a chain. of blocks replicated by a college of a minimum of two validation nodes, said validation nodes having a read and write right on said database register, of a plurality of voters identified in the database electronic ballot information, each voter having received one or more dematerialized voting tokens from a transaction (called a "coinbase") initially generated as a reward for mining a block of said blockchain by one of the validation nodes of said college, of at least one digital ballot box capable of receiving dematerialized voting tokens, said ballot box identified in the electronic ballot information base, the transfer of said tokens by a voter to the ballot box and validated by r the college of nodes constitutes the electronic ballot, characterized in that the distributed and interfaced blockchain database register only authorizes the peer-to-peer transfer of said tokens from a so-called "coinbase" transaction.

Description

METHOD FOR CARRYING OUT ANONYMIZED ELECTRONIC POLLING INTERFACED WITH A CHAIN OF BLOCKS

The present invention generally relates to the field of electronic voting, and more particularly to the field of distributed data registers interfaced in blockchains.

State of the prior art

The organization of high-stakes ballots remains complex both at the public (political elections) and private (elections in companies, general assemblies, etc.) level.

Historically, the paper ballot is and remains the most widespread solution for carrying out an election. Responding to all the constraints and legal issues of a ballot, it remains the most widespread voting method to date. However, the organization of such a vote remains costly, and imposes significant logistical constraints for each vote. In addition, the centralization of polling stations requires the systematic movement of voters, or the transfer of the right to vote by proxy, which remains a restrictive process. These limitations contribute in particular to an intrinsic increase in the rate of absenteeism during elections.

As a first response to these new challenges in the era of digital transformation, there are now means and methods of carrying out electronic ballots, in particular terminals, voting machine or voting by interactive box, to name but a few. However, these means do not fully guarantee compliance with the issues and legal constraints related to the vote, in particular the security of the vote, its uniqueness, its perfect anonymity, its transparency or its verifiability.

The recent democratization of decentralized networks interfaced in blockchain and peer-to-peer data transmission has enabled the creation of new ballot organization solutions seeking to meet the organizational constraints of an electronic vote.

For example, interfacing an electronic ballot with a so-called public block chain (such as “bitcoin” technology) makes it possible to satisfy the uniqueness, transparency and verifiability of the vote. However, due to the public nature of the register interfaced with the blockchain, the anonymity of the voter cannot be guaranteed: the origin and destination of the vote are visible to all.

In another case, it is possible to interface an electronic ballot with a blockchain whose data transmission is anonymized: it is impossible for an outside observer to know the origin or destination of a transaction recorded in the register. Although this solution seems ideal for guaranteeing the perfect secrecy of the vote, it is not possible to satisfy the issues of transparency and uniqueness of the vote: a voter would have the possibility of voting several times.

The object of the present invention is to propose a method for producing an anonymized electronic voting ballot interfaced to a chain of blocks, making it possible to guarantee the uniqueness of the vote and prevent double voting. The document notably proposes a method for carrying out this type of electronic ballot.

The present invention is a method of realizing an anonymized electronic voting ballot interfaced with a blockchain, composed of an information base of an electronic ballot, a database register distributed and interfaced in chain of blocks replicated by a college of a minimum of two validating nodes, said validating nodes having read and write rights on said database register, of a plurality of voters identified in the database electronic ballot information, each voter having received one or more dematerialized voting tokens resulting from a transaction (known as "coinbase") initially generated as a reward for the mining of a block of said chain of blocks by one of the validation nodes said college, at least one digital ballot box that can receive dematerialized voting tokens, said ballot box identified in the electronic ballot information base, the transfer of said tokens by a voter to the ballot box and validated by the college of nodes constitutes electronic voting, characterized in that the database register distributed and interfaced in blockchain only authorizes the peer-to-peer transfer of said tokens resulting from a so-called “coinbase” transaction.

Advantageously, limiting the peer-to-peer transfer of dematerialized voting tokens only from a coinbase transaction makes it possible to prevent the double spending of a dematerialized voting token, thus guaranteeing that a dematerialized voting token cannot be transferred from one voter to another and then to a ballot box, or that the ballot box can spend the dematerialized voting token previously sent by a voter.

According to an advantageous variant embodiment, the distributed database register is interfaced with a chain of so-called “anonymous” blocks, characterized in that the transfer of data or the transactions recorded in said database register are untraceable and non-traceable. linked by an external observer different from the sender and the recipient of said transfers.

In this same advantageous variant, the sender of a data transfer or a transaction may choose to make the information of said transfer public, in particular information on the content of said transfer.

Advantageously, the voters receive the dematerialized voting token(s) in a cryptographic wallet composed of a private key known exclusively to the voter and a public key, and the digital ballot box(es) receive the dematerialized voting token(s) in a crypto wallet consisting of a private key and a public key.

In addition, the said dematerialized token(s) come from transactions (known as “coinbase”) initially generated as a reward for mining a block and sent directly to the voters’ cryptographic wallet.

Also, the public key of a voter and the public key of the digital ballot box are derived respectively from the private key of said voter and the private key of said digital ballot box by an asymmetric cryptography process.

In another advantageous embodiment, the chosen asymmetric cryptography process meets the contemporary standards of asymmetric cryptography which is characterized by the use of processes such as, but not limited to, RSA (“Rivest–Shamir–Adleman”) or ECC (elliptic curve cryptography).

The voter transfers the dematerialized voting token(s) to a digital ballot box by sending them to a single-use reception address generated by said voters from the public key of said digital ballot boxes.

Advantageously, the voter can verify the transfer of the dematerialized voting token from which he originates by using the private key of his cryptographic wallet.

According to an advantageous embodiment variant, the entry of data in the database register distributed and interfaced in blockchain is subject beforehand to a validation consensus of the delegated proof-of-stake type. in English) by said college of nodes.

Advantageously, the blockchain-interfaced, distributed database registry is able to combat certain types of attacks, such as but not limited to the Byzantine Generals (Byzantine Fault Tolerance) problem, while limiting the power consumption of the blockchain network in terms of the computing power required for data validation and replication.

In one embodiment, an organizing entity instructs the college of validation nodes to create or amend the database register distributed and interfaced in blockchain upstream of the ballot, said creation or amendment comprising the information base or a method of electronic voting.

Finally, according to an advantageous variant embodiment, the college of validation nodes for the electronic ballot is a secondary subset of a college of main validation nodes and the database register distributed and interfaced in a chain of blocks is registered in another distributed database ledger interfaced in main blockchain whose information is validated and registered by said main college.

Other characteristics and advantages of the invention will appear on reading a preferred embodiment of the invention, with reference to the attached figures, including:

schematically represents the entities taking part in the creation, transmission and storage of data during an electronic ballot organized on a distributed database register and interfaced in blockchain according to an embodiment of the invention.

schematically represents the creation of the original block of the blockchain.

schematically represents the creation of the cryptographic wallet of the electronic ballot box.

schematically represents the creation of the voter's crypto wallet.

schematically represents the transfer of the ballot information base to the network and the verification of said base by the validation nodes of said network.

schematically represents the registration of the information base in the blockchain-interfaced distributed database ledger.

schematically represents the creation and distribution of dematerialized voting tokens to voters.

schematically represents the transfer of dematerialized voting tokens to electronic ballot boxes.

schematically depicts the blockchain interfaced database network and registry in another embodiment of the invention.
Detailed description of particular embodiments

The main idea behind the invention is to transmit unique data of decisions, ballots or opinions, in a distributed database register and interfaced in blockchain, in an anonymous way.

Before going further in the description of an embodiment of the present invention, certain terms used or which can be used in reference to the state of the art must be defined.

The terms “UTXO” and “Unspent Transactions Output” can be used interchangeably and refer to the remainder (“output”) of a transaction written into a blockchain that has not yet been used as input (“input”) into a new transaction. These remainders ("output") therefore designate the origin of a new entry ("input") in a transaction and has the effect of prohibiting any future reference to the outputs designated by the inputs of this transaction, and therefore of preventing a double expenditure of the amount of these outings.

The term “coinbase” refers to the rest (“output”) previously mentioned and designates a transaction whose input (“input”) was created ex-nihilo during the block generation process (mining) and not from a remainder (“output”) of a previous transaction. A coinbase transaction is therefore a transaction resulting directly from the mining of a block.

The term "genesis block" refers to the first block (sometimes called "block 0") of data in a blockchain that contains information about the creation of the blockchain and additional data that can be entered in the block. It is the only block in a blockchain that does not reference a previous block.

The term "mining" refers to the mining operation consisting of assembling transactions into "blocks". The majority of blockchain-based protocols tend to add a second function to mining, namely that of creating dematerialized tokens as a reward for mining new blocks.

The term “mining reward” refers to the subsidy received by the validating node creating a new block when mining in a blockchain. This grant rewards the producer of a new block for its contribution in securing and registering transactions in the blockchain.

In a first possible embodiment, we consider a database ledger interfaced in blockchain using a “UTXO” (“Unspent Transaction Outputs”) type ledger model, a model notably used by blockchain-based blockchains. bitcoin technology. In it, we consider transactions to be based on Diffie-Helman key exchanges ( Diffie , W., and M. Hellman, “ New Directions in Cryptography ” , 1976. ), as used by the Monero blockchain and initially in the Cryptonote protocol (Nicolas van Saberhagen , “ CryptoNote v 2.0 ” , 2013 ).

In this case, in the embodiment described below, the blockchain model used is X-Cash , based on the "UTXO" register model and which has the particularity of offering transactions using exchanges of Diffie-Helman keys with an overlay of cryptographic tools derived from Monero technology to make transactions anonymous. In addition, X-Cash offers the possibility for the issuer of a transaction to enter the information (recipient, issuer and content of the transaction) in clear text in the ledger interfaced to the blockchain, thus making the transaction public to the within an anonymous registry by default.

In addition, on the X-Cash blockchain , the network's validating nodes carry out a distributed consensus of the delegated proof of stake type to validate the veracity of the information entered on the ledger. transactions.

In the embodiments described below, the X-Cash blockchain is modified so that the blockchain-interfaced distributed database ledger only accepts peer-to-peer transfer of transactions from a so-called “coinbase” transaction, generated as a reward for mining a block from the blockchain by one of the validating nodes of the blockchain.

There schematically represents the entities taking part in the creation, transmission and storage of data during an electronic ballot organized on a distributed database register and interfaced in a chain of blocks 700 according to an embodiment of the invention .

Initially, a decentralized network 600 is defined comprising a set of validation nodes 602 which establish a peer-to-peer type connection between them. These validation nodes 602 can for example be desktop computers, laptops, connected mobile phones or another device capable of being connected to the internet or capable of connecting to the decentralized network 600.

Network 600 may be comprised of a minimum of two nodes 602. In one embodiment described below, three nodes 602 represent the entire decentralized network 600. The nodes are capable of registering transaction data that is exchanged within the network 600 on a blockchain interfaced database ledger 700.

The blockchain-interfaced database register 700 is composed of at least an original block 701 described as above, and subsidiary blocks 702 and 703 which include register information and transactions carried out within the network 600 .

The nodes 602 each replicate a copy of a database ledger interfaced in a chain of blocks 700, the ledger itself stores the transaction data carried out between the various users of the network. In the case of a blockchain based on X-Cash technology as previously described and used in this embodiment, transaction data is stored anonymously in the blockchain ledger 700. This implies that users are capable of verifying the information and content of a transaction only of which they are the issuers by using a private key of their own. Also, in the case of a blockchain based on X-Cash technology , the issuer of a transaction on the network 600 can choose at its discretion to make the transfer information public.

In this embodiment, each node 602 participates in a delegated proof of stake type consensus with the other nodes 602 before entering transaction data in the register, to ensure a democratic process in the validation of transaction data and thus avoid the registration of erroneous or falsified data in the database register interfaced in block chain 700.

Voters 202 and at least one electronic ballot box 800 are identified upstream of the electronic ballot, and their information is registered in a ballot information base 500. In the embodiment described below, we consider two electronic ballot boxes 800. Said electronic ballot boxes 800 represent the possible results of the ballot, namely a candidate, a list or any other type of proposal for which the voters 202 will be able to distribute their votes.

Voters 202 can each be equipped with a terminal 204 capable of interacting with a network via an internet or wired connection. Terminals 204 may be, but are not limited to, desktop computers, laptops, connected cell phones, or any other device with or capable of being connected to network 600 through nodes 602.

The electronic ballot can also be composed of an organizing entity 400, comprising for example a natural person 420 equipped with a terminal 422 capable of interacting with the network 600 via the nodes 602 and an internet connection . This organizing entity 400 can also be composed, for example, of several natural persons 420 or of several terminals 422, or also be a node 602 of the network 600.

The organizing entity 400 is responsible for aggregating the entire polling information base 500, including information on voters 202 and electronic ballot boxes 800. This polling information base 500 may also include, for example , a start date and an end date of the ballot, instructions for creating the blockchain or information necessary for the conduct of the ballot.

Said information base 500 includes all the elements and data necessary for establishing the ballot. The organizing entity 400 will have for example a priori collected the information of the voters 202 and verified their legitimacy before registering them in this information base 500.

There schematically represents the creation of the original block 701 of the chain of blocks 700, representing the first step of the method of organizing the ballot.

To initiate the electronic ballot, the organizing entity 400 according to the embodiment described previously sends an instruction 504 to the network 600 to create the original block 701 of the chain of blocks 700. The original block 701 can in particular include information on the operation of the chain of blocks 700, for example the delay between the mining of the blocks, the amount of information that can be contained per block or else the nature of the information contained in the block.

There represents the step of creating the electronic wallet 810 of one of the electronic ballot boxes 800.

The organizing entity 400 possessing the information of the electronic ballot boxes 800 in the information base 500, it can generate a cryptographic wallet 810 comprising a private key 812 and a public key 814 for each ballot box 800.

The organizing entity 400 first generates the private key 812, which will be able a posteriori to verify the content of the cryptographic wallet 810 at the end of the ballot. From said private key 812 is generated a public key 814 through an asymmetric cryptography process, characterized in that it is impossible for a physical person or a computer to guess the private key 812 from the public key 814.

According to one embodiment, the asymmetric cryptography method used can for example be the ECC ("elliptic-curve cryptography" in English) although it is possible to use other methods such as than, but not limited to, RSA (“Rivest–Shamir–Adleman”).

Once the cryptographic wallet 810 has been generated, the organizing entity 400 registers the public key 814 in the information base 500.

There represents the step of creating unique addresses 220 generated by voters 202.

The organizing entity 400 sends an electronic wallet creation instruction 502 to the voters 202 already identified in the information base 500. The voters 202 each generate a personal electronic wallet 210, comprising a private key 212 and a public key 212.

The voters 202 first generate the private key 212, which will be able to decrypt and unlock the tokens which will be sent to their cryptographic wallet 210. From said private key 212 is generated a public key 214 via a process asymmetric cryptography, characterized in that it is impossible for a physical person or a computer to guess the private key 212 from the public key 214.

According to one embodiment, the asymmetric cryptography method used can for example be the ECC ("elliptic-curve cryptography" in English) although it is possible to use other methods such as than, but not limited to, RSA (“Rivest–Shamir–Adleman”).

Once the cryptographic wallet 210 has been created, the voters generate a unique address 220 from the keys 212 and 214 of the cryptographic wallet 210. This unique address 220 is able to receive the tokens resulting from the mining of blocks during the generation event of the tokens.

In the embodiment described here, the unique address 220 of voter 202 is generated such that one voter 202 cannot obtain the same unique address 220 as another voter 202, or obtain the same address s tries to generate it multiple times.

The unique address 220 of the voters 200 is then transferred to the organizing entity 400 and registered in the information base 500.

There represents the step of sending and verifying the information base 500 by the validation nodes 602 of the network 600.

After the aggregation of the ballot information in the information base 500, namely the public keys 814 of the ballot boxes 800 and the unique addresses 220 of the voters 200, the organizing entity 400 transfers said information base 500 to the nodes of validation 602 of the network 600.

Each validation node 602 then verifies the data of the information base 500 independently of the other nodes 602. This verification includes in particular a validation of the electronic ballot boxes 800 and of the voters 202.

In a particular embodiment, if the data of the information base 500 differs from the observation of the verification of the nodes 602, the ballot cannot continue and another phase of acquisition of the ballot data must be made as described in THE and [Fig 3b].

If the nodes 602 cannot reach a consensus on the data of the information base 500, the ballot cannot continue and another phase of acquisition of the ballot data must be made by the organizing entity 400 as described in and [Fig 3b].

In a variant of the invention, the consensus between the nodes 602 of the network 600 can be of the “byzantine generals problem” type (“byzantine fault tolerance” in English). This implies that consensus is reached if exactly more than two-thirds of the nodes 602 in the network agree on the same result.

If consensus is reached between the nodes 602, they write the contents of the information base 500 into the block 702 of the chain of blocks 700 as described in the .

There represents the event of generation of dematerialized voting tokens 900 by mining blocks 703 of the chain of blocks 700.

Once the information base 500 is registered in the blockchain 700, the validating nodes 602 can begin the process of creating the dematerialized tokens 900 in accordance with the methods registered in said information base 500.

The process of creating dematerialized tokens 900 begins with a so-called "mining" step of block 703, which consists of assembling the transactions that have been carried out on the network 600 and validating them via a consensus of the nodes of validation 602.

In one embodiment of the invention, a node 602 of the network 600 is designated to write the transaction information in the last block of the chain of blocks 700, namely 703. Once the information has been validated, the designated node 602 writes the transaction information and generates a 710 mining reward.

Advantageously, this mining reward 710 only includes the dematerialized voting tokens 900 which will be distributed to the different unique addresses 220 of the voters 202, via so-called “coinbase” transactions.

At the time of the mining of block 703, the designated node 602 uses the data from the information base 500 entered in block 702 and indicates the unique addresses 220 of the voters 202 as the address for receiving the dematerialized voting tokens 900 from the mining reward 710. Said tokens 900 will be directly generated on the addresses 220 of each voter 202, thus giving them the right to vote in the poll. Voters 202 will have the ability to spend these tokens by unlocking them using the private key 212 of their crypto wallet 210.

In this embodiment of the invention, the generation of the dematerialized voting tokens 900 only stops when all the voters 202 have received the tokens 900 on their unique address 220 as indicated in the information base 500 registered in the block 702.

There schematically represents the transmission of the dematerialized voting tokens 900 from the voters 202 to the ballot box 800.

At the time of voting, the voter 202 must transfer the dematerialized voting tokens 900 which are stored on the unique address 220 to the ballot box 802 which corresponds to the voting intention of said voter 202.

First, each voter 202 will secretly generate a unique reception address 820 from the public key 814 of the ballot box 800. This unique reception address 820 is characterized in that no other voter 202 can generate the same address from the public key 814.

Advantageously, it is impossible for an outside observer to link the unique receive address 820 to the voter 202 who generated it.

Once the unique reception address 820 has been created, the voter 202 uses his private key 212 to unlock the dematerialized voting token 900 contained in his unique address 220 and transfers it to the unique reception address 820. Since the vote 900 comes from the mining reward 710 (so-called “coinbase” transaction), the nodes 602 of the network 600 will be able to validate it.

Advantageously, only the private key 812 of the ballot box 800 can verify the content of the unique reception address 820, and unlock the voting token 900. However, since the token 900 in the unique reception address 820 comes from transaction from voter 202 to ballot box 800 and not from mining reward 710, established blockchain 700 rules prevent said transfer of token 900 by ballot box 802.

Each transaction from voters 202 to ballot boxes 800 is recorded and validated by validating nodes 602 of network 600 to block 704 of blockchain 700. Transaction information is only verifiable by voter 202 who is originally, thus certifying the secrecy of the vote.

The voting process will include the transfer of each dematerialized voting token 900 from the voters 202 to the various electronic ballot boxes 800 of the ballot. The vote is completed either after a predetermined period indicated in the information base 500 which has been registered in block 702, or after the distribution of all the voting tokens 900 by the voters 202, or after another event defined by the organizing entity 400 ahead of the ballot.

The number of votes received by the ballot box 800 can be counted simply by checking the contents of each unique reception address 820 on which the voters 202 have transferred their tokens 900, by the use of the private key 812 of the ballot box 800 Thus, it will be possible to check the number of votes of each ballot box 800 and decide on the final result of the ballot.

With the information set forth in this description, other embodiments may be apparent to those skilled in the art.

In another embodiment of the invention, and in the case of organization of a specific ballot, the voter 202 has the possibility of choosing whether the transfer of the token 900 is public or anonymous. The public transfer would allow transaction information to be written in the clear to the blockchain interfaced database ledger 700, making it readable by an outside observer.

There schematically depicts the network 600 in another embodiment.

In another advantageous embodiment, voting may be administered by validating nodes 602 of a network 600 representing a subset of a core network 1600 including other validating nodes 602. Nodes 602 replicate and validate transactions within the mainnet 1600 in a blockchain interfaced database ledger 1700.

Once the ballot is complete, the contents of the blockchain-interfaced database register 700 can be written in full to the last block of the blockchain-interfaced register 1700. The subset 600 represents a parallel network (“sidechain”) in English) of the 1600 mainnet.

Claims (8)

A method of performing a blockchain-interfaced anonymized electronic voting ballot, comprising an electronic ballot information base (500), a distributed and blockchain-interfaced database ledger (700) replicated by a college (600) of a minimum of two validator nodes (602), said validator nodes having read and write permission to said database register, of a plurality of voters (202) identified in the electronic ballot information base (500), each voter (202) having received one or more dematerialized voting tokens (900) resulting from a transaction (called "coinbase") initially generated as a reward the mining of a block of said chain of blocks (700) by one of the validation nodes (602) of said college (600), of at least one digital ballot box (800) able to receive the dematerialized voting tokens (900 ), said ballot box (800) identified in the electronic ballot information base (500), transfer of said tokens (900) by a voter (202) to the ballot box (800) and validation by the college of nodes ( 600) constitutes the electronic ballot, characterized in that the database register distributed and interfaced in block chain (700) only authorizes the peer-to-peer transfer of said tokens (900) resulting from a so-called transaction “coinbase”. The method of conducting an anonymized blockchain-interfaced electronic voting ballot according to claim 1, characterized in that voters (202) receive the dematerialized voting token(s) (900) in a cryptographic wallet (210) composed of a private key (212) known exclusively to the voter and a public key (214), and the digital ballot box(es) (800) receive the dematerialized voting token(s) (900) in a cryptographic wallet ( 812) composed of a private key (814) and a public key (816). The method of performing an anonymized electronic voting ballot interfaced to a blockchain according to the preceding claims, characterized in that the public key (214) of a voter (202) and the public key (814) of the ballot box (800) are derived respectively from the private key (214) of said voter (202) and the private key (814) of said digital ballot box (800) by an asymmetric cryptography process. The method of carrying out an anonymized electronic voting ballot interfaced to a block chain according to the preceding claims, characterized in that the voters (202) transfer the dematerialized voting token(s) (900) to the digital ballot boxes (800) by sending them to a one-time receive address (820) generated by said voters (202) from the public key (814) of said digital ballot boxes (800). The method of carrying out an anonymized electronic voting ballot interfaced to a block chain according to the preceding claims, characterized in that the voter (202) can verify the transfer of the dematerialized voting token (900) from which he originates by using the private key (214) of his crypto wallet (210). The method of performing an anonymized blockchain-interfaced electronic ballot according to claim 1, characterized in that the entry of data into the blockchain-interfaced distributed database register (700) is submitted beforehand to a validation consensus of the delegated proof-of-stake type (called “delegated proof-of-stake”) by said college of validation nodes (600). The method of performing an anonymized electronic voting ballot interfaced to a blockchain according to claim 6, characterized in that an organizing entity (400) instructs the college of validation nodes (600) to create or amend the blockchain interfaced distributed database ledger (700) prior to the ballot, said creation or amendment comprising the electronic ballot information base (500). The method of performing an anonymized electronic voting ballot interfaced to a block chain according to the preceding claims, characterized in that the college of validation nodes (600) of the electronic ballot is a secondary subset of a college of main validator nodes (1600) and the blockchain-interfaced distributed database ledger (700) is registered in another main blockchain-interfaced distributed database ledger (1700) whose information is validated and registered by said college of primary validator nodes (1600).