JP2007183707A - Election management terminal apparatus, method of providing password for electronic voting, authentication system and authentication method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an election management terminal apparatus, a method of providing a password for electronic voting, an authentication system and an authentication method by which the leakage of the password for electronic voting can be prevented, and an elector can surely recognize the password for electronic voting. <P>SOLUTION: A share image file generation part 10d generates a plurality of share image files from a password for electronic voting by a designated visual decoding type secret distribution method, and any share image file is applied to a postal matter addressed to an elector by a mail postcard attaching part 10g, and the other share image files are transmitted to a voting terminal 20 of the elector by a providing part 10i. The selector performs a simple operation to overlap the mailed share image file and the share image file transmitted to the terminal equipment of the elector to acquire the password for electronic voting. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to an election management terminal device for issuing an electronic voting password for an elector, an electronic voting password providing method, an authentication system and an authentication method in electronic voting.

  In the current electoral system, the certification of electors is performed as follows.

  Postcards for identity verification are mailed to the electors listed in the electoral list. The elector brings the identity verification postcard to the polling place. In the polling place, the election of the elector is performed based on the postcard for identity authentication. In addition, even if the elector loses the personal identification postcard, the elector can vote with the identification card.

  There is also a need for a next-generation electronic voting system that allows electors to vote from any location.

  When the next-generation electronic voting system is used, voting takes place where the third party's eyes cannot reach. For this reason, it is necessary to authenticate the user when voting.

  Patent Document 1 (Japanese Patent Application Laid-Open No. 2002-342527) describes an electronic voting system using a personal computer. In this electronic voting system, an authentication password is mailed. It has been proposed to use authentication using an IC card or biometric authentication as personal authentication in an electronic voting system.

  Patent Document 2 (Japanese Patent Application Laid-Open No. 2004-93815) uses a visual decryption secret sharing method (also referred to as a “visual decryption encryption method”) to verify the sender of mail. A mail printing device is described that enables it.

  The visual decryption secret sharing method will be briefly described below.

  In the visual decryption secret sharing method, first, a plurality of distributed images (hereinafter referred to as “shared images”) are created from a secret image. These share images are printed on a recording medium made of a material having optical transparency such as a film. When these share images are physically superimposed, the original secret image can be visually observed.

In the mail printing apparatus described in Patent Document 2, only two dispersed images are always generated.
JP 2002-342527 A JP 2004-93815 A

  In authentication using a personal identification medium such as a postcard, ID card or IC card, if a malicious third party illegally acquires another person's personal identification medium, the third party can easily Impersonate the owner of the identification medium. Currently there is no way to prevent this impersonation.

  Also, since fingerprints and irises used for biometric authentication can be forged relatively easily, biometric authentication is not a reliable personal authentication means.

  In particular, in the next-generation electronic voting performed in any place where there is no watcher, it is not possible to prevent a third party from voting and spoofing the contents of a vote as a third party, There was a risk that "

  And identity verification in electronic voting must be a simple and compelling means for all generations of electors.

  Therefore, there is a demand for a method for safely and reliably notifying a person of a password for electronic voting when electronic voting is executed.

  Note that the visual decryption secret sharing method described in Patent Document 2 is a simple method that always generates only two dispersed images, and therefore, for example, the black and white contrast of the decrypted image may be low. In this case, the user who has received the dispersed image cannot accurately understand the original image even if the dispersed images are superimposed. Therefore, for example, if an electronic voting password is used as the original image, the elector may not be able to vote without understanding the electronic voting password.

  An object of the present invention is to provide an election management terminal device, an electronic voting password provision method, an authentication system, and an authentication that can prevent leakage of an electronic voting password and allow an elector to reliably recognize an electronic voting password. Is to provide a method.

  In order to achieve the above object, an election management terminal device of the present invention is an election management terminal device that is communicable with an elector's terminal device and issues an electronic voting password for the elector. One of a password generation unit that generates an electronic voting password, a storage unit that stores the electoral electronic voting password generated by the password generation unit, and a plurality of predetermined visual decryption secret sharing methods Each of them is superposed from the password for electronic voting stored in the storage unit using the visual decoding type secret sharing method specified in the specification information and the reception unit that receives the specification information for specifying Any of a share image generation unit that generates a plurality of share images that can decrypt the electronic voting password, and a plurality of share images generated by the share image generation unit A transparent seal generation unit that generates a transparent seal printed with a specific share image that is different from the share image printed on the transparent seal among the plurality of share images generated by the share image generation unit, A providing unit for providing to a human terminal device.

  The electronic voting password provision method of the present invention is a method for providing an electronic voting password which is communicable with an elector's terminal device and is performed by an election management terminal device which issues the elector's electronic voting password. A password generation step for generating a password for electronic voting of the elector, a reception step for receiving designation information for designating any of a plurality of predetermined types of visual decryption secret sharing methods, and the designation information A shared image generation step of generating a plurality of share images that can decrypt the electronic voting password when each is overlaid from the electronic voting password, using the visual decryption type secret sharing method specified in the above, A transparent seal generating step for generating a transparent seal on which any one of the plurality of shared images is printed; and Chi, and a providing step of providing a specific share of image different from the printed share image on the transparent seal, the elector terminal device.

  According to the above invention, a plurality of shared images are generated from the electronic voting password by the designated visual decryption secret sharing method, one of which is printed on the transparent sticker, and the remaining shared images are It is transmitted to the terminal device.

  For this reason, if the transparent seal is delivered to the elector by mail, via courier, or directly, the elector was sent to the shared image of the transparent seal and to the elector's terminal device A password for electronic voting can be acquired by performing a simple operation of superimposing the shared image on the shared image.

  Further, the provider of the electronic voting password can specify one of a plurality of types of visual decryption secret sharing methods. For this reason, if the provider of the electronic voting password specifies a visual decryption type secret sharing method that makes it easy to recognize the electronic voting password displayed by superimposing the shared images, the elector will correctly identify the electronic voting password. Can be recognized.

  The storage unit stores the elector's name and address together with the electoral electronic voting password, and the election management terminal device includes the transparent seal generated by the transparent seal generating unit, It is desirable to have a postal matter creation unit for giving to the postal matter together with the names and addresses of the electors stored in the storage unit.

  According to the above invention, since the share image is provided to the elector through separate routes of mailing and communication between devices, the risk of all the share images being stolen at a time can be reduced.

  The providing unit includes a storage unit that stores the specific share image, a transmission unit that transmits storage location information indicating a storage location of the specific share image to the terminal device of the elector, When receiving the storage location information from the terminal device, it is preferable to include an image providing unit that provides the specific share image stored in the storage unit to the terminal device of the elector.

  According to the above invention, the elector can acquire the specific share image when necessary. For this reason, the elector does not always have to manage the specific share image.

  The authentication system of the present invention is an authentication system in electronic voting including the election management terminal device, the elector's terminal device, and an electronic voting system terminal device for authenticating the elector, The voting system terminal device includes an authentication unit that authenticates that the elector is a genuine elector when the password received from the elector's terminal device is stored in the storage unit of the election management terminal device. .

  The authentication method of the present invention is an authentication method performed by an authentication system in electronic voting including an election management terminal device, the terminal device of the elector, and an electronic voting system terminal device that authenticates the elector. A password accepting step in which the electronic voting system terminal device accepts a password from the terminal device of the elector; and a password accepted by the electronic voting system terminal device from the terminal device of the elector in the election management terminal device. If stored, it includes an authentication step for authenticating that the elector is a genuine elector.

  According to the above invention, it becomes possible to authenticate the elector using the visual decryption secret sharing method.

  According to the present invention, leakage of an electronic voting password can be prevented, and an elector can surely recognize an electronic voting password.

  Embodiments of the present invention will be described below with reference to the drawings.

  FIG. 1 is a block diagram showing an electronic voting system according to an embodiment of the present invention.

  In FIG. 1, an electronic voting system including an authentication system includes an election management terminal 10, a plurality of voting terminals 20, and an electronic voting system terminal 30. The election management terminal 10, the plurality of voting terminals 20, and the electronic voting system terminal 30 are connected via a network 40 such as the Internet.

  The election management terminal 10 is operated by an election manager, manages the electronic voting system terminal 30, and notifies the voter who is an elector of the implementation of the election.

  The election management terminal 10 includes a storage device, an input / output device, and a general-purpose computer. This general-purpose computer realizes various functions by executing programs stored in a storage device.

  FIG. 2 is a block diagram for explaining functions realized by the general-purpose computer of the election management terminal 10 executing a program in the storage device. In FIG. 2, the same components as those shown in FIG.

  In FIG. 2, the election management terminal 10 includes an elector ID / password generation unit 10a, an elector information storage unit 10b, a reception unit 10c, a share image file generation unit 10d, a share image file storage unit 10e, and a transparent image. A seal generation unit 10f, a postcard post unit 10g, a postcard post unit 10h, a file path setting unit 10j, a storage unit 10k, a mail document generation unit 101, a mail transmission unit 10m, and a web server 10n Including. The file path setting unit 10j, the storage unit 10k, the mail document generation unit 101, the mail transmission unit 10m, and the web server 10n are included in the providing unit 10i.

  The elector ID / password generation unit 10a generates an elector ID and password (electronic voting password) for logging into the electronic voting system terminal 30 for each elector. The elector ID and password are used when the elector performs electronic voting using the electronic voting system terminal 30.

  The elector information storage unit 10b stores, for each elector, information such as the name, address, and destination address of the elector, and the elector ID and password generated by the elector ID / password generation unit 10.

  The accepting unit 10c accepts designation information for designating any one of a plurality of predetermined visual decryption secret sharing methods.

  As the plurality of types of visual decryption secret sharing methods, for example, visual decryption secret sharing methods in which the number of generated shared image files (image data indicating shared images) are different from each other may be used, or A visual decoding secret sharing method that inverts white and black in a shared image file and a visual decoding secret sharing method that does not invert white and black in a shared image file may be used.

  The shared image file generation unit 10d can execute any of the plurality of predetermined visual decryption secret sharing methods. The share image file generation unit 10d uses a password image indicating the password generated by the elector ID / password generation unit 10a using an arbitrary visual decryption secret sharing method specified by the specification information received by the reception unit 10c. Two or more shared image files (SP1 to SPn) are generated. The file format of the shared image file is preferably gif or jpeg.

  The share image file storage unit 10e stores two or more share image files generated by the share image file generation unit 10d.

  The transparent sticker generation unit 10f is a transparent sticker on which a share image indicated by any one of two or more share image files generated by the share image file generation unit 10d (hereinafter referred to as “share image file SP2”) is printed. Is generated. The share image file SP2 or the share image indicated by the share image file SP2 may be used as a password when the elector confirms his / her vote contents.

  For example, the transparent seal generation unit 10f includes a printing machine, and prints the shared image indicated by the shared image file SP2 on a transparent seal that can be pasted and peeled over and over.

  The postcard affixing unit 10g is an example of a postal matter creation unit, and the transparent seal generated by the transparent seal generation unit 10f, together with the names and addresses of the electors stored in the elector information storage unit 10b, , Postcard).

  For example, the postcard sticking part 10g includes a printing machine and a seal sticking machine. First, the postcard affixing unit 10g affixes the transparent seal generated by the transparent seal generator 10f to the postcard. Subsequently, the postcard affixing unit 10g prints the name and address of the elector corresponding to the shared image printed on the transparent sticker on the postcard.

  The postcard post unit 10h is, for example, a belt conveyor, and posts the postal matter created by the postcard pasting unit 10g to a postbox (not shown) or a postal collection point. Postcards posted to the mail collection point are posted to postboxes, and postcards posted to postboxes are mailed to electors.

  The providing unit 10i refers to a shared image file (hereinafter referred to as a “specific shared image file”) that is different from the shared image file SP2 printed on the transparent sticker among the plurality of shared image files generated by the shared image file generating unit 10d. ) Is provided to the terminal device of the elector, that is, the voting terminal 20 via the network 40.

  The file path (URL) setting unit 10j appropriately sets the file path (storage location information indicating the storage location: URL) of the specific share image file stored in the storage unit 10k managed by the web server 10n.

  The web server 10n stores the specific share image file in the storage area in the storage unit 10k designated by the file path set by the file path (URL) setting unit 10j.

  The mail document generation unit 101 transmits the file path of the specific share image file set by the file path setting unit 10j, the elector ID stored in the elector information storage unit 10b, and the destination address of the elector (voting terminal 20). E-mail address) is generated.

  The mail transmitting unit 10m transmits the mail document generated by the mail document generating unit 101 to the voting terminal 20 by electronic mail.

  When the web server 10 n receives the file path of the specific share image file from the voting terminal 20, the web server 10 n provides the voting terminal 20 with the specific share image file in the storage area of the storage unit 10 k specified by the file path.

  Returning to FIG. 1, each voting terminal 20 is operated by an elector and is authenticated by logging into the electronic voting system terminal 30 in order to vote. In FIG. 1, two voting terminals 20 are shown, but the number of voting terminals 20 can be changed as appropriate.

  The voting terminal 20 is, for example, a personal computer having a storage device and an input / output device, or a personal digital assistant (PDA) such as a mobile phone having a storage device. The computer in the voting terminal 20 implements various functions by executing a program stored in the storage device.

  FIG. 3 is a block diagram for explaining functions realized by a computer in the voting terminal 20 executing a program in the storage device. In FIG. 3, the same components as those shown in FIG. 1 or 2 are denoted by the same reference numerals.

  In FIG. 3, a voting terminal 20 includes a mail receiving unit 20a, a mail storage unit 20b, a share image file acquisition unit 20c, a share image file storage unit 20d, a share image file display unit 20e, and a share image file print unit. 20f, a shared image file reading unit 20g, a password decryption unit 20h, a password display unit 20i, and a login authentication unit 20j.

  The mail receiving unit 20a receives a mail document in which the elector ID and the file path of the specific share image file are described.

  The mail storage unit 20b stores the mail document received by the mail receiving unit 20a.

  The share image file acquisition unit 20c is stored in the storage unit 10k in the web server 10n of the election management terminal 10 using the file path of the specific share image file described in the mail document in the mail storage unit 20b. Provide specific share image files.

  The share image file storage unit 20d stores the specific share image file acquired by the share image file acquisition unit 20c.

  The share image file display unit 20e is a display unit such as an LCD, for example, and displays the specific share image indicated by the specific share image file stored in the share image file storage unit 20d. The elector can decrypt the password by superimposing the shared image of the transparent seal attached to the postcard on the displayed specific share image.

  The share image file printing unit 20f includes, for example, a printing machine, and prints a specific share image displayed on the share image file display unit 20e. The elector can decrypt the password by superimposing the shared image of the transparent seal attached to the postcard on the printed specific shared image.

  The shared image file reading unit 20g includes, for example, a scanner, reads a shared image of a transparent sticker attached to a postcard, and generates a shared image file indicating the shared image.

  The password decryption unit 20h performs a superimposition process and a black and white reversal process on the specific share image file stored in the share image file storage unit 20d and the share image file generated by the share image file reading unit 20g. Decrypt the password.

  The password display unit 20i includes a display unit such as an LCD, for example, and displays the password decrypted by the password decryption unit 20h.

  The login authentication unit 20j logs in to the electronic voting system terminal 30 using the elector ID stored in the mail storage unit 20b and the decrypted password.

  Returning to FIG. 1, the electronic voting system terminal 30 is managed by an election manager, authenticates the user of the voting terminal 20, and accepts a vote. The electronic voting system terminal 30 may be included in the election management terminal 10.

  The electronic voting system terminal 30 includes, for example, a general-purpose computer including a storage device and an input / output device, and a web server that realizes a next-generation electronic voting election. This general-purpose computer realizes various functions by executing programs stored in a storage device.

  FIG. 4 is a block diagram for explaining functions realized by the general-purpose computer of the electronic voting system terminal 30 executing a program in the storage device. In FIG. 4, the same components as those shown in FIGS. 1 to 3 are denoted by the same reference numerals.

  In FIG. 4, the electronic voting system terminal 30 includes a personal authentication unit 30a.

  When the elector ID and password transmitted from the login authentication unit 20j of the voting terminal 20 are stored in the elector ID / password storage unit 10 of the election management terminal 10, the personal authentication unit 30a logs in the voting terminal 20 Allow.

  Next, the operation will be described.

  FIG. 5 is an explanatory diagram for explaining a personal authentication method in an electronic voting system using a visual decryption secret sharing method, and FIG. 6 is a sequence diagram detailing the personal authentication method.

  In FIG. 6, in step S1, when the election manager stores the elector information including the name, address and destination address of the elector in the elector information storage unit 10b, the elector ID / password generation unit 10a For each elector information, an elector ID and password are generated.

  The elector ID / password generation unit 10a stores the elector ID and password in the elector information storage unit 10b in association with the corresponding elector information.

  When the elector ID and password are stored in the elector information storage unit 10b, step S2 is executed.

  In step S2, the receiving unit 10c first receives designation information for designating any one of a plurality of types of visual decryption secret sharing methods from the election manager.

  Thereafter, the share image file generation unit 10d uses the arbitrary visual decryption type secret sharing method specified by the specification information received by the reception unit 10c to use the password indicating the password generated by the elector ID / password generation unit 10a. Two or more shared image files are generated from the image.

  The share image file generation unit 10d stores these share image files in the share image file storage unit 10e.

  Note that the number of shared image files is preferably changed according to the designated visual decryption secret sharing method.

  When the share image file is stored in the share image file storage unit 10e, step S3 is executed.

  In step S3, first, the file path setting unit 10j sets the file path (URL) of the specific share image file stored in the storage unit 10k managed by the web server 10n. When there are two or more specific share image files, the file path setting unit 10j sets the file path (URL) of each specific share image file.

  Subsequently, the web server 10n stores the specific share image file in the storage area in the storage unit 10k designated by the file path set by the file path setting unit 10j.

  When the specific share image file is stored in the storage unit 10k, step S4 is executed.

  In step S4, the transmissive seal generation unit 10f prints the shared image indicated by the shared image file SP2 on the transmissive seal that can be pasted and removed many times.

  When the share image indicated by the share image file SP2 is printed on the transparent sticker, step S5 is executed.

  In step S5, first, the mail document generation unit 101 transmits a mail document in which the file path of the specific share image file, the elector ID stored in the elector information storage unit 10b, and the destination address of the elector are described. Generate.

  Subsequently, the mail transmitting unit 10m transmits the mail document generated by the mail document generating unit 101 to the voting terminal 20 by electronic mail.

  When the mail document generated by the mail document generation unit 101 is transmitted to the voting terminal 20 by electronic mail, the voting terminal 20 executes Step S6.

  In step S6, the mail receiving unit 20a of the voting terminal 20 receives the mail document describing the elector ID and the file path of the specific share image file, and stores the mail document in the mail storage unit 20b.

  When the mail document is stored in the mail storage unit 20b, step S7 is executed.

  In step S7, first, the share image file acquisition unit 20c obtains the file path of the specific share image file described in the mail document in the mail storage unit 20b, and uses the file path as the web server of the election management terminal 10. To 10n.

  When the web server 10n receives the file path of the specific share image file from the share image file acquisition unit 20c, the web server 10n reads the specific share image file corresponding to the file path from the storage unit 10k, and acquires the specific share image file. Part 20c.

  When receiving the specific share image file from the web server 10n, the share image file acquisition unit 20c stores the specific share image file in the share image file storage unit 20d, and the share image file display unit 20e displays the share image file storage unit 20d. The specific share image indicated by the specific share image file stored in is displayed.

  When the election management terminal 10 finishes step S5, it executes step S8.

  In step S8, the postcard pasting unit 10g of the election management terminal 10 first pastes the transparent seal generated by the transparent seal generating unit 10f on the postcard, and then the share printed on the postcard is printed on the transparent seal. Print the name and address of the elector corresponding to the image.

  Subsequently, the postcard post unit 10h posts the postal matter created by the postcard pasting unit 10g to a postbox (not shown) or a postal collection point. Postcards posted to the mail collection point are posted to postboxes, and postcards posted to postboxes are mailed to electors.

  When the elector receives the postcard, step S9 is executed.

  In step S9, the elector pastes the transparent sticker attached to the postcard so as to be superimposed on the specific share image displayed on the share image file display unit 20e, and decrypts the password.

  The elector causes the share image file print unit 20f to print the specific share image displayed on the share image file display unit 20e, and pastes a transparent sticker on the printed specific share image, and adds a password. May be decrypted.

  Further, the elector causes the share image file reading unit 20g to read the share image printed on the transparent sticker, and the password decryption unit 20h to display the share image file indicating the read share image and the specified identification The password may be decrypted by performing superimposition processing and black-and-white reversal processing on the specific share image file indicating the share image.

  In any case, the elector can acquire a password corresponding to himself / herself by using the share image sent by mail and the specific share image file transmitted to the voting terminal 20.

  Here, an example of a visual decryption type secret sharing method using the password decryption unit 20h, specifically, a visual decryption type secret sharing method that increases the contrast of a restored image by black and white inversion processing will be described.

  FIG. 7 is an explanatory diagram for explaining a visual decryption secret sharing method involving black and white inversion processing.

  In FIG. 7, the case where the pixel is black is represented by ■, and the case where the pixel is white is represented by □.

  Further, the share image file generation unit 10d of the election management terminal 10 distributes the secret image P (corresponding to the password image of this embodiment) to generate the share images S1 and S2, and the password decryption unit 20h of the voting terminal 20 However, the secret image P is reconstructed based on the share images S1 and S2.

  Specifically, the following processing is performed.

  (1) In the distribution stage, the share image file generation unit 10d distributes the secret image P (1 pixel) to generate share images S1 and S2. The share images S1 and S2 are 2 pixels.

  (2) In the reconstruction stage, the password decryption unit 20h first inverts the shared images S1 and S2 in black and white.

  (3) Subsequently, the password decryption unit 20h combines (superimposes) the share images S1 (inverted) and S2 (inverted) obtained in the procedure (2).

  (4) Subsequently, the password decryption unit 20h inverts the combined image of the share images S1 (inverted) and S2 (inverted) obtained in the procedure (3) in black and white.

  (5) Subsequently, the password decryption unit 20h synthesizes the share images S1 and S2 obtained in the procedure (1) and inverts the synthesized image.

  (6) Subsequently, the password decryption unit 20h synthesizes the share images obtained in procedures (4) and (5).

  (7) Subsequently, the password decryption unit 20h inverts the data obtained in the procedure (6) in black and white. As a result, black can be restored as perfect black (both 2 pixels are black) and white can be restored as perfect white (both 2 pixels are white).

  Returning to FIG. 6, the elector inputs the decrypted password and the elector ID to the login authentication unit 20j. Upon receiving the password and the elector ID, the login authentication unit 20j executes Step S10.

  In step S <b> 10, the login authentication unit 20 j logs into the electronic voting system terminal 30 and transmits the elector ID and password to the electronic voting system terminal 30.

  The electronic voting system terminal 30 executes step S11 when logged in.

  In step S11, the personal authentication unit 30a of the electronic voting system terminal 30 determines that the transmitted voting ID and password are stored in the voting ID / password storage unit 10 of the election management terminal 10, and The user is authenticated as a genuine elector, and login of the voting terminal 20 is permitted.

  According to the present embodiment, the following effects can be obtained.

  The first effect is that it becomes possible to perform persuasive identity authentication for all generations of electors.

  The reason is that the shared image file as a password is provided by a combination of simple means of mailing and e-mail.

  The second effect is that the possibility of password leakage is theoretically zero even if either the URL or the transparent seal described in the e-mail is stolen.

  This is because the password is encrypted using the visual decryption secret sharing method.

  Moreover, according to the present Example, there exist the following effects.

  The shared image file generation unit 10d generates a plurality of shared images from the electronic voting password by the designated visual decryption secret sharing method, and the transparent seal on which any one of them is printed is generated by the transparent seal generation unit 10f. The generated share image is transmitted to the voting terminal 20 of the elector by the providing unit 10i.

  For this reason, if the transparent seal is delivered to the elector by mail, via a courier, or directly, the elector is sent to the share image of the transparent seal and the elector's terminal device. The password for electronic voting can be obtained by performing a simple operation of superimposing the shared image with the shared image.

  Further, in this embodiment, the postcard pasting portion 10g gives a transparent seal to the mail piece together with the name and address of the elector. In this case, since the shared image is provided to the elector through separate routes of mailing and communication between devices, the risk of all the shared images being stolen at a time can be reduced.

  Also, the electronic voting password provider (election manager) can designate one of a plurality of types of visual decryption secret sharing methods. For this reason, if the provider of the electronic voting password specifies a visual decryption type secret sharing method that makes it easy to recognize the electronic voting password displayed by superimposing the shared images, the elector will correctly identify the electronic voting password. Can be recognized.

  In this embodiment, the mail transmission unit 10m transmits a file path (storage location information) indicating the storage location of the specific share image to the voting terminal 20 of the elector, and the web server 10n When the file path is received from the terminal 20, the specific share image stored in the storage unit 10k is provided to the voting terminal 20 of the elector.

  In this case, the elector can acquire the specific share image when necessary. For this reason, the elector does not always have to manage the specific share image.

  Further, according to the present embodiment, it is possible to authenticate the elector using the visual decryption secret sharing method.

  Note that this embodiment can be used in the fields of next-generation electronic voting and reliable personal authentication.

  In the embodiment described above, the illustrated configuration is merely an example, and the present invention is not limited to the configuration. For example, the permeable seal may be delivered by a courier rather than by mail, and the elector may come to pick up the permeable seal.

It is the block diagram which showed the electronic voting system of one Example of this invention. 3 is a block diagram illustrating an example of an election management terminal 10. FIG. 3 is a block diagram illustrating an example of a voting terminal 20. FIG. 3 is a block diagram showing an example of an electronic voting system terminal 30. FIG. It is explanatory drawing for demonstrating the authentication operation | movement of an electronic voting system. It is explanatory drawing for demonstrating the authentication operation | movement of an electronic voting system. It is explanatory drawing for demonstrating the visual decoding type | formula secret sharing method accompanied by a black-and-white inversion process.

Explanation of symbols

10 Election management terminal 10a Electoral ID / password generation unit 10b Electoral information storage unit 10c Reception unit 10d Share image file generation unit 10e Share image file storage unit 10f Transparent seal generation unit 10g Postcard post unit 10h Unit 10j file path setting unit 10k storage unit 10l mail document generation unit 10m mail transmission unit 10n web server 20 voting terminal 20a mail reception unit 20b mail storage unit 20c share image file acquisition unit 20d share image file storage unit 20e share image file display unit 20e 20f Share image file printing unit 20g Share image file reading unit 20h Password decryption unit 20i Password display unit 20j Login authentication unit 30 Electronic voting system terminal 30a Personal authentication unit 40 Network Click

Claims (8)

An election management terminal device that is communicable with an elector's terminal device and issues an electronic voting password for the elector,
A password generator for generating a password for electronic voting of the elector;
A storage unit for storing the electronic voting password of the elector generated by the password generation unit;
A receiving unit for receiving designation information for designating any of a plurality of predetermined types of visual decryption secret sharing methods;
Using the visual decryption type secret sharing method designated by the designation information, a plurality of shared images that can decrypt the electronic voting password from each of the electronic voting passwords stored in the storage unit when they are overlaid. A shared image generation unit to generate,
A transparent seal generating unit that generates a transparent seal printed with any of the plurality of share images generated by the share image generating unit;
An election management including a providing unit that provides a specific share image different from the share image printed on the transparent sticker among the plurality of share images generated by the share image generation unit to the terminal device of the elector Terminal device. In the election management terminal device according to claim 1,
The storage unit stores the elector's name and address along with the electoral electronic voting password,
An election management terminal device having a postal matter creation unit for giving the transparent seal generated by the transparent seal generation unit to a postal matter together with the name and address of the elector stored in the storage unit. In the election management terminal device according to claim 1 or 2,
The providing unit includes:
A storage unit for storing the specific share image;
A storage unit that transmits storage location information indicating a storage location of the specific share image to the terminal device of the elector;
An election management terminal device comprising: an image providing unit that, upon receiving the storage location information from the elector's terminal device, provides the specific share image stored in the storage unit to the elector's terminal device. An authentication system for electronic voting, comprising: the election management terminal device according to any one of claims 1 to 3, the terminal device for the elector, and an electronic voting system terminal device for authenticating the elector. ,
The electronic voting system terminal device authenticates that the elector is a genuine elector when the password received from the elector's terminal device is stored in the storage unit of the election management terminal device. Including an authentication system. An electronic voting password provision method performed by an election management terminal device that is communicable with an elector's terminal device and issues an electronic voting password for the elector,
A password generating step for generating a password for the electronic vote of the elector;
An accepting step for accepting designation information for designating any one of a plurality of predetermined types of visual decryption secret sharing methods;
Share image generation for generating a plurality of share images that can decrypt the electronic voting password when they are overlaid from the electronic voting password, using the visual decryption type secret sharing method designated by the designation information Steps,
A transparent seal generating step for generating a transparent seal on which any of the plurality of share images is printed;
Providing a specific share image different from the share image printed on the transparent sticker among the plurality of share images to the terminal device of the elector, and providing a password for electronic voting. The method for providing a password for electronic voting according to claim 5,
The election management terminal device stores the name and address of the elector,
A method for providing a password for electronic voting, comprising a mail creation step of attaching the transparent seal to a mail with the name and address of the elector. In the electronic voting password provision method according to claim 5 or 6,
The providing step includes
A storing step of storing the specific share image;
A storage step of transmitting storage location information indicating a storage location of the specific share image to the terminal device of the elector;
An electronic voting password providing method comprising: an image providing step of providing the stored specific share image to the electoral terminal device when the storage location information is received from the electoral terminal device. Authentication performed by an authentication system in electronic voting including the election management terminal device according to any one of claims 1 to 3, the terminal device of the elector, and an electronic voting system terminal device that authenticates the elector. A method,
A password accepting step in which the electronic voting system terminal device accepts a password from the terminal device of the elector;
The electronic voting system terminal device includes an authentication step of authenticating that the elector is a genuine elector if the password received from the elector's terminal device is stored in the election management terminal device, Authentication method.

Images