KR102143530B1 - Electronic voting server implementing on-line secret voting system based on block chain and its operation method - Google Patents

Abstract

Suggested is an electronic voting server for creating a blockchain-based online voting system. According to one of various embodiments of the present invention, the electronic voting server includes: a user authentication confirmation part receiving an authentication result of a user from a certificate server issuing a digital certificate in accordance with a digital certificate request from a user terminal; a voting opening management part opening specific voting on a blockchain system by receiving information about voting opening from the user terminal; a user information management part issuing a blockchain wallet address to a user authenticated as a user possessing a vote for the specific voting through the digital certificate; a forgery detection part performing forgery detection in real time or at random time intervals with respect to data by node of the blockchain; a counting accumulation part creating a voting accumulation result by accumulating voting results after the termination of the voting; and a voting result verification part verifying the voting accumulation result created by the counting accumulation part. Therefore, the electronic voting server is capable of creating secret voting principles by managing voting-related information on each node of a blockchain system.

Description

Electronic voting server to build a blockchain-based online secret voting system and its operation method {ELECTRONIC VOTING SERVER IMPLEMENTING ON-LINE SECRET VOTING SYSTEM BASED ON BLOCK CHAIN AND ITS OPERATION METHOD}

Various embodiments of the present invention relate to an electronic voting server for constructing an online secret voting system based on a block chain and a method of operating the same.

With the advancement of IT-related technologies, the speed at which activities traditionally performed only offline are moving online is accelerating. One of them is election and voting-related activities, and voting, which was mainly conducted offline through ballots, is also taking place online. When voting is conducted online, not only does not need a ballot box, ballot paper, voting mechanism, etc., but also the place where the voting takes place and the number of personnel to manage the place is not required, saving in terms of money. In addition, voters can also save time in terms of time as they can easily vote through their own electronic device without moving to a specific place where voting takes place.

However, in the case of online voting, there is a problem of whether the security of the voting results is strictly maintained. Firstly, regarding the secret ballot principle, there is an issue as to whether the confidentiality of what each voter voted for is completely confidential. In the case of offline voting, the secret voting principle can be easily followed because the ballot does not contain information that can identify the voter, but data on which candidate or item a specific voter voted on online is recorded. It could be difficult to keep the secret voting principle.

Therefore, blockchain technology has been applied to the voting system for the purpose of supporting the secret voting function within the online voting system and at the same time preventing the possibility of forgery of voting results. Blockchain does not store transaction records on a centralized server, but sends transaction details to all users participating in the transaction, combines only the records that have been mutually verified by users in a chain, and allows all users to duplicate and store them. Type data storage technology.

However, in constructing a voting system using such a block chain, a separate server for utilizing the block chain system for voting is required, and a study on how to configure the connection between such a server and the block chain system. Development has continued. In addition, there was a need to implement a method of verifying the voting result after the voting was over and a method of detecting forgery of data even when voting was in progress, and to proceed in a more reliable manner.

Korean Patent Publication No. 10-2018-0115727

Various embodiments of the present invention aim to implement a secret voting principle in building an online voting system incorporating blockchain technology.

Various embodiments of the present invention aim to identify forgery and alteration of data occurring on a blockchain system or a voting server after a voting process or voting is completed.

The problems to be solved by the present invention are not limited to the problems mentioned above, and other problems not mentioned will be clearly understood by those skilled in the art from the following description.

One of the various embodiments of the present invention for solving the above-described problem is, in an electronic voting server implementing an online voting system based on a block chain, a certificate server issuing a digital certificate according to a digital certificate request from a user terminal. A user authentication verification unit receiving an authentication result of the user from the user; A voting opening management unit for receiving information on voting opening from the user terminal and opening a specific voting on a blockchain system; A user information management unit for issuing a blockchain wallet address to a user who is authenticated as having a voting right for the specific voting through the digital certificate; A forgery detection unit that performs forgery detection of data for each node of the blockchain in real time or at random time intervals; After the voting is over, a counting unit for generating a voting count by performing counting on the voting results; And it is possible to provide an electronic voting server including a voting result verification unit that verifies the voting count result generated by the counting counting unit.

The voting establishment management unit may store at least a part of information on voting opening received from the user terminal on a blockchain system.

The certificate server comprises: a first step of receiving a certificate generation request from a user terminal; A second step of transmitting a server public key and a randomly generated string to a user terminal; A third step of receiving a user signature encrypted through the server public key from a user terminal; And decrypting the user signature encrypted through the server public key through the server private key, generating a certificate, and encrypting the generated certificate through the user public key and transmitting the digital certificate to the user terminal. May be issuing.

The forgery detection unit may detect forgery behavior of the voting result by comparing hash values for voting information collected from at least one block chain node and hash values for voting information stored on the electronic voting server. I can.

The forgery detection unit may specify a location where a forgery action is detected among the electronic voting server and each block chain node, and transmit information on a location where the forgery action is detected to an administrator terminal.

The forgery detection unit stops the voting in progress when the location where the forgery act is detected is the electronic voting server, and continues to proceed with the voting if the location where the forgery act is detected is one of the blockchain nodes. It can be characterized.

The user information management unit provides an asset capable of performing voting with a blockchain wallet address issued to a user who is authenticated as having voting rights for a specific voting through the digital certificate, and then counts the assets provided for the voting. Can be done.

The voting result verification unit exists in the blockchain wallet address of users who are authenticated as having the right to vote for the vote and assets in the blockchain wallet address for each of the voting items within a specific vote. Verification of the voting result can be performed by comparing the total number of assets and the number counted for the assets provided for that voting.

The voting result verification unit is characterized in that when the comparison result of the voting result verification unit, the total amount of the assets and the number counted for the asset provided for the voting do not match, information on the inconsistency is stored on the blockchain. I can.

According to another embodiment of the present invention, in a method of implementing an online voting system based on a block chain by an electronic voting server, a user's authentication result is received from a certificate server that issues a digital certificate according to a digital certificate request from a user terminal. Receiving; Receiving information on voting opening from the user terminal and opening a specific voting on a blockchain system; Issuing a blockchain wallet address to a user who is authenticated as having voting rights for the specific voting through the digital certificate; Detecting forgery and alteration of data for each node of the blockchain in real time or at random time intervals; Generating a voting count result by performing aggregate processing on the voting result after the voting is over; And, a method of implementing an online voting system based on a block chain may be provided, including the step of verifying the result of the voting count generated by the counting unit.

According to one of various embodiments of the present invention, information related to voters is managed on an electronic voting server, and information directly related to voting is managed on each node of a blockchain system, thereby implementing the secret voting principle.

According to one of various embodiments of the present invention, forgery detection of data may be performed by comparing hash values of voting-related data managed by each node of an electronic voting server and a blockchain system.

The effects of the present invention are not limited to the effects mentioned above, and other effects not mentioned will be clearly understood by those skilled in the art from the following description.

1 is a schematic diagram of an online voting system built based on a block chain according to an embodiment of the present invention.
2 is a block diagram schematically showing the configuration of an electronic voting server according to an embodiment of the present invention.
3 is a flowchart showing a process of issuing a digital certificate according to an embodiment of the present invention.
4 is a diagram illustrating a forgery detection method of an electronic voting server according to an embodiment of the present invention.
5 is a view for explaining a method for a user of an online voting system according to an embodiment of the present invention to exercise his or her voting right.
6 is a flowchart illustrating a process in which an electronic voting server according to an embodiment of the present invention performs an operation from opening a voting to verifying after the voting ends.

The terms used in the present specification are for describing exemplary embodiments and are not intended to limit the present invention. In the present specification, the singular form also includes the plural form unless otherwise specified in the phrase. As used herein, “comprises” and/or “comprising” does not exclude the presence or addition of one or more other components other than the components mentioned. Throughout the specification, the same reference numerals refer to the same components, and “and/or” includes each and every combination of one or more of the components mentioned. Although "first", "second", etc. are used to describe various components, it goes without saying that these components are not limited by these terms. These terms are only used to distinguish one component from another component. Therefore, it goes without saying that the first component mentioned below may be the second component within the technical spirit of the present invention.

When a certain part of the specification "includes" a certain component, this means that other components may be further included instead of excluding other components unless otherwise specified. In addition, terms such as “... unit” and “module” described in the specification mean a unit that processes at least one function or operation, which may be implemented in hardware or software, or a combination of hardware and software. .

Hereinafter, in this specification, the term "specific voting" may mean one procedure for users to express their opinions on one subject. Voting items subject to voting may exist within one voting, and users who have voting rights for the corresponding voting may exist.

1 is a schematic diagram of an online voting system built based on a block chain according to an embodiment of the present invention.

The online voting system 10 according to an embodiment of the present invention prevents forgery of election contents and results based on blockchain technology, and provides information on which items or candidates the voter casts the right to vote. It is a system that keeps the principle of secret election by managing it so that it cannot be viewed.

The online voting system 10 according to an embodiment may be composed of an electronic voting server 100, a user terminal 200, a certificate server 300, and a blockchain system 400.

The electronic voting server 100 may open a voting, manage information on users who can exercise voting rights for each voting, manage voting progress when voting is in progress, and aggregate processing of voting results.

According to an embodiment of the present invention, the online voting system 10 additionally includes a block chain server (not shown), and the block chain server is a voting managed on the block chain through communication with the block chain system 400. It is possible to detect forgery of related data or verify the result of voting aggregation performed through voting-related data managed on the blockchain.

According to an embodiment of the present invention, the blockchain server as described above may be configured in a form integrated with the electronic voting server 100 or the certificate server 300, and in the present specification, a blockchain system ( 400) will be described on the assumption that the function of the blockchain server connected to the electronic voting server 100 is included in the electronic voting server 100. However, the form of the invention is not limited thereto, and the blockchain server may be configured separately from the electronic voting server 100 and the certificate server 300, or may be configured in a form integrated with the certificate server 300.

The user terminal 200 may be configured as a terminal that is controlled by a user who registers a specific vote for one subject or exercises voting rights for voting items of a specific vote.

The user terminal 200 is controlled by a user, and can access the electronic voting server 100 and the certificate server 300 through a web browser or an application installed on the user terminal 200. The user terminal 200 may receive various data from the electronic voting server 100 and display it to the user through the display unit, and the user inputs various information through the input unit of the user terminal 200 and the electronic voting server 100 Can be sent to.

The user terminal 200 may include a memory storing information necessary for an operation, a central processing unit such as a CPU that performs various operations necessary for an operation, an input/output device, and the like.

The user terminal 200 includes all kinds of handhelds that can be connected to a web server through a network, such as a mobile phone, a smart phone, a personal digital assistant (PDA), a portable multimedia player (PMP), and a tablet PC. It may include a wireless communication device, and is equipped with a memory means such as a personal computer (for example, a desktop computer, a notebook computer, etc.), a workstation, a personal digital assistant (PDA), a web pad, etc., and is equipped with a microprocessor. It could be one.

According to an embodiment of the present invention, a route through which an application used in the process of accessing the user terminal 200 to the electronic voting server 100 is installed on the user terminal 200 may be through various application stores. The application may be downloaded for free, but the user may have to pay a predetermined price to download the electronic voting-related application registered for a fee on the application store and install it on the user terminal 200. Producers can also generate revenue through this. In addition, revenue generation of the application may occur through advertisements displayed on the operation screen of the application. The creator of the application may receive an advertisement fee from the advertiser according to the advertisement period, but from the advertiser based on the number of times the advertisement is displayed and the number of times the advertisement is selected by the user and linked to a web page related to the advertiser's product or service. You can also get paid for advertising.

Operations required for execution of such an application (eg, instructions, routines, instructions, etc.) may be stored in the memory of the user terminal 200 in the form of programs, and such programs may be stored in the user terminal 200 when the corresponding application is executed. The user terminal 200 may be controlled to perform operations that are called by the processor of) and stored in the program.

The certificate server 300 may provide a function that enables a user to perform user authentication, which is a preliminary procedure necessary to exercise the voting rights held by the user for a specific vote.

According to an embodiment of the present invention, personal authentication may be required in order to exercise the right to vote for a specific vote. Unlike this, even if personal authentication is not performed through a certificate, there may be a vote that allows the exercise of the right to vote. In addition, depending on the nature of the voting, there may be cases where voting rights can be exercised only when a public certificate is issued through the certificate server 300 and authentication is completed, and there may be cases where voting rights can be exercised through simple mobile phone number authentication. There may be cases where voting rights can be exercised without special authentication.

The certificate server 300 may perform a predetermined procedure according to the request of the user terminal 200, issue a digital certificate, and transmit the digital certificate to the user terminal 200. The interaction between the certificate server 300 and the user terminal 200 in the process of issuing a certificate will be described in detail later.

The blockchain system 400 may be composed of a number of blockchain nodes. Blockchain is a decentralized data storage technology that organizes data into units called blocks, connects multiple blocks in a chain, and copies and stores them in numerous computing systems. In other words, the blockchain maintains and manages the network by gathering individual servers participating in the transaction without storing transaction records on a centralized server, and each individual server corresponding to a participant of the blockchain system 400 is a'node Is referred to as'.

The block chain system 400 according to an embodiment of the present invention may mean an entire network system composed of a plurality of nodes. In addition, the blockchain system 400 of the present invention can be utilized by borrowing one of known blockchain technologies. Blockchain technologies widely known to the public include Bitcoin, Ethereum, and EOS.

2 is a block diagram schematically showing the configuration of an electronic voting server 100 according to an embodiment of the present invention.

Referring to FIG. 2, the electronic voting server 100 includes a user authentication verification unit 110, a voting establishment management unit 120, a user information management unit 130, a forgery detection unit 140, a counting unit 150, and voting. A result verification unit 160, a communication unit 170, a storage unit 180, and a control unit 190 may be included.

For convenience of explanation, subjects that perform each role in the electronic voting server 100 are displayed in the form of ~parts or ~modules, but each part is a subprogram module or a subprogram that operates within the electronic voting server 100 They may be components in which the control unit 190 is functionally classified. These program modules are concepts encompassing routines, subroutines, programs, objects, components, data structures, etc. that perform each operation or execute a specific abstract data type, but are not limited thereto.

The user authentication verification unit 110 may perform an authentication procedure to confirm the user identity, and according to an embodiment, such user authentication may be performed through cooperation with the certificate server 300. That is, the user authentication verification unit 110 may receive a user authentication result from the certificate server 300 that issues a digital certificate according to a digital certificate request from the user terminal 200.

According to an embodiment of the present invention, a user may need to obtain a digital certificate in order to exercise the right to vote for a specific vote. Issuance of such a certificate may be performed through an interaction between the user terminal 200 and the certificate server 300.

Looking at an example of a process of issuing a certificate through an interaction between the user terminal 200 and the certificate server 300, the certificate server 300 includes: a first step of receiving a certificate generation request from the user terminal 200; A second step of transmitting a server public key and a randomly generated string to the user terminal 200; A third step of receiving a user signature encrypted through the server public key from the user terminal 200; And decrypting the user signature encrypted through the server public key through the server private key, generating a certificate, and then encrypting the generated certificate through the user public key and transmitting the encrypted certificate to the user terminal 200. Digital certificates can be issued through

Looking at each step of issuing a certificate, when the certificate server 300 transmits a server public key and a randomly generated string to the user terminal 200 in the second step, the user's signature is transferred to the server public key. Can be encrypted through. In this encryption process, not only information on the user but also a character string randomly generated by the certificate server 300 may be included in the user signature.

The certificate server 300 may receive the user signature in the third step, and decrypt the user signature encrypted through the server public key in the fourth step through the server private key. Through such a decryption step, the certificate server 300 may obtain user signature information, and additionally, it may check whether a previously randomly generated character string is accurately included. After generating the certificate, the certificate server 300 may encrypt the certificate using a user public key and transmit it to the user terminal 200, and the user terminal 200 receives it and decrypts it using the user private key to issue a digital certificate. You can receive and store.

The user terminal 200 performs user authentication through an additional interaction with the certificate server 300 at a time when user authentication is required later by using the digital certificate issued through this process, and the authentication result is the user terminal 200 or the certificate It may be transmitted to the user authentication verification unit 110 through the server 300.

The user authentication verification unit 110 may verify the user through the authentication result performed through the certificate as described above, but may perform user authentication in the same manner as mobile phone number authentication. When the user authentication verification unit 110 performs user authentication through mobile phone number authentication, the electronic voting server 100 may perform an authentication procedure through linkage with a communication company server instead of the certificate server 300.

The voting establishment management unit 120 may manage information related to voting opening procedures and voting opening. According to an embodiment of the present invention, opening of a voting on a specific subject may be performed by a general user as well as an administrator of the electronic voting server 100. That is, the user terminal 200 may be a concept including a manager terminal, and the voting opening management unit 120 receives information on voting opening from the user terminal 200, and performs a specific voting on the block chain system 400. Opening can be performed.

In order to open a vote, it is necessary to enter information on opening a vote. Information on the establishment of voting includes the subject of the voting, the period during which the voting is held, the method of voting, the items subject to voting, the conditions of the users who can exercise the voting rights or the list of voters, the method of counting voting and deriving results. I can. For example, in the method of voting, a multiple-choice voting form in which some of the limited options are selected, a short answer voting form in which a voting question is answered in a narrative form, a VS-type voting form in which one of two items is selected, There may be a preference voting form for entering the preference for each item, a weighted voting form that can assign a weight to each of the voting questions by selecting a ranking, and the administrator or user who wishes to open a voting may have such various forms. You can open a vote by selecting one of the votes in

According to an embodiment of the present invention, the voting opening management unit 120 may store at least a part of information on voting opening received through the user terminal 200 on the blockchain system 400. Through this operation, the online voting system 10 can prevent an act of forgery of voting opening information other than the voting result according to the voting result. That is, for example, if a vote for or against item A was conducted and the system was designed to prevent forgery and alteration of the result, the opposite vote result was obtained by changing the item A to item B or countering the questionnaire of the vote. As such, there may be attempts to perform an operation. The voting opening management unit 120 may allow at least part of the voting opening information to be stored on the blockchain system 400 in order to prevent such forgery and falsification of the voting opening information, and in particular, information on the subject of voting can be stored in the blockchain system. It can be stored on 400.

The user information management unit 130 may manage information of users who use the online voting system. User information managed by the user information management unit 130 may include the user's name, phone number, social security number, address, ID, password, etc., and such personal information may be encrypted and stored in the electronic voting server 100. have.

The user information management unit 130 may issue a blockchain wallet address to a user who is confirmed to have voting rights for a specific voting, and may provide an asset capable of performing voting with the address. According to an embodiment, such user verification may be authentication performed through a digital certificate.

Assets provided to the blockchain wallet address of a user who is confirmed to have the right to vote for a specific vote may be referred to as coins, tokens, etc., and the assets will be referred to as coins in the following specification. One coin can mean one voting right, and in basic voting, one coin is provided to one user in principle, but the number of coins provided may vary depending on the type of vote.

The user information management unit 130 provides a coin, which is an asset that can perform voting with the user's blockchain wallet address, confirmed or authenticated as having the right to vote for a specific voting, and then performs counting of the coin provided for the voting. can do. The user information management unit 130 may perform such counting and record a log indicating that a voting right for a specific vote has been provided in relation to the personal information of the user provided with the coin. By such counting by the user information management unit 130, the number of coins provided to users after a specific voting is ended and the number of coins present in the blockchain wallets can be compared.

The forgery detection unit 140 may perform forgery detection of data for each node existing on the blockchain system 400, and such forgery detection may be performed in real time, or at random time intervals. May be.

The forgery detection unit 140 detects forgery behavior by comparing a hash value for voting information collected from at least one blockchain node and a hash value for voting information stored on the electronic voting server 100. I can.

The hash value may be a value generated by a given original text through a hash function. A hash function is an operation technique that generates a fixed-length pseudorandom number from a given original text, and is characterized by an inextricable one-way function. Therefore, it is impossible to reproduce the original text from the hash value.

That is, the hash value that the forgery detection unit 140 compares is generated through a hash function using the voting information as the original text, and in the voting information in the original text, the content of what the voting is for and the voting can be performed. It may include at least some of the content of qualifications for existing users, content of the list included in the voting item, and the like.

The forgery detection unit 140 may specify a location where a forgery action is detected among the electronic voting server 100 and a plurality of block chain nodes, and transmit information on the location where the forgery action is detected to the administrator terminal.

According to an embodiment of the present invention, after the forgery detection unit 140 detects the forgery behavior, when the location where the forgery behavior is detected is identified by the electronic voting server 100, the forgery and forgery detection unit stops the progress of the voting performed, If the location where the forgery behavior is detected is one of the blockchain nodes existing on the blockchain system 400, the corresponding voting may be continued.

The data stored in the blockchain node can be stored in a unit called a block.Because a new block is created according to the agreement between nodes on the blockchain network and connected with the existing blockchain, one coin A user holding a user cannot vote multiple times, and the ledger data stored on the blockchain node cannot be changed by any user. In such a blockchain consensus system, in order for an arbitrary user to modify the voting history (transaction history) or other ledger data in the direction they want, it must have a hash power that exceeds 50% of the total computing power of the blockchain network. .

In this way, it is difficult to forge data stored in each of the blockchain nodes, and even if the data on one blockchain node is forged, if the data on most of the blockchain nodes match, the forged data is not recognized. Therefore, the forgery detection unit 140 detects if forgery occurs in one node on the blockchain system 400 and stops by monitoring other blockchain nodes, but the forgery behavior is not performed on the electronic voting server 100. If it is detected that it is occurring, the corresponding voting when forgery is detected can be stopped immediately.

Unlike this, it goes without saying that the forgery detection unit 140 may stop the corresponding voting even when a forgery behavior is detected in one of the blockchain nodes.

After the specific voting is finished, the counting unit 150 may generate a voting count result by performing a counting process on the corresponding voting result. The counting processing of the voting results of the counting counting unit 150 may be performed using data on the blockchain system 400.

In detail, the counting unit 150 is exercised for each voting item through the number of coins that are assets existing in the blockchain wallet address for each of the voting targets within a specific voting. You can determine the number of voting rights.

The voting result verification unit 160 may verify the voting count result generated by the counting counting unit. According to an embodiment, the verification of the voting count result of the voting result verification unit 160 is a count of the voting records of users managed by the user information management unit 130 and the coins present in the blockchain wallet address. This can be achieved through comparison of the number.

According to an embodiment of the present invention, the voting result verification unit 160 includes the number of coins present in the blockchain wallet address for each of all voting items subject to voting within a specific voting and the corresponding voting. You can add up the number of coins in the blockchain wallet address of users who are authenticated as holding voting rights. In other words, there may be a case where a coin was issued to the blockchain wallet address by performing the user authentication step, but the coin remains in the user's blockchain wallet address because the user does not actually exercise the right to vote. 160) can add up the number of coins issued but the voting rights not exercised and the number of voting rights exercised by moving the coin to the blockchain wallet address for the voting item.

Thereafter, the voting result verification unit 160 may perform verification of the voting result by comparing the summed value and the counting value of the coin provided to the user for the corresponding voting. Counting the number of coins provided to the user for a specific voting may be performed by the user information management unit 130 as described above. The user information management unit 130 provides a coin for voting to the user's blockchain wallet address, which is authenticated as having the right to vote for a specific voting, in the form of the number of coins provided each time in the user's voting record. Can perform counting.

In this way, the voting result verification unit 160 may verify the voting result by collating the voting information recorded on the blockchain system 400 with the voting information recorded on the electronic voting server 100. Through this, if data is forged or altered in only one of the blockchain system 400 and the electronic voting server 100, the related voting may be invalidated.

According to an embodiment of the present invention, the voting result verification unit 160 matches the number of coins counted on the blockchain system 400 and the counting number for the voting records of users counted on the electronic voting server 100. If not, information about inconsistencies can be stored on the blockchain. Through such an operation, it is possible to prevent a specific user from changing the record of inconsistency on the electronic voting server 100. Information on the inconsistency may include inconsistency information in the voting content itself, inconsistency information on the number of coins and counting numbers on the voting record, and the like.

According to an embodiment, the electronic voting server 100 may be configured to include a voting progress management unit in addition to the various configuration units shown in FIG. 2.

The voting progress management unit (not shown) may perform guidance on the start and end of voting to the user terminal 200, and may perform real-time turnout management, voting participant list management, etc., and transmit related data to the administrator. .

The communication unit 170 enables the electronic voting server 100 to communicate with the user terminal 200, the certificate server 300, and the blockchain system 400. The communication network used by the communication unit 170 to perform communication may be configured regardless of its communication mode, such as wired or wireless, for example, a local area network (LAN) or a metropolitan area network (MAN: Metropolitan Area Network) and a wide area network (WAN).

The storage unit 180 serves to store information collected, generated, and processed in various components of the electronic voting server 100. That is, the storage unit 180 may store information on registered votes, information on ongoing votes, information on ended votes, etc., and information on users of the online voting system 10 Can be saved. The storage unit 180 may include, for example, a memory, a cache, a buffer, and the like, and may be formed of software, firmware, hardware, or a combination of at least two or more of them.

The control unit 190 includes a user authentication verification unit 110, a voting opening management unit 120, a user information management unit 130, a forgery detection unit 140, a counting unit 150, a voting result verification unit 160, a communication unit A function of controlling data flow between the 170 and the storage unit 180 may be performed. That is, the control unit 190 according to an embodiment of the present invention includes a user authentication verification unit 110, a voting opening management unit 120, a user information management unit 130, a forgery detection unit 140, and a counting unit 150. , The voting result verification unit 160, the communication unit 170, and the storage unit 180 may each be controlled to perform a unique function.

In FIG. 2, a user authentication verification unit 110, a voting opening management unit 120, a user information management unit 130, a forgery detection unit 140, a counting counting unit 150, a voting result verification unit 160 and a communication unit 170 ) Is a configuration that functionally classifies the control unit 190, and thus may be integrated and configured as one control unit 190.

3 is a flowchart showing a process of issuing a digital certificate according to an embodiment of the present invention.

Referring to FIG. 3, a user may request issuance of a digital certificate by accessing the certificate server 300 through the user terminal 200 (S310). After receiving a request for issuing a certificate from the user terminal 200, the certificate server 300 generates a server public key and a random string (S320), and transfers the generated server public key and a random string to the user terminal 200. Can be delivered (S330). It goes without saying that the certificate server 300 in step S320 may generate a server private key matching the server public key while generating the server public key.

The user terminal 200 may encrypt the user's signature and the random string received from the certificate server 300 using the server public key (S340), and may transmit the encrypted user signature to the certificate server 300 (S340). S350).

The certificate server 300 decrypts the encrypted user signature using the server private key (S360), generates a digital certificate based on the user signature, and then encrypts the generated certificate using the user public key ( S370). Thereafter, the encrypted digital certificate may be transmitted to the user terminal 200 (S380).

The user terminal 200 may store and store the issued certificate in the user terminal 200 by decrypting the received certificate using the user private key. Thereafter, the user can authenticate his or her identity through the issued certificate.

4 is a diagram for explaining a forgery detection method of the electronic voting server 100 according to an embodiment of the present invention.

Referring to FIG. 4, the online voting system 10 may include an electronic voting server 100, a certificate server 300, and a block chain system 400.

The electronic voting server 100 may perform forgery detection of data in the electronic voting server 100 and data for each of a plurality of nodes existing on the blockchain system 400.

Such forgery detection may be performed by comparing a hash value for voting information collected from at least one blockchain node and a hash value for voting information stored on the electronic voting server 100, as described above. .

The electronic voting server 100 may additionally monitor data forgery and alteration in the certificate server 300.

The electronic voting server 100 may perform data forgery monitoring in real time and, when a data forgery behavior is detected, may transmit the information to the administrator terminal. The content delivered to the manager terminal may include the time when the forgery occurred, the content of the forgery, and the location where the forgery occurred.

5 is a diagram for explaining a method for a user of the online voting system 10 according to an embodiment of the present invention to exercise his or her voting right.

Referring to FIG. 5, users A to E are users registered on the electronic voting server 100 and may have voting rights for a specific vote. Each user can authenticate that he or she is a voter for a corresponding vote through a certificate, and the electronic voting server 100 can issue a blockchain wallet address to voters whose authentication is confirmed. In addition, the electronic voting server 100 may provide a coin, which is an asset capable of voting with the corresponding blockchain wallet address after issuing the blockchain wallet address.

When a user selects one of the candidates for voting, a transaction occurs in which the coin existing in the blockchain wallet address issued for the user is transferred to the selected candidate's blockchain wallet address. Since such transactions are performed through blockchain technology, the possibility of double transactions is blocked.

In addition, since information about the user cannot be verified through the blockchain wallet address, the transaction details of coins or coins present in the blockchain wallet address issued to the user or the blockchain wallet address for items subject to voting are recorded. Through this, individual voting information cannot be checked.

That is, only the user who performed an electronic signature and voted through a digital certificate is granted access authority through the certificate server 300 and can view his or her voting record, and other users or administrators other than the user can view the voting record. You will not be able to browse.

6 is a flowchart illustrating a process in which the electronic voting server 100 according to an embodiment of the present invention performs an operation from opening a voting to verifying after the voting ends.

Referring to FIG. 6, the electronic voting server 100 may receive information on voting opening from the user terminal 200 (S610). The information on the opening of a vote may include the content of the vote, items subject to vote, a voting period, a voting method, and conditions of a voter who can perform a vote. According to an embodiment, such a voting opening may be performed by an administrator, but general users may be performed through their user terminal 200.

The electronic voting server 100 may open a voting on a specific topic based on the received information after receiving information on voting opening (S620). The electronic voting server 100 may open a blockchain wallet address for items subject to voting in the process of opening a specific voting, and establish a blockchain wallet address to be issued to users who have completed authentication of their identity in advance. May be.

The electronic voting server 100 may receive authentication results of users who have voting rights for a specific voting from the certificate server 300 (S630). Alternatively, the electronic voting server 100 may perform identity authentication for a user in a different manner other than a certificate.

The electronic voting server 100 may issue a blockchain wallet address to a user who is confirmed to have voting rights for a specific voting (S640). In the blockchain wallet address issued to the user, there may be an asset that can exercise voting rights, and after the electronic voting server 100 issues the blockchain wallet address, it may provide an asset that can exercise voting rights to the corresponding address. .

The user can then exercise the voting right on the voting item he desires through his user terminal 200, and accordingly, a transaction of coins serving as voting rights on the blockchain system 400 can be made. Specifically, a transaction in which coins existing in the blockchain wallet address issued to the user are transferred to the blockchain wallet address for the item voted by the user may be performed.

The electronic voting server 100 may detect forgery and alteration of data for each node of a block chain during a voting process (S650). The method in which the electronic voting server 100 performs forgery detection of the data ledger in the process of voting is, as described above, data for each node on the blockchain system 400 and on the electronic voting server 100. This can be done through comparison of the data stored in. In detail, the electronic voting server 100 compares the hash value for voting information collected from each of the blockchain nodes and the hash value for voting information stored on the electronic voting server 100 to compare the voting result. Forgery behavior can be detected.

When the voting period is over and the voting is terminated, the electronic voting server 100 determines the number of coins present in the blockchain wallet address of the items subject to voting and the number of coins counted in the electronic voting server 100. Or, it is possible to perform a final verification on the result of the aggregate vote by comparing the voting records (S660).

In this verification process, the electronic voting server 100 is a block of users who are authenticated as having the right to vote for the corresponding vote and coins present in the blockchain wallet address for each of the voting items subject to voting within a specific vote. The sum of the coins existing in the chain wallet address and the number of coins or voting records counted in the electronic voting server 100 may be compared.

The electronic voting server 100 may stop the ongoing voting or invalidate the ended voting when forgery of data is detected during the forgery detection process of S650 or the verification process of the voting count result of S660. In addition, when forgery and forgery is detected, the electronic voting server 100 may capture a corresponding location and transmit a notification to the administrator, and may store contents related to forgery detection on the blockchain system 400.

As described above, according to various embodiments of the present invention, the security of the voting result can be improved by introducing a blockchain-related technology when voting online, and the electronic voting server and the blockchain system are separately introduced. The secret voting principle can also be implemented by managing user information so that user information is not known through the user's blockchain wallet address. In addition, since the forgery and alteration of data can be identified during voting or after voting is completed, the reliability of the voting count can be improved.

The steps of a method or algorithm described in connection with an embodiment of the present invention may be implemented directly in hardware, a software module executed by hardware, or a combination thereof. Software modules include Random Access Memory (RAM), Read Only Memory (ROM), Erasable Programmable ROM (EPROM), Electrically Erasable Programmable ROM (EEPROM), Flash Memory, hard disk, removable disk, CD-ROM, or It may reside on any type of computer-readable recording medium well known in the art to which the present invention pertains.

The embodiments of the present invention have been described above with reference to the accompanying drawings, but those skilled in the art to which the present invention pertains may be implemented in other specific forms without changing the technical spirit or essential features of the present invention. You will understand. Therefore, the embodiments described above are illustrative in all respects and should be understood as non-limiting.

10: online voting system
100: e-voting server
200: user terminal
300: certificate server
400: Blockchain system

Claims (10)

In the electronic voting server that implements a blockchain-based online voting system,
A user authentication verification unit receiving a user authentication result from a certificate server that issues a digital certificate according to a digital certificate request from a user terminal;
A voting opening management unit for receiving information on voting opening from the user terminal and opening a specific voting on a blockchain system;
A user information management unit for issuing a blockchain wallet address to a user who is authenticated as having a voting right for the specific vote through the digital certificate;
A forgery detection unit that performs forgery detection of data for each node of the blockchain in real time or at random time intervals;
After the voting is over, a counting unit for generating a voting count by performing counting on the voting results; And
It includes a voting result verification unit that performs verification on the voting count result generated by the counting counting unit,
The forgery detection unit,
Detects forgery behavior of voting results through comparison of hash values for voting information collected from at least one blockchain node and hash values for voting information stored on the electronic voting server,
The electronic voting server and each block chain node specify the location where the forgery behavior is detected, and transmit information on the location where the forgery behavior is detected to the administrator terminal,
If the location where the forgery act is detected is the electronic voting server, the voting in progress is stopped, and if the location where the forgery act is detected is one of the blockchain nodes, the corresponding voting is continued. Voting server.
The method of claim 1,
The voting opening management unit,
Electronic voting server, characterized in that storing at least a part of information on voting opening received from the user terminal on a blockchain system
The method of claim 1,
The certificate server,
A first step of receiving a certificate generation request from a user terminal;
A second step of transmitting a server public key and a randomly generated string to a user terminal;
A third step of receiving a user signature encrypted through the server public key from a user terminal; And
After decrypting the user signature encrypted through the server public key through the server private key and generating a certificate, the digital certificate is transmitted to the user terminal by encrypting the generated certificate through the user public key. Issuing, electronic voting server.
delete delete delete The method of claim 1,
The user information management unit,
Electronic voting, which provides an asset capable of voting with a blockchain wallet address issued to a user who is authenticated as having the right to vote for a specific voting through the digital certificate, and then performs counting of the assets provided for the voting. server.
The method of claim 7,
The voting result verification unit,
Within a specific vote, the total amount of assets in the blockchain wallet address for each of the voting items and the assets in the blockchain wallet address of users who have been authenticated as having the right to vote for that vote, and the corresponding An electronic voting server that performs verification of voting results through comparison of counted numbers for assets provided for voting.
The method of claim 8,
The voting result verification unit,
The comparison result of the voting result verification unit,
When the total number of assets and the number counted for the assets provided for the corresponding vote do not match, information on the discrepancy is stored on the blockchain.
In the method for the electronic voting server to implement a blockchain-based online voting system,
Receiving a user's authentication result from a certificate server that issues a digital certificate according to a digital certificate request from a user terminal;
Receiving information on voting opening from the user terminal and opening a specific voting on a blockchain system;
Issuing a blockchain wallet address to a user who is authenticated as having voting rights for the specific voting through the digital certificate;
Detecting forgery and alteration of data for each node of the blockchain in real time or at random time intervals;
Generating a voting count result by performing aggregate processing on the voting result after the voting is over; And
Including the step of performing verification on the generated vote count result,
The step of performing forgery detection of the data for each node of the blockchain in real time or at arbitrary time intervals,
Detecting forgery behavior of voting results by comparing hash values for voting information collected from at least one blockchain node and hash values for voting information stored on the electronic voting server;
Specifying a location where forgery behavior is detected among the electronic voting server and each block chain node, and transmitting information on the location where the forgery behavior is detected to an administrator terminal; And
If the location where the forgery act is detected is the electronic voting server, stopping the voting in progress, and if the location where the forgery act is detected is one of the blockchain nodes, continuing to proceed with the corresponding voting. How to implement a blockchain-based online voting system.

Images