About Scytl | FAQs|About Security Technology

02) Are system administrators in control of the electoral process with Scytl's solution?

Scytl's Internet voting solution puts the control of the electoral process exclusively in the hands of the Electoral Board as it happens with traditional paper-based elections. The Electoral Board members are the only ones that can reconstruct the key to decrypt and count the votes. System administrators or any other actors with privileges in the system do not have access to the private key and, therefore, cannot see nor modify clear-text votes.

03) How does Scytl guarantee voters' privacy?

Votes are encrypted in the voters' voting device before they are cast. Only the Electoral Board can decrypt the votes by reconstructing the private key. The decryption of the votes is carried out in an isolated and physically secured computer by applying a mixing technique that breaks the correlation between the voters' identity and the clear-text votes in order to guarantee voters' privacy.

04) How does Scytl protect the integrity of the votes?

Votes are cryptographically protected (i.e., encrypted and digitally signed) while they are stored in the voting servers and, therefore, cannot be manipulated by anyone, not even system administrators with a privileged access to the system.

05) How does Scytl prevent the addition of bogus votes?

Once encrypted, votes are digitally signed by individual voters. The digital certificates used by the voters to digitally sign their encrypted votes can be either pre-existing digital certificates or digital certificates generated "ad-hoc" for that specific election. Before decrypting the votes, the Electoral Board verifies that the digital signatures on the votes belong to valid voters. Votes with invalid digital signatures are "red-flagged" and put aside for further auditing.

06) How does Scytl prevent the casting of multiple votes by a single voter?

There are two levels of security to prevent multiple vote casting. The first level is the electoral roll data base that marks the voters who have already cast votes to prevent them from casting additional votes. The second level is the verification of the digital signatures on the encrypted votes that the Electoral Board performs before decrypting and counting those votes. In case a voter had cast two votes, the Electoral Board would detect the duplication at this time.

07) Can voters verify that their votes have been included in the final tally?

Voters are provided with a voting receipt that contains a unique identifier which is randomly generated in the voters' voting device and, therefore, is only known to the voter. This unique identifier is encrypted with the vote in a digital envelope. Only the Electoral Board will be able to open the digital envelope and retrieve the vote and the unique identifier. At the end of the election, the Electoral Board publishes the list of the retrieved unique identifiers and voters are able to check that their individual votes have reached the Electoral Board and been counted.

08) Does Scytl's voting receipt facilitate voter coercion or vote selling?

Scytl's voting receipt does not disclose the voting options selected by the voter and, therefore, does not allow vote selling or voter coercion.

09) Can Scytl's solution be audited?

Scytl believes that transparency is an integral part of security. This is why Scytl provides election authorities (and independent auditors designated by the election authorities) with access to the source code of the e-voting solution. Once audited, this source code is digitally signed by election authorities to make sure that the same source code is used in the election.

10) Can election authorities audit the election results?

Scytl's solution generates logs for all the actions taken during the election. These logs are cryptographically chained every time a new log is generated in order to prevent any tampering. These immutable logs allow an accurate audit of the election results by election authorities and third parties at the end of the election.