Additional flaw found in Swiss Post e-voting system
This is the second flaw in the Swiss Post future e-voting system discovered during the public intrusion test phase.
Keystone
A second error in the Swiss Post planned e-voting system has been discovered as the public intrusion test phase comes to an end. The Federal Chancellery announced the need for action and confirmed a review of the e-voting certification and approval process.
This content was published on
2 minutes
Keystone-SDA/jdp
The same computer experts who discovered a critical error in the source code of Swiss Post’s new e-voting system earlier this month announced they discovered a further security gap. It was identified as part of the public intrusion test that has been running since February 25, during which the e-voting source code was released.
The bug affects universal verifiability – the same area of the system as the first error. However, in this case the error would not make it possible for arbitrary manipulation of any possible votes to go unnoticed, according to the Federal Chancellery. That said, votes could be made invalid without being discovered by the mathematical evidence.
René Lenzin, deputy head of communications at the Federal Chancellery, told the Swiss news agency Keystone-SDA that the error confirmed a “need for action”. The error discovered on March 12 had already shown that universal verifiability and thus the “heart of the system” had not worked. The system had to recognise if manipulation had taken place.
Swiss Post has been asked to review and adapt its security processes to prevent such weaknesses. Lenzin confirmed that Swiss Post did not meet the legal requirements with these vulnerabilities.
More
More
How e-voting became a fight for democracy
This content was published on
After years of tests, Swiss e-voting is at a crossroads. The government wants to extend it; a cross-party campaign wants to stop it altogether.
Swiss Post is currently in the process of clarifying the facts and is in contact with its Spanish technology partner Scytl.
According to Keystone-SDA, Swiss Post indicated that this error would have been discovered during decryption and counting because Swiss Post’s e-voting system does not allow invalid votes to be counted. This means that this error would not allow votes to be changed or elections to be manipulated unnoticed.
The Federal Chancellery is expected to draw conclusions on the public intrusion test, in which over 3,000 hackers around the world tested the Swiss Post e-voting system. It ran from February 25 to March 24.
Lenzin said the intrusion test had showed that the approach of publishing the source code and carrying out a public intrusion test was the right one.
Popular Stories
More
Swiss oddities
Mennonite movement turns 500 in Zurich, where it all began
Train vs plane: would you take a direct train between London and Geneva?
Eurostar is planning to run direct trains from Britain to Germany and Switzerland from the early 2030s. Would you favour the train over the plane? If not, why not?
Zurich laboratory finds intestinal bacteria in coffee machines
This content was published on
Last year, the Zurich Cantonal Laboratory found defects in one in four samples of milk drinks from coffee machines. Too many intestinal bacteria were found in a number of samples.
SWISS Belgrade-Zurich flight forced to land in Germany
This content was published on
Swiss flight LX1413 from Belgrade to Zurich had to make an unscheduled landing today in Friedrichshafen, southern Germany.
New Swiss 3D simulation tool offers better landslide forecasting
This content was published on
A new 3D simulation tool is enabling much more accurate avalanche forecasts. The model, which proved its worth during the landslides in Brienz (GR) and Blatten (VS), could lead to more effective management of alpine risks.
Alleged leader of Kosovar terrorist group indicted in Switzerland
This content was published on
The Office of the Attorney General of Switzerland has brought charges against a Kosovar on suspicion of being the leader of the Swiss branch of a Kosovar terrorist organisation. He is also suspected of having been active in the management of the organisation in Kosovo.
Swiss glacier lake drains without causing flooding damage
This content was published on
The Faverges glacial lake on the Plaine Morte above Lenk in the Bernese Oberland drained over the weekend. There was no flooding or damage, the authorities announced on Monday.
Chihuahua leads Swiss rescue team to owner stuck in a crevasse
This content was published on
A Chihuahua helped to rescue a man on the Fee Glacier above Saas-Fee VS on Friday. It alerted a rescue team to its owner who had fallen into a crevasse.
Swiss bosses distance themselves from the United States
This content was published on
According to a survey of managers, Swiss companies are increasingly turning away from the USA and orientating themselves more towards Southeast Asia and the EU. This is the result of a recent survey.
This content was published on
The Fête de l'Epouvantail (scarecrow festival) is celebrating its 30th anniversary and returns to Denens in canton Vaud for its seventh edition from July 10-20.
If you want to start a conversation about a topic raised in this article or want to report factual errors, email us at english@swissinfo.ch.
Read more
More
The status and stakes of e-voting in Switzerland
This content was published on
The debate around the introduction of e-voting for Swiss citizens at home and abroad has rumbled on for almost two decades. It’s not likely to end soon.
This content was published on
A committee of politicians and IT experts launches an initiative aimed at banning online voting for at least five years in Switzerland.
Flaw reported in Switzerland’s biggest e-voting system
This content was published on
A hacker claims to have discovered a weakness in canton Geneva’s e-voting system to attacks that could redirect online voters to malicious websites.
You can find an overview of ongoing debates with our journalists here . Please join us!
If you want to start a conversation about a topic raised in this article or want to report factual errors, email us at english@swissinfo.ch.