REVS - Installation and User Manual
Contents
1. configuration In the Configuration Selection u menu ef Figure 11 it is possible to select the election configuration and ifit is necessary to create the elections keys and or the Administrators signing keys If the keys are not in the Commissioner database an error message will appear Fer security reasons the administrators signing keys should be created by the Administrators and not by the Commissioner ef Section 3 1 After selecting the configuration press the Finish button to create the data files The following files will be created 1 One enerypted file containing the elections private keys 2 One file containing the decryption key to decipher the elections private keys file One file for each enabled Administrator One file for the Ballot Distributors 5 One file for the Anonymizers and Counters 6 One file containing a list of the active Ballot Distributors One file containing a list of the active Counters All files are signed by the Commissioner The next step is to setup the servers databases whith the created files To lead the files into a server s database launch the server ef Section 3 2 select the U Update database option and enter the file name Now the server is ready to be started just select the option S Start server 12 m Figure 11 Configuration Selection create databases An additional step is required to start the Anonymizer server it is necessary to2. in the installation directory distributors the file containing the active Ballot Distributors list ef Sec tion 5 e poliey tat this file is a Java policy file for more information about it consult the Java documentation An example of a policy file is available at REVS download site commissioner ert this file contains the commis signed by the CA ioner public key certificate tstore ks this file contains the CA public key certificate To create this file follow the instructions in cf Section 23 weleome html this file contains the welcome message formatted in HTML that appears on the welcome screen of the Voters Module Figure 12 6 0 2 Voting steps The voting steps are the following 1 Start the Voter s Module with the following command java classpath voter jar Djava security poliey eonf poliey tat inese1D revs voter Voter Engine A welcome sereen should appear Figure 12 To continue press OK 2 Then the voter authentication is requested Figure 18 To continue press OK A voter authentication confirmation should appear Figure 14 to confirm press Yes 3 The next screen presents the list of elections in which the voter can par ticipate The voter should pick one an press OK to continue Figure 15 4 Now it is displayed the ballot Figure 16 The voter should fill in the ballot and when done press OK to submit the vote 5 A validate confirmation message will appear Figure 1
3. lanswer gt answer code 3 gt G for a walk lt answer gt de more answers gt lt lauestion gt lt t more questions gt lt lgroup gt lt more groups gt lt a Figure 8 XML ballot 10 Figure 9 Servers Administration menu 4 3 Import voters and elections It is possible to import voters and elections from text files using the appropriate commands at the Utilities menu cf Figure 10 The text files should have the following format Voters file one line per voter lt id gt lt name gt passwordf pin Ifthe voters have no password information use the option Create Voters Passwords in the Utilities menu ta create hem 4 Voters groups one line per association group gt voter group id gt group deseription gt lt id_voter gt Elections file one line per election election id gt j lt election description gt lt voters group id gt lt voters group deseription gt election configuration description gt ballot fie Note that the election configuration must be created previously to the import of the elections file 5 Start an election To start an election it is necessary to create the servers databases option Cre ate Election Data in the main menu of the Commissioner The databases are created based cn an election configuration instead of based on individual elec tions Therefore the databases created contain information concerning all the elections that have the selected
4. 9 After the confir mation the vote is send to the Administrators for signing but before that it is possible to save the voting state cf Figure 18 which is necessary to recexer the voting process in the case of being impossible to submit the vote 14 Figure 12 Welcome sereen 6 After collecting the administrators signatures it will appear a submit con firmation message Figure 19 The vote is only submitted after this con firmation If the voter does not confirm the submittion the submittion is aborted To resume the submit process it will be necessary the previously saved voting state Final menn it it is displayed the voting process report Figure 20 From this possible to go to the election selection menn or to the welcome message menu If the vote cannot be submitted successfully there will be an error message on voting proces report To resume the voting protocol go to the File menu in the welcome screen and select the Resume Voting option Figure 21 Then the authentication menu should appear and the voting process is resumed 7 Election tally After the election polling close select the Counter s option T Tally votes to decipher the votes verify the Administrators signatures and to produce the final election tally For this action operation it will be needled the file containing the encrypted elections private keys and the file containing the decryption key for the first one To view the r
5. REVS Installation and User Manual 22nd December 2004 1 Pre requisites To run REVS it is needed additional software namely MySQL version gt 3 23 53 MAX installed available at http www mysql com Java runtime version gt 14 installed available at http javasun com Optional software OpenSSL available at http www opensalorg 2 Rey management After the installation of the required software the first step is to create and sign the keys of all servers Commissioner Ballot Distributors Administrators Anonymizers and Counters To generate the keys we used the Java command line tool keytool 2 1 Create a key To create a key type the following command should be executed in the command line keytool genkey keystore kstore ks alias server keyalg RSA keysize 1024 validity 365 This command creates a 1024 bits RSA key valid for 365 days The key is stored in a keystore file named kstore ks with the server alias To find out more about keytool utility please check the Java documentation 2 2 Signa key First we must create the signature request and submit it to a Certification Authority CA for signing To create a signature request type the following command keytool This command vill create a signature request for the key with the alias server and store it in the server req file The second step is to get the certificate request signed You can get your keys signed by
6. a certification authority such as VerySign or you can create your own CA We used the OpenSSL tool to create our own CA After installing OpenSSL properly we use the following command to sign the request ertreg keystore kstore ks alias server file server reg openssl 2509 req in server roq out server ert CA demoC A cacertert CAkey demo CA private eakey ert C Aserial demo CA serial This command will use the CA installed in the demo CA directory to sign our request the eacert ert contains the CA public key certificate and the eakey ert contains the CA private ley The signed request is stored in the server ert file 2 3 Import the signed certificate Before importing the signed public key certificate we should first import the CA public key certificate keytool import file eacert ert keystore kstore ks alias ecca This command imports the CA public key certificate encert crt to the keystore using the alias ecca electoral commision certification authority Then ve can import our signed certificate keytool import file server ert store kstore ks alias server Since the CA certificate is already in the keystore it is possible to verify the signature on it and construct a valid certificate chain Note use a different keystore file for each server 3 Installing servers 3 1 Configuration file For the Ballot Distributor Administrator Anonymizer and Counter servers there should be a configuratio
7. esults open the file index htm in the results directory a resume table of the elections results will appear Figure There it is possible to choose two views of the elections results Figures and The Counters option G Gather votes should be used if there were multiple counters used in election to gather the voter from all of them For this task it is necessary the file containing the list of active counters 15 Figure 13 Authentication sereen Figure 14 Authentication confirmation 16 Figure 15 Election selection seren Figure 16 Ballot display 17 Figure 17 Validate confirmation Figure 18 Save vote state 18 Figure 19 Submit confirmation Figure 20 Report sereen 19 Figure 21 Resume voting Figure 22 Results resume table 20 1 Example Election Group 1 Simple questions types nn van Pl Figure 23 Overall results 1 Example Election Group 1 Simple questions types Figure 24 Results details a
8. lits it into two pieces a password and a pin to be used in the authentication algorithm defined in Section The voters are organized in groups and each voter can belong to several groups To manage the groups of voters choose the option Voters Groups in the Voter Administration mem In the Group Administration menu Figure 4 it is possible to add and remove groups to rename the group and to manage the voters in the groups Figure 5 Note that the election dectorate will be a voters group 2 The second step is to define an election configuration option Configura tions in the main menu To define an election configuration it is necessary to define the polling period start and end dates the mmber of Ad ministrators to use the required signatures to make a vote valid and if Anonymizers are to be used The Configuration Administration menu is shown in Figure 6 3 To finish the election setups select the option Elections in the main menu In the Election Administration menu Figure 7 it is possible to create delete or edit elections To define an election it is necessary to define the name of the election the election s ballot cf Section 4 1 the election s dectorate a voters group and the election s configuration Note that Figure 1 Commissioner main menu several elections can use the same voters group and or election configu ration 4 1 Create a ballot The ballots are defined i
9. load site and at MySQL site Now we are ready to start the server To start a Ballot Distributor Adminis trator Anonymizer or Counter server just type the following command java classpath revs server jar eat soap jar eat mysql connector java jar Djava security poliey conf poliey tzt Djava rmi server codebase file full directory path gt revs servers ineseID revs servers StartServer If everything is ok it should appear a mem to choose the server s type Select server type 0 Distributor 1 Administrator 2 Anonymizer 3 Counter Server type After selecting the server s type it will be asked for the passwords for the data base authentication the keystore and the private key Press Enter for defaults user REVSuser password REV Spass DB KeyStore password REVSpassKS Private key password REVSpass PK The default values are only for the database authentication user sa pass word lt no_paseword gt Finally there should appear a list of actions allowed by the selected server K Create signing keys only Administrator F Forward Counter selection only Anonymizer G Gather votes only Counter T Tally votes only Counter Create database D Delete database R Redo database U Update database S Start server E Erit Option To start the Commissioner server type the following command Jara lent ro servera arja mag mec jana jr Dj seert policy con phi a
10. lt Paml versions encasing ISO 8859 1 7 gt lt General ballot example gt lt balat electionCode 0 gt lt balotDesenptien gt lt line gt Eramole balot lt ine gt lt lne gt Exra line lt fine gt di more ines gt lt allotDescrpion gt group code 1 descrption Simple questions types gt lt type tag can have the values Single Multiple OpenS or OpenM gt lt question code 1 type Single gt lt questionDescrption is REVS robust lt iquestionDeseripton gt lt answer code 1 gt Yesclanswer gt answer codes 2 gt Nos answer gt answer code 3 Dont knowe answer gt lt lauestion gt lt question code 2 type Multple gt lt guestjonDescrplion gt Do you plan to use REVS ln lt IquastionDescripton gt lt answer code 1 gt Natonal elections lt answer gt lt answer code 2 gt Opinion surveys lt answar gt lt answer code 3 gt Student elections lt answer gt lt t more answers gt lt lauestion gt sie mare questions gt group lt group code 2 descriplion Opan questions types lt question code 1 ype OpenS gt lt questionDescrption What is your favorite color lt guestionDeseription gt answer code 4 gt Yellowe answer gt lt t more answers gt lt lauestion gt lt question code 2 type Oper gt lt questionDescription gt What do you like to do in your free Ime lt iquestionDeserption gt answer code 1 gt Ses a movie lt lansuer gt answer code 2 Read a book lt
11. n XML as presented in Figure 8 A ballot is composed by a description and several groups of questions A group of questions has a description and several questions A question is composed by a description the question it self and by the possible answers Currently four types of questions are supported Single the answer must be ane and only one of the presented choices Multiple we can choose any number of choices for our answer OpenS open single and OpenM open multiple types are similar to the Single and Multiple types respectively but it is also posible to give another answer Currently there is no specific ballot editor Therefore it is necessary to use a text editar to create the election ballot 4 2 Defining the election servers Part of the setting up of REVS consists in defining the election servers option Servers in the main menu In the Servers Administration menu Figure 9 it possible to define the address and import the public key of the elections servers Ballot Distributors Administrators Anonymizers and Counters To import the public key of the server load the public key certificate file cf Section 2 Only the servers that are enabled can be used in the election Figure 2 Voters Administration menu EET DOM H Figure 4 Group Administration menu Figure 5 Group management menu Figure 6 Configuration Administration menu Figure 7 Election Administration menu lt
12. n file defining the server and database addresses The configuration file isa text file that should look like this SERVER lt address host service_name gt DATABASE lt address host database Example SERVER Aocalhost administrator DATABASE localhost adm database 3 2 Setting up servers We have separated REVS in two jar files reus_servers jar and revs_voter jar For setting up the servers we use the revs_servers jar file To set up one REVS servers follow these steps 1 Create the server s database in MySQL 2 Copy the reus servers jar to the installation directory 3 Create the subdirectori conf and ext 4 Copy to the conf subdirectory the following files a Estore ts file containing the key of the server the signed public key certificate by the CA and the CA public key certificate cf Section 2 b tstore ks file containing the CA public key certificate only for Anonymiz ers and Counters e commissioner ert file The commissioner public key certificate signed by the CA 4 server cfg file the server configuration file cf Section 3 1 e policy tat this file is a Java policy file for more information about it consult the Java documentation An example of a policy file is available at REVS download site 5 Copy to the eat subdirectory the following files a soap jar available at REVS download site b mysgtconnector java jar available at REVS down
13. select the Counter to which forward the votes Select the option F Forward Counter selection and enter the name of the file containing the list of active Counters then select one Now the server is ready to be started just select the option S Start server It will be asked for the maximum number of ballots to be sent after each delay and the maximum delay time ef Section 5 1 Administrators signing keys IE the signing keys are created by the Commissioner is it possible for the Com missioner to keep the signing keys and use them produce valid votes corrupting the election by it self Therefore is is recommended the creation of the sign ing keys by the Administrators and then import the verification keys to the Commissioner The steps needed are the following 1 Export the elections list to a file Go to the Utilities menu and select the Export Hections option 2 Create the signing keys for cach Administrator Start the Administrator server cf Section 3 2 and select the K Create signing keys option Then use the file saved in step one as input The output is a file containing the signature verification keys 3 Import the signature verification keys In the Utilities menu and select the Import Administrators Signing Keys option 13 6 Voting process 6 0 1 Start the Voter s Module To install the Voter s Module copy the revs_voter jar file to the installation directory and the Slowing files to the conf subdirectory
14. t First it will be asked for the authentication information Press Enter for defaults user REVSuser passmordeR EV Spass DB KeyStore password REVSpassKS Private key password REVSpass PK And then the actions menu should appear Create tables D Delete tables R Redo tables F Fill tables G Graphic mode E Erit Option All servers have three database management actions create delete and redo Before we can start using a server for the first time we must create the database tables The remaining actions of each server will be explained in the next Sections 4 Setting up an election In REVS the election is prepared by using the Commissioner server To set up an election start the Commissioner server as described in Section 3 2 ifit is the first time do not forget to create the database tables Then choose the option G to enter the graphic mode see Figure 1 alternatively you can start the Commissioner server with the G option add at the end of the command to start the server Now just follow these three steps 1 First it is necessary to register the voters option Voters in the Commis sioner main menu Figure 1 In the Voter Administration menu it is possible to add remove or change the voters records Figure 2 When defining the passwords of the voters there are two options a password and a pin or only one password cf Figure 3 In the case of using only one password the system internally sp
Download Pdf Manuals
Related Search