Connect with us

Global News

Ethereum blockchain voting for Moscow regional parliament election cracked

Independent researcher collects a $15k bounty for discovering a vulnerability



Recently, officials in Moscow had published code related to an election that was going to be completely online. The code was purposefully made open source to allow for anyone to crack the code before it is deployed, and so they can patch the vulnerabilities beforehand.

A short private key was the main vulnerability found

A French researcher and cryptographer for Loria named Pierrick Gaudry found a vulnerability in less than 20 minutes. It turned out that the private key used to encrypt election communication on the blockchain was too insecure and needed to be longer in length. The Moscow officials agreed and decided to lengthen the private key to 1024 bits. Gaudry said this is still half the size he would recommend. If the private key is found during the election, the vote totals of every voter would be available as people cast their vote online.

No one has used a blockchain for storing votes in a legally binding election before

Moscow regional parliamentary figures hope to have the code as secure as possible before the election on September 8th.

If implemented, Moscow regional partliament, also know as the Moscow City Duma, would become the first country to use blockchains in a legally binding election.

Image Info:

DescriptionEnglish: blockchain, block chain, bitcoin,
LicenseCC BY-SA 4.0
SourceWikimedia Comons
AuthorDavidstankiewicz – (Author has nothing to do with this site)

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *