Séminaire SoSySec : The intricacies of formally proving e-voting mixnets

Starting on
Ending on
IRISA Rennes
Salle Markov
Guillaume Scerri (LMF/ENS Paris-Saclay)

Guillaume Scerri (LMF/ENS Paris-Saclay)

The intricacies of formally proving e-voting mixnets

Mixnets are an essential building block for e-voting. Informally they break the link between the ballot cast by a voter and the ballot decrypted in order to compute the tally. While the functionality of these mixnets is relatively simple, the cryptographic tools used in order to achieve the desired properties are fairly complex, both in terms of proof techniques (notably rewinding or reprogramming random oracles), and in terms of primitives (at least zero knowledge proofs and commitments). Furthermore finding the right, composable security definitions is rarely done in the literature, and also bears careful consideration. In this talk we will explore the intricacies of formally proving these constructions. We will both discuss the complexity of a potential proof in the computational model, and how our recent extension of the computationally complete symbolic attacker model allows for a (reasonably) simple proof.

To follow the presentation remotely, please connect to the followingURL with a modern web browser:
- URL: https://bbb.inria.fr/all-t0p-qjq-9em
Access code: 192737
- Alternative audio access by phone will be possible but the parameters will be announced only a few minutes before the presentation.

Seminar taking place in person with mandatory registration at least 48h beforehand for *all* in-person participants by email to Nadia Derouault < nadia [*] derouaultatinria [*] fr >. Participants non-affiliated with Inria or IRISA will be asked to present an ID at the reception desk of the IRISA building.

To receive the SoSySec announcements, please subscribe to the SoSySec mailing list:
All past and future SoSySec talks are listed at

Séminaire en présentiel ouvert à tous et toutes mais avec inscription obligatoire au moins 48h à l'avance pour *tous* les participants en présentiel auprès de Nadia Derouault <nadia [*] derouaultatinria [*] fr>.
Les participants externes devront se présenter à l'accueil avec une pièce d'identité.

Vous pouvez vous abonner à nos annonces de séminaires :
et consulter la liste des exposés passés et à venir :