Using technology to increase voting numbers, increase the speed, but also ensure that it is safe.
By utilizing security methods of blockchain, mixed with two form factor authentication, encryption, something you know method (password-phrase-pin), mixed with other methods.
Basically, my thought for making voting more secure is this:
Signing Up / What if locked out / forgot password:
-
Voter registers with their local government for online voting.
The staff then goes online to the federal and state approved election vendor to input the data.
-
They receive a randomized nine digit snail-mailed PIN. (Like your bank card pin)
-
Then they receive an email, with their username and initial password.
Username will not be something to remember. More like randomized generated user ID
Example: JR12345678 (First letter of their first name and last name with random eight digits behind it. Making it ten characters.
Password will be something that much be changed every 90 days, or before an election.
Must be 10 or more characters
Must include at least one upper and one lower letter
Must include at least two numbers
Must include at least two special characters (!@#$%^&*)
During password resets / changes, the voter will not be able to reuse past 12 passwords
Lockout if tried more than five times incorrectly
Five unique questions and answers to unlock.
If you get locked out, you have to wait 15 minutes, then 60 minutes, then five hours, then have to request manual reset, by calling to verify your information.
When performing password login, change, reset, or forgot password, you MUST have that nine digit pin that was snail-mailed to you.
Enter two-form factor unique ID
Google Authentication
MicroSoft Authenticate
or similar
Sounds like a lot, but it will ensure a few methods… Something you know, something you have, something you are, etc.
How to log in - to vote:
**Preferred method would to use a cell phone, with iris and/or fingerprint locking technology. **
- Log into the website or mobile app.
- Enter your randomized username.
- Enter your password.
- Enter your randomized snail-mailed pin.
- Enter your drivers license number.
- Verify via pictures captcha pictures.
Then just like any other online poll, you vote as you desire.
Then the information is actively saved after every function. In case of internet outage, phone call, power outage, etc.
The voters have the ability to return after their interruption at where they left off.
Once submitted, the results will be instantly updated at the national / state / local levels (pending the election purpose).
At the end of your voting, before you click Submit. You have two review steps…
-
Review all your choices, without the hassle. Literally it will just show the voting topic, and your selection.
-
After you approve that first review, you will get a second time to review once more, but have to verify your information by entering your PIN.
How the voting log in and results are submitted / verified:
By utilizing BlockChain methods and Ransomware encryption methods, each local, county, state, and federal voting precinct will be the authenticator that randomly checks/verified the data, automatically.
What about hackers?
Naturally, any system that is connected to the internet, is possible to be hacked. Even the current election system has potential for hackers to over turn results, etc. However, having all these checks and balances in the system, using 256bit encryption or greater, such as those famous Ransomware virus’s, mixed with BitCoin BlockChain methods, then combine that with randomized username, difficult passwords, authenticator, and snail mailed pin, the chances at breaking into the system are next to nothing. But nothing is 100%, except death and taxes. So, they say.
What if it is election day and I cant get into my account?
Naturally, there will be federal, state, and local election poll workers, to “man” the phones. As well as having the Department of Elections approved vendor support staff assisting the poll workers.
How do you make sure that you are indeed the voter and not someone else?
By using all these checks and balances, maybe add photo of voters drivers license and “selfie” to verify vote presence, during voting. Unless the previous systems are fair enough to please administrations.
What are your thoughts?