#13 Use Matrix's encryption system instead of nacl 2 years ago

v0.4.0 removed by ~edwargix on ~edwargix/tallyard

#12 Redact all events expect last when election is over 2 years ago

on ~edwargix/tallyard

REPORTED RESOLVED FIXED

#6 Implement Zero Knowledge proofs for ballots 2 years ago

on ~edwargix/tallyard

REPORTED RESOLVED FIXED

#13 Use Matrix's encryption system instead of nacl 2 years ago

v0.4.0 added by ~edwargix on ~edwargix/tallyard

#13 Use Matrix's encryption system instead of nacl 2 years ago

Ticket created by ~edwargix on ~edwargix/tallyard

We're currently using https://pkg.go.dev/golang.org/x/crypto/nacl/box for p2p encryption (since it's easy), but Matrix already provides a strong encryption system that also includes key verification, a double-ratchet, etc.

Using Matrix's E2EE will also hide metadata about the election itself because all events will be of the type m.event.encrypted, thus looking no different than normal matrix messages. Note that this isn't perfect opsec since the pattern of messages provides clues for eavesdroppers, but it helps.

#12 Redact all events expect last when election is over 2 years ago

v0.4.0 added by ~edwargix on ~edwargix/tallyard

#12 Redact all events expect last when election is over 2 years ago

Ticket created by ~edwargix on ~edwargix/tallyard

In case I've screwed up the cryptography somewhere (or one or more of our dependencies has a bug), let's delete as many events as possible when an election concludes.

#1 Refuse to continue when voter input is 0 2 years ago

v0.4.0 added by ~edwargix on ~edwargix/tallyard

#3 Warn user about voting in elections with just 2 voters 2 years ago

v0.4.0 added by ~edwargix on ~edwargix/tallyard

#6 Implement Zero Knowledge proofs for ballots 2 years ago

v0.4.0 added by ~edwargix on ~edwargix/tallyard