From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 72D80158013 for ; Sat, 28 Aug 2021 13:36:37 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 30986E086A; Sat, 28 Aug 2021 13:36:36 +0000 (UTC) Received: from mail-ot1-f46.google.com (mail-ot1-f46.google.com [209.85.210.46]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 16969E0869 for ; Sat, 28 Aug 2021 13:36:35 +0000 (UTC) Received: by mail-ot1-f46.google.com with SMTP id m7-20020a9d4c87000000b0051875f56b95so11722335otf.6 for ; Sat, 28 Aug 2021 06:36:35 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:content-transfer-encoding; bh=Sk0F4mXv8ZnTIQ6eTiqaJ870l1kMMDH23TpFbiPpFC0=; b=or7W27FQqKV/M+vOixvi/3QufPF3JPJ9POa5J0eJP4ZQ7wxFN+VkkS77lybUw0pmbz E1Uov9Qg4K+OR0A+Uob4/7w3QloF3goQWGnFuMkOoXf24UK8kYcZOy1JBxu+jZylQXHY Ogs5tgmKgoFrrqXU4t05E4/+bDWu3OfJF6QnH6R6hb64kPZJUdeG6RIlsp9V7ccF/5DM zMBVbEnUy9bj3bsecS25R9b+fWbPCPpA/idAgWLPLjoB7tVxrFds6upbizFWA7lA7aof R1R2O2fVyAaJpv3v5KMXOxyPvPvxAD6XQuLm8kMog+yQIn99LHlvljh/aV5dufIFCBvX HpiA== X-Gm-Message-State: AOAM531UqjyDB/eG1RD6AiCrjX98MeJ7XT7r11q89508Z7agZaZ0r+Xi NL6pzGSV0tQnidzY5tKPsmg5dLPrzHhTwlpmttlRT8K5 X-Google-Smtp-Source: ABdhPJzG9YJydn6sTKdg/alVNewz04BrDfGN5Y1j5zYNAMCfIsyvRqTMc5Qi45l21J7jzbxTLa9dYR1wTAN7RlxC+g8= X-Received: by 2002:a9d:563:: with SMTP id 90mr12251888otw.223.1630157794940; Sat, 28 Aug 2021 06:36:34 -0700 (PDT) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Project discussion list X-BeenThere: gentoo-project@lists.gentoo.org Reply-To: gentoo-project@lists.gentoo.org X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply MIME-Version: 1.0 References: In-Reply-To: From: Rich Freeman Date: Sat, 28 Aug 2021 09:36:22 -0400 Message-ID: Subject: Re: [gentoo-project] [pre-GLEP] Secrecy-respecting voting mechanism for Gentoo projects To: gentoo-project Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Archives-Salt: d93b4394-6bf8-4d31-9adf-2d99ac087fdd X-Archives-Hash: 205ad69da31e219680d2d918413711b0 On Sat, Aug 28, 2021 at 6:30 AM Micha=C5=82 G=C3=B3rny = wrote: > > 3. When the voting phase beings, the system creates random identifiers > for all voters. Each identifier is encrypted using voter's PGP key > and sent via email to the voter. The voter-identifier mapping is > discarded immediately to reduce the risk of it leaking. > What happens if an eligible voter reports they didn't get the email (most likely because email is horribly broken, but it could also be nefarious)? I suppose one solution would be to save the encrypted emails before they are sent. Then if one is missing it could be retrieved by an admin/etc and resent. Since the contents of the email are encrypted the only info divulged is that somebody was an eligible voter in the election, which is generally semi-public record around here. This avoids creating additional vote identifiers and eliminates any need to question the validity of the complaint. --=20 Rich