Explore a comprehensive security analysis of Brazil's electronic voting system in this 55-minute Black Hat conference talk. Delve into the findings from a recent restricted hacking challenge organized by the Superior Electoral Court, examining vulnerabilities in the software used by over 140 million voters. Learn about the election workflow, public security tests, and specific issues such as software integrity, encryption, cryptographic keys, and code injection. Understand the problems with the current voting system and potential solutions. Gain insights into the digital record, authentication processes, and the voting database. Discover how these security concerns impact the upcoming Brazilian elections and the implications for electoral integrity.
Overview
Syllabus
Introduction
Context
Election Workflow
Brazilian Voting Machine
Quick Facts
The Election Workflow
The Public Security Tests
Vulnerabilities
Digital Record
Live
Conclusions
Software Integrity
Encryption
Cryptographic Keys
MINIX
Decryption
Authentication
Code Injection
Voting Simulator
Problems with the Voting System
Solutions
Voting Database
Question
Taught by
Black Hat
