If I understand it properly, the mint signs an encrypted message, and the signature survives decryption, sorta like if an envelop had carbon copy paper inside, a signature on the outside survives the destruction of the envelope (that is, decryption).
So, the ballot tokens are minted, encrypted with the voter's key, sent to the voter, decrypted and selected by the voter, and broadcasted to the verifiers. The selected tokens are verified with the booth's public key and are not traceable to the voter.
To make it more secure, a voter would send a separate verifiable message authorizing having voted, which is weighed against the total count to keep the booth itself from just broadcasting fraudulent extra votes.
I think I need to draw a diagram.
PS: This could be multi-layered, too, like onion routing. A Teller service could request tokens minted on behalf of a third party from the main mint and store them securely until they need to be issued. The teller makes a withdrawal send to the third party asynchronously.
James Lewis
npub1nf…pxa3x
2024-05-31 16:25:21
in reply to nevent1q…0tdt
Author Public Key
npub1nf9vm6uhs4j7yaysmjn9eqlf7et5t6hvrkdqgpd995vcc9yfjyas0pxa3xPublished at
2024-05-31 16:25:21Event JSON
{
"id": "f1bbf1d317913e1c23c2474747bb05b4de08c360afb43d73b952a3c057e3b800",
"pubkey": "9a4acdeb978565e27490dca65c83e9f65745eaec1d9a0405a52d198c1489913b",
"created_at": 1717172721,
"kind": 1,
"tags": [
[
"p",
"e8ed3798c6ffebffa08501ac39e271662bfd160f688f94c45d692d8767dd345a",
"wss://relay.damus.io/",
"arkinox"
],
[
"e",
"8d458bea5278fe605a28da201941c15cfb767689ffa15e0e46b9debde45141b5",
"wss://relay.damus.io/",
"root"
],
[
"e",
"a623e28de83b6a3f124ab9971ef7696e025d6e5c67c77e69fd7aec35144a69b1",
"wss://relay.damus.io/",
"reply",
"e8ed3798c6ffebffa08501ac39e271662bfd160f688f94c45d692d8767dd345a"
]
],
"content": "If I understand it properly, the mint signs an encrypted message, and the signature survives decryption, sorta like if an envelop had carbon copy paper inside, a signature on the outside survives the destruction of the envelope (that is, decryption).\n\nSo, the ballot tokens are minted, encrypted with the voter's key, sent to the voter, decrypted and selected by the voter, and broadcasted to the verifiers. The selected tokens are verified with the booth's public key and are not traceable to the voter.\n\nTo make it more secure, a voter would send a separate verifiable message authorizing having voted, which is weighed against the total count to keep the booth itself from just broadcasting fraudulent extra votes.\n\nI think I need to draw a diagram.\n\nPS: This could be multi-layered, too, like onion routing. A Teller service could request tokens minted on behalf of a third party from the main mint and store them securely until they need to be issued. The teller makes a withdrawal send to the third party asynchronously.",
"sig": "47ddde95f914cfe71a23f859916da2d0c475ada6bbff0800663aff69b91213b14439e540f2168cd77714329ca0c3ce524667214c0523a68d7bfd30afc5e30be3"
}