On Sun, Mar 05, 2006 at 04:09:04PM -0800, Don Armstrong wrote: > > I guess the decryption key for encrypted ballots would be of some > > issue, but that's about it. > Presumably the decryption key could be unlocked after the election and > placed alongside the balots; since it should expire and be revoked > after the completion of the vote, this shouldn't pose much of a > problem. You'd want to avoid having that let people fake signed ACKs though, which would allow a hypothetical malicious developer to bring the mailbox presented into doubt. But I guess you could probably reveal the decyrption key without revealing the signing key, or just use subkeys for that purpose anyway. Cheers, aj
Attachment:
signature.asc
Description: Digital signature