Abstract
We describe how we first formally encoded the English-language Parliamentary Act for the Hare-Clark Single Transferable Vote-counting scheme used in the Australian state of Tasmania into higher-order logic, producing SPECHOL. Based on this logical specification, we then encoded an SML program to count ballots according to this specification inside the interactive theorem prover HOL4, giving us IMPHOL. We then manually transliterated the program as a real SML program IMP. We are currently verifying that the formalisation of the implementation implies the formalisation of the specification: that is, we are using the HOL4 interactive theorem prover to prove the implication IMPHOL \(\rightarrow \) SPECHOL.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Notes
- 1.
If a large number of ballots are generated naĂ¯vely, they become spread too evenly between the candidates. This results in no candidate being elected until the final stages of the count, which is unrealistic. The candidates were given random popularity ratings to produce uneven distributions of ballots to avoid this issue.
References
AAP. AEC costs WA Senate election at \({\$}\)20M, February 2014. http://www.sbs.com.au/news/article/2014/02/25/aec-costs-wa-senate-election-20m
Abate, P., Dawson, J., Goré, R., Gray, M., Norrish, M., Slater, A.: Formal methods applied to electronic voting systems (2003). http://users.rsise.anu.edu.au/~rpg/EVoting/
ACTEC. Hare-Clark electoral system (2015). http://www.elections.act.gov.au
Arrow, K.J.: A difficulty in the concept of social welfare. J. Polit. Econ. 58(4), 328–346 (1950)
Beckert, B., Börmer, T., Goré, R., Kirsten, M., Meumann, T.: Reasoning about vote counting schemes using light-weight and heavy-weight methods. In: VERIFY 2014: Workshop Associated with IJCAR 2014 (2014)
Beckert, B., GorĂ©, R., SchĂ¼rmann, C., Bormer, T., Wang, J.: Verifying voting schemes. J. Inf. Sec. Appl. 19(2), 115–129 (2014)
Benaloh, J., Moran, T., Naish, L., Ramchen, K., Teague, V.: Shuffle-sum: coercion-resistant verifiable tallying for STV voting. IEEE Trans. Inf. Forensics Secur. 4(4), 685–698 (2009)
Bennett, S.: Inglis Clark’s other contribution: a critical analysis of the Hare-Clark voting system. http://samuelgriffith.org.au/docs/vol23/vol23chap5.pdf
Cochran, D.: Formal specification and analysis of danish and irish ballot counting algorithms. Ph.D. thesis, ITU (2012)
Cochran, D., Kiniry, J.R.: Formal model-based validation for tally systems. In: Heather, J., Schneider, S., Teague, V. (eds.) Vote-ID 2013. LNCS, vol. 7985, pp. 41–60. Springer, Heidelberg (2013)
DeYoung, H., SchĂ¼rmann, C.: Linear logical voting protocols. In: Kiayias, A., Lipmaa, H. (eds.) VoteID 2011. LNCS, vol. 7187, pp. 53–70. Springer, Heidelberg (2012)
Farrell, D.M., McAllister, I.: The Australian Electoral System: Origins, Variations and Consequences. University of New South Wales Press, Sydney (2006)
Gordon, M.J.C., Melham, T.F.: Introduction to HOL: a theorem proving environment for higher order logic. CUP (1993)
Goré, R., Meumann, T.: Proving the monotonicity criterion for a plurality vote-counting program as a step towards verified vote-counting. In: 6th International Conference on Electronic Voting: Verifying the Vote, pp. 1–7 (2014)
Hill, I.D., Wichmann, B.A., Woodall, D.R.: Algorithm 123: single transferable vote by Meek’s method. Comput. J. 30, 277–281 (1987)
Kumar, R., Myreen, M.O., Norrish, M., Owens, S.: CakeML: a verified implementation of ML. In: POPL, pp. 179–192 (2014)
Newman, T.: Hare-Clark system (2004). http://www.utas.edu.au/library/companion_to_tasmanian_history/H/Hare-Clark%20system.htm
NSWEC. Enrolment statistics. New South Wales Electoral Commission (2014). http://www.elections.nsw.gov.au/enrol_to_vote/enrolment_statistics
Poppleton, M.: The single transferable voting system: functional decomposition in formal specification. In: IWFM (1997)
Community Z tools. http://czt.sourceforge.net/. Accessed 2 June 2015
TEC. Annual report 2013–2014. Tasmanian Electoral Commission (2013)
Teague, V., Halderman, J.A.: Thousands of NSW election online votes open to tampering (2015). http://theconversation.com
Wen, R.: Online elections in Terra Australis. Ph.D. thesis, University of New South Wales (2010)
Acknowledgements
We are extremely grateful to the many suggestions for improvement from the reviewers of VoteID 2015. We have tried to take every comment into account, and have even used some of the suggested prose verbatim.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2015 Springer International Publishing Switzerland
About this paper
Cite this paper
Dawson, J.E., Goré, R., Meumann, T. (2015). Machine-Checked Reasoning About Complex Voting Schemes Using Higher-Order Logic. In: Haenni, R., Koenig, R., Wikström, D. (eds) E-Voting and Identity. Vote-ID 2015. Lecture Notes in Computer Science(), vol 9269. Springer, Cham. https://doi.org/10.1007/978-3-319-22270-7_9
Download citation
DOI: https://doi.org/10.1007/978-3-319-22270-7_9
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-22269-1
Online ISBN: 978-3-319-22270-7
eBook Packages: Computer ScienceComputer Science (R0)