Internet Ballot Return is Not Like Other Online
Transactions
A common narrative around internet ballot return goes something like this: “I bank,
buy cars, and file taxes online. Why can’t I vote online?”
Voting in U.S. public elections is fundamentally different from other activities
performed on the internet. The reality is that several characteristics of voting –
regardless of method – differentiate it from nearly all other types of activities, and thus
warrant additional scrutiny before moving to an online context. Foremost amongst
these characteristics are:
1. Ballot secrecy: the accuracy of typical online transactions is transparent to
the participants. Customers can, for example, view their bank statements
and confirm their charges. However, the standard is higher for voting. Voters
should not
be able to
reveal their votes – even if they wish to do so. The
ability to disclose a vote would enable vote-selling and coercion. Voters
therefore cannot confirm that their votes have been correctly recorded and
counted in the same way that they verify bank statements and online
purchases.
2. Increased cybersecurity risks: while internet ballot return is arguably more
convenient, there remain unresolved cybersecurity risks associated with it.
These issues, which include malware and targeted denial-of-service (DOS)
risks, are addressed in the Remaining Challenges section below.
3. Fostering acceptance of outcomes: unlike most online activities, failed – or
just distrusted – elections can result in significant outcomes that affect
everyone. Even the most sensitive online transactions have much lower
stakes and usually impact only a few parties. Mistaken or fraudulent
submissions in filing taxes and other such transactions don’t result in civil
unrest, for example.
The first two of these speak to technical requirements of election administration in U.S.
public elections. They are artifacts of how elections get administered, and thus require
different types of technology than do other types of transactions.
To underscore these points, there is a fundamental distinction between the way U.S.
elections and other transactions work. In most transactions, the results of a failure are
traceable and often obvious to all parties involved in a transaction: a bank account