Historical archive

The system architecture

Historical archive

Published under: Stoltenberg's 2nd Government

Publisher Ministry of Local Government and Regional Development

The system architecture for the e-vote 2011 solution is documented in the form of a set of documents and plans.

The system architecture for the e-vote 2011 solution is documented in the form of a set of documents and plans (see appendix).

The system has three main subsystems:

  • eVote – client and server implementation and protocol for electronic voting
  • Administration – administration and setup of the eVote solution
  • eCounting of pVotes – counting of paper votes (scanning)

An overview of the system architecture and documentation about how these subsystems are connected may be found in the document “E-vote 2011 System Architecture – Overview, Interfaces and Deployment". Each of these subsystems has its own documentation which describes them in greater detail, such as documentation about the encryption protocol used for the electronic voting.

Security has been central in the development of the solution, and individual documentation of this has been drawn up for each subsystem and for the solution in its entirety. For further details, see the document “E-vote 2011 Security Architecture General Overview" for an overview of the security architecture in the solution as well as the individual documents for each subsystem.

In addition, detailed threat assessment analyses that consider each subsystem have been carried out. These analyses also contain system descriptions that supplement the other system documentation.

The documentation and the source code describe the system as it has been delivered today. Not all functions in the system will be used at the 2011 elections. The most important differences are:

  • Electronic voting will not be possible from polling stations (controlled environments)
  • The political parties themselves will not be able to enter electoral list proposals in the system (The municipalities will do this as before)
  • Electronic applications to be added to the electoral register by those who have lived abroad for over 10 years have not been utilized. (Applications may only be made by paper, as is the case today)

Access to the source code for the eVote and Administration subsystems can be found here. The source code is subject to a licence that is described here.

  • 01 System Architecture - Overview interfaces deployment
    PDF | ODF | Word

    01 Appendix - Operational environment drawing
    PDF

    01 Appendix - Overall architecture drawing
    PDF

  • 02 System Architecture - Administration system
    PDF | ODF | Word

  • 03 System Architecture - eVote
    PDF | ODF | Word

  • 04 System Architecture - eCounting of pVotes
    PDF | ODF | Word

  • 05 System Architecture - Audit and logging
    PDF | ODF | Word

    05 Appendix - Audit solution overview
    PDF

  • Security Architecture - Administration system v1.2
    PDF | ODF | Word 

  • Security Architecture - eCounting of pVotes v1.1
    PDF | ODF | Word

  • Security Architecture - General overview v1.1
    PDF | ODF | Word

  • Security Architecture - eVoting TOE
    PDF | ODF | Word

  • Security Target for e-counting of p-votes v1.0
    PDF | ODF | Word

  • Security Target for Election administration software v1.0
    PDF | ODF | Word 

  • Security Target for Electronic voting software
    PDF | ODF | Word

  • Threat assessment summary
    PDF | ODF | Word

  • Logs alerts definition on eVoting
    PDF | ODF | Word

  • RBAC on e-Voting (and reporting)
    PDF | ODF | Word