siv-org / siv

Secure Internet Voting protocol
https://siv.org
Other
13 stars 9 forks source link

Risks associated with Firebase dependency #215

Open dglittle opened 3 months ago

dglittle commented 3 months ago

Google’s Firebase is depended upon for data storage and transmission

One could imagine such data being deleted, modified, or lost. Though this might be recoverable (is it?) it’s still not something covered in a threat model.

One could also imagine this service ignoring requests from particular IP addresses, again, with some intent to block based on political preference. It should be noted that IP addresses often have some relation to geographic location, a rough proxy for address.

One could even imagine this happening without SIV or others knowing about it; Firebase could just provide one version of the public log to the voter (with their vote included), and another to everyone else.

[...]

The goal is not to cast aspersions on the vendor, but to point out that the system is fundamentally trusting them in a way that might not be safe in the case of nation-state level adversaries.

Originally posted by @mspecter in https://github.com/siv-org/siv/issues/195

arianabuilds commented 2 months ago

Entry Summary for HACK SIV @ DEF CON 2024

Thanks again for participating! This submission earned $340.14 from SIV and $91.45 from the Public Vote, for a total of $431.59.

Here's what we noted in our evaluation:

What's interesting about this submission

What takes away from it

Issue to track getting paid: https://github.com/siv-org/hack.siv.org/issues/11