<div dir="ltr"><div dir="auto">The cryptography can be fixed by placing each race on its own separate ballot, but that's kind of a pain.</div><div dir="auto"><br></div><div>There's two different issues here. The first is we want to be able to release precinct-level data, so we can check it for unusual patterns. The second is we want to be sure none of the ballots are tampered with or destroyed in transit (after polls close). Precinct summability implies both (by letting us skip transit entirely), but isn't needed for either.</div><div><br></div><div>An easy way to prove ballots weren't tampered with in transport is WDS's receipt proposal. Print a receipt (exact copy) of each vote and put it in a box. Every ballot and receipt has a random serial number on it. After the election, the government can post ballots along with randomized serial numbers. Voters take a single random receipt from the box home with them when they leave and check it. Now if any ballot is tampered with or destroyed after leaving the precinct, some voter can prove it by showing their receipt. Assuming even a handful of voters check their receipts, any substantial fraud would be easy to detect. Ballot-box stuffing in transit can be prevented simply by reporting the total number of votes (turnout) by precinct.</div><div><div dir="auto"><br></div><div dir="auto">This can be paired with tabulating full ballot data by precinct, then releasing it after adding random noise (c.f. differential privacy) so we can check for any weird patterns in precinct-level data. For any non-chaotic rule (i.e. probably anything except STV), this noise will cancel out. This can be helped by using a weakly-summable method like proportional approval in moderately-sized districts (perhaps 4 representatives). Then people can calculate the results based on the precinct data at the end.</div></div></div><div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Tue, Aug 27, 2024 at 3:05 AM Kristofer Munsterhjelm <<a href="mailto:km-elmet@munsterhjelm.no" target="_blank">km-elmet@munsterhjelm.no</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><br>
On 2024-08-27 05:14, robert bristow-johnson wrote:<br>
> <br>
> <br>
> I was away from home in my previous reply and using my phone. About the other part ...<br>
> <br>
>> On 08/26/2024 11:44 AM EDT Closed Limelike Curves <<a href="mailto:closed.limelike.curves@gmail.com" target="_blank">closed.limelike.curves@gmail.com</a>> wrote:<br>
>><br>
> ...<br>
>> I think we really need to be much more careful about<br>
>> precinct-summability. If we're not careful, we're going to hit a<br>
>> massive wall as soon as we talk about multi-winner systems, which<br>
>> usually aren't precinct-summable.<br>
> <br>
> If you're doing PR (which I think is the purpose of RCV in<br>
> multi-winner election), then it's gonna be something like the Gregory<br>
> method with Droop quota and surplus votes transferred and runoffs<br>
> eliminating the weakest candidates. And it's not precinct summable.<br>
<br>
I think that's his argument.<br>
<br>
If Droop-proportional PR methods are desirable,<br>
and (strong) summability is desirable,<br>
and Droop proportionality is incompatible with strong summability,<br>
then we have to give something up.<br>
<br>
Which is it going to be?<br>
<br>
There may be ways to solve or circumvent the dilemma. I can think of these:<br>
<br>
- If it turns out that DPC is not actually incompatible with strong <br>
summability, and we can invent a strongly summable method of a <br>
reasonable order, then no problem.<br>
<br>
- We could use party list instead of candidate-centered PR, or relax the <br>
type of proportionality required and fill the gap with DMP or party <br>
list-based top-up seats. For instance, Forest's method described in <br>
<a href="https://rangevoting.org/PuzzQWEAns15.html" rel="noreferrer" target="_blank">https://rangevoting.org/PuzzQWEAns15.html</a> uses a weaker sense of <br>
proportionality ("color proportionality") and is summable.<br>
<br>
- We could use small district sizes and hope that/determine if weak <br>
summability is good enough. Weak summability says that if we hold the <br>
number of seats constant, then the method is summable, though it may be <br>
non-summable if we're allowed to vary the number of seats.<br>
<br>
- It's possible that PR isn't actually needed if the single-winner <br>
method is good enough; or that 2- or 3-seat districts suffice for the <br>
same reason. Robbie Robinette argues for Condorcet this way. <br>
<a href="https://medium.com/@robbierobinette/american-politicians-are-divided-but-the-people-are-not-9e944b90fc0a" rel="noreferrer" target="_blank">https://medium.com/@robbierobinette/american-politicians-are-divided-but-the-people-are-not-9e944b90fc0a</a> <br>
and <a href="https://betterchoices.vote/head-to-head-in-congress" rel="noreferrer" target="_blank">https://betterchoices.vote/head-to-head-in-congress</a>. This is related <br>
to the idea that proportionality of representatives isn't needed if <br>
their *decisions* are representative. I still would think that PR is <br>
good in a non-polarized system so reps with different points of view <br>
could discuss where they're coming from, but it's possible that the loss <br>
isn't as great as we think. (More on polarization here: <br>
<a href="https://link.springer.com/article/10.1007/s10602-022-09378-6" rel="noreferrer" target="_blank">https://link.springer.com/article/10.1007/s10602-022-09378-6</a> and <br>
<a href="https://arxiv.org/pdf/2306.07147" rel="noreferrer" target="_blank">https://arxiv.org/pdf/2306.07147</a>)<br>
<br>
<br>
>> Precinct verifiability is enough. In theory, it might be possible<br>
>> to drop the need for precinct verifiability, if you have some kind<br>
>> of end-to-end auditable procedure?<br>
> <br>
> In the U.S. serialized ballots ain't gonna cut it. Then we lose our vote by secret ballot.<br>
<br>
It might be possible. For instance, Warren Smith and Ron Rivest <br>
mentioned a method where voters cast three ballots, two of which cancel <br>
each other out, and then take the identifiers of some (but not all) of <br>
them to use to verify the results later. The idea is that you can then <br>
verify that the ballots you chose were counted, but people who are <br>
coercing your vote can't know if you gave them the ID to your real <br>
ballot or to one that cancels another out.<br>
<br>
Apparently, it's been found to be flawed if the ballot asks for results <br>
for multiple races. <br>
<a href="https://en.wikipedia.org/wiki/ThreeBallot#Broken_encryption" rel="noreferrer" target="_blank">https://en.wikipedia.org/wiki/ThreeBallot#Broken_encryption</a> But perhaps <br>
something similar can be devised.<br>
<br>
The main problem with cryptographic schemes, I think, is that they make <br>
the election process more opaque. The ThreeBallot scheme can at least be <br>
understood by ordinary voters; even so, it's harder to deal with than no <br>
encryption at all. But computer cryptography would be completely opaque. <br>
The people would have to trust the voting machines.<br>
<br>
Another human-legible method has apparently been tried in practice: <br>
<a href="https://en.wikipedia.org/wiki/Scantegrity#Use_in_public_elections" rel="noreferrer" target="_blank">https://en.wikipedia.org/wiki/Scantegrity#Use_in_public_elections</a><br>
<br>
-km<br>
----<br>
Election-Methods mailing list - see <a href="https://electorama.com/em" rel="noreferrer" target="_blank">https://electorama.com/em</a> for list info<br>
</blockquote></div></div>