10 \item Assume format string attacks allow you to read out the stack. What can you do

    11 \item Voice voting is the method of casting a vote in the `open air' for everyone

    11 	with this information? (Hint: Consider what is stored in the stack.)

    12 present to hear. Which of the following security requirements do paper ballots 

    13 satisfy better than voice voting? Check all that apply and give a brief explanation 

    14 for your decision.

    13 \item Assume you can crash a program remotely. Why is this a problem?

    16 \begin{itemize}

    17 \item[$\Box$] Integrity\bigskip\bigskip

    18 \item[$\Box$] Enfranchisement\bigskip\bigskip

    19 \item[$\Box$] Ballot secrecy\bigskip\bigskip

    20 \item[$\Box$] Voter authentication\bigskip\bigskip

    21 \item[$\Box$] Availability\bigskip\bigskip

    22 \end{itemize}

    18 \item (Optional) How can a system that separates between \emph{users} and \emph{root} be of any help with buffer overflow attacks?

    25 \item Explain how an attacker can use chain voting in order to influence the outcome of a 

    26 poll using paper ballots. 

    27 

    28 \item Which of the following mechanisms help with defending against chain voting? Check all 

    29 that apply. Give a brief reason for each defence that mitigates chain voting attacks.

    30 

    31 \begin{itemize}

    32 \item[$\Box$] Using a glass ballot box to make it clear there are no ballots in the box before the start of the election.

    33 \item[$\Box$] Distributing ballots publicly before the election.

    34 \item[$\Box$] Checking that a voter's ID (drivers license, passport) matches the voter.

    35 \item[$\Box$] Each ballot has a unique ID. When a voter is given a ballot, the ID is recorded. When the voter submits his or her ballot, this ID is checked against the record.

    36 \end{itemize}

    37 

    38 \item What is the main difference between online banking and e-voting? 

    39 (Hint: Why is the latter so hard to get secure?)

    40