> The problems that I forsee are:
>
> 1. Email is pretty easy to forge. Large scale forgery is a possibility.
Email can be used safely. All people need to do is send progsoc their reply
email address, and their voting preference. Set up an autoreply that would
assign a random unique number to each vote and include that number in the
reply. The voter will receive this (only if it is not forged) and will be
asked to forward this message back to progsoc where it will then be parsed to
grab the unique number and lookup who was assigned that number and flag that
person as having authenticated.
You can see why I said people can tell progsoc what their email address is and
this would be safe. This allows people to use an anonymous web interface to
vote without any security problems.
Ryan Heise rheise@nospam.socs.uts.edu.au
-----------------------------------------------------
"Don't anthropomorphize computers. They hate that."
-----------------------------------------------------