Vol. 1 No. 2 (2025)

Articles

Design and Threat Modeling of a Permissioned Blockchain Voting System for Resource-Constrained Democracies: A Case Study of Nigeria

Published 2025-11-22

  • Prince Onebieni Ana
    • ,
  • Nonye Emmanuael Maidoh
    • ,
  • Augustine Chidiebere Onuora
    • ,
  • Obiora Emeka Ikedilo
    • ,
  • Anthony Obogo Otiko
    • ,
  • Joseph Osahon Idemduia
    • ,
  • Favour Uzoh Umennakenyi
    • ,
  • Ogbonna Umeh Inya

Prince Onebieni Ana
Computer Science Department, University of Cross River, Calabar P.M.B. 1123, Nigeria

Nonye Emmanuael Maidoh
Computer Science Department, Akanu Ibiam Federal Polytechnic Unwana, Unwana P.M.B. 1007, Nigeria

Augustine Chidiebere Onuora
Computer Science Department, Akanu Ibiam Federal Polytechnic Unwana, Unwana P.M.B. 1007, Nigeria

Obiora Emeka Ikedilo
Computer Science Department, Akanu Ibiam Federal Polytechnic Unwana, Unwana P.M.B. 1007, Nigeria

Anthony Obogo Otiko
Computer Science Department, University of Cross River, Calabar P.M.B. 1123, Nigeria

Joseph Osahon Idemduia
Computer Science Department, Akanu Ibiam Federal Polytechnic Unwana, Unwana P.M.B. 1007, Nigeria

Favour Uzoh Umennakenyi
Computer Science Department, Akanu Ibiam Federal Polytechnic Unwana, Unwana P.M.B. 1007, Nigeria

Ogbonna Umeh Inya
Computer Science Department, Akanu Ibiam Federal Polytechnic Unwana, Unwana P.M.B. 1007, Nigeria

DOI: https://doi.org/10.64797/ijcs.v1i2.110

Abstract

This paper presents the design and threat modeling of a permissioned blockchain voting system tailored for resource-constrained democracies, using Nigeria as a case study. We propose a hybrid on-chain/off-chain architecture based on Proof of Authority (PoA) consensus to ensure energy efficiency, scalability, and civic accountability in low-connectivity environments that stores vote hashes, vote timestamps, and validator signatures on-chain while keeping biometric metadata and device logs off-chain using decentralized storage to reduce bandwidth. The framework integrates Nigeria's National Identity Management Commission (NIMC) biometric database for cryptographic voter verification and employs smart contracts to automate vote validation. A STRIDE (Spoofing, Tampering, Repudiation, Information disclosure, Denial of service, and Elevation of privilege)-based threat model is applied to identify risks such as spoofing, tampering, and denial-of-service attacks, repudiation, information disclosure, and elevation of privilege in politically volatile contexts. Unlike existing blockchain voting models developed for high-capacity states, this system is context-aware, designed for 40% internet penetration, infrastructural instability, and institutional distrust. The study adopts Design Science Research (DSR) methodology to build, demonstrate, and evaluate the artifact. We validate the system's feasibility by simulating network degradation and threat scenario injection on a Hyperledger Fabric testnet. Using Design Science Research (DSR), we built a Hyperledger Fabric testnet with 10 validator nodes and simulated 500 votes under 10–80% connectivity. Findings show that a locally governed, hybrid blockchain model can enhance electoral integrity while remaining feasible in developing democracies. This work contributes to the digital democracy discourse by introducing a context-aware, legally grounded blockchain voting model for low-connectivity democracies.

Keywords

Blockchain Voting, Permissioned Ledger, Proof of Authority, Threat Modeling, Electoral Integrity, Biometric, Design Science Research, Hyperledger Fabric

PDF

References

  1. [1] Norris, P., 2014. Why Electoral Integrity Matters. Cambridge University Press: Cambridge, UK. DOI: https://doi.org/10.1017/CBO9781107280861
  2. [2] YIAGA Africa, 2024. Electoral Trust Restored? Nigeria's Electoral Process One Year after the 2023 General Election. Available from: https://yiaga.org/yiaga-africa-reviews-improvements-in-electoral-reforms-one-year-after-the-2023-general-elections/ (cited 29 April 2024).
  3. [3] Independent National Electoral Commission (INEC), 2022. Electoral Act 2022: Including INEC Regulations and Guidelines for the Conduct of Elections (2022). Independent National Electoral Commission (INEC): Abuja, Nigeria. Available from: https://placng.org/i/wp-content/uploads/2022/07/Electoral-Act-2022.pdf
  4. [4] Afrobarometer, 2023. AD598: Nigerians want competitive elections but don’t trust the electoral commission. Available from: https://www.afrobarometer.org/publication/ad598-nigerians-want-competitive-elections-but-dont-trust-the-electoral-commission/ (cited 29 April 2024).
  5. [5] Onuora, A.C., Ana, P., Otiko, A.O., et al., 2024. Blockchain Technology: An Overview of a Decentralized Network. Available from: https://www.researchgate.net/publication/383463868_Blockchain_Technology_An_Overview_of_a_Decentralized_Network (cited 29 April 2024).
  6. [6] Independent National Electoral Commission (INEC), 2024. Report of the 2023 General Election. Independent National Electoral Commission (INEC): Abuja, Nigeria. Available from: https://inecnigeria.org/wp-content/uploads/2024/02/2023-GENERAL-ELECTION-REPORT-1.pdf
  7. [7] Ewepu, G., 2024. Restore Confidence of Nigerians with Definitive Electoral Reforms, Yiaga Africa Tells FG. Available from: https://www.vanguardngr.com/2024/04/restore-confidence-of-nigerians-with-definitive-electoral-reforms-yiaga-africa-tells-fg/ (cited 29 April 2024).
  8. [8] Essex, A., Clark, J., Adams, C., 2010. Aperio: High Integrity Elections for Developing Countries. In: Chaum, D., Jakobsson, M., Rivest, R.L., et al. (Eds.). Towards Trustworthy Elections: New Directions in Electronic Voting. Springer: Berlin/Heidelberg, Germany. pp. 388–401. DOI: https://doi.org/10.1007/978-3-642-12980-3_24
  9. [9] Arhin Jnr, P.K., Aggrey, G., Asante, M., et al., 2024. Design and Implementation of a Secure and Transparent E-Voting System Using Blockchain Technology and Hybrid Encryption; the Case of Africa. In Proceedings of the 2024 IEEE SmartBlock4Africa, Accra, Ghana, 30 September–4 October 2024; pp. 1–9. DOI: https://doi.org/10.1109/SmartBlock4Africa61928.2024.10779535
  10. [10] Clarke, D., Martens, T., 2016. E-Voting in Estonia. arXiv preprint. arXiv:1606.08654. DOI: https://doi.org/10.48550/arXiv.1606.08654
  11. [11] Finnan, D., 2018. Sierra Leone Tests Blockchain Technology for Tallying Election Results. Available from: https://www.rfi.fr/en/africa/20180315-sierra-leone-tests-blockchain-technology-tallying-election-results (cited 29 April 2024).
  12. [12] Kim, H., Kim, K.E., Park, S., et al., 2021. E-Voting System Using Homomorphic Encryption and Blockchain Technology to Encrypt Voter Data. arXiv preprint. arXiv:2111.05096. DOI: https://doi.org/10.48550/arXiv.2111.05096
  13. [13] Ojakorotu, V., Erameh, N.I., Chukwudi, C.E., 2023. The 2019 General Elections, Digital Technology and the Democratization Process in Nigeria. Gender and Behaviour. 21(1), 12345–12356. Available from: https://hdl.handle.net/10520/ejc-genbeh_v21_n1_a39
  14. [14] WIRED, 2023. How to Digitize an Entire Government. Available from: https://www.wired.com/story/have-a-nice-future-podcast-25/ (cited 29 April 2024).
  15. [15] Atzori, M., 2017. Blockchain Technology and Decentralized Governance: Is the State Still Necessary? Journal of Governance & Regulation. 6(1), 45–62. DOI: https://doi.org/10.22495/jgr_v6_i1_p5
  16. [16] Madubuike, C.E., Onuora, A.C., Eguzo, C.I., et al., 2019. SMS-Based Voting System for Crisis Prone Areas in Nigeria. Journal of Computer Science and Its Application. 26(2), 77–83. DOI: https://doi.org/10.4314/jcsia.v26i2.8
  17. [17] Mwansa, P., Kabaso, B., 2024. Improving Election Integrity: Blockchain and Byzantine Generals Problem Theory in Vote Systems. Electronics. 13(10), 1853. DOI: https://doi.org/10.3390/electronics13101853
  18. [18] Idowu-Bismark, O., Oshin, O., Adetiba, E., 2025. Development of a Blockchain-Based Electronic Voting System Utilizing National Identification Number. International Journal of Reconfigurable and Embedded Systems. 14(3). Available from: https://ijres.iaescore.com/index.php/IJRES/article/view/21545
  19. [19] National Institute of Standards and Technology (NIST), 2012. Guide for Conducting Risk Assessments. National Institute of Standards and Technology (NIST): Gaithersburg, MD, USA.
  20. [20] Onuora, A.C., Gift-Adene, A.U., Maidoh, N.E., et al., 2024. Blockchain Smart Contract: Use Cases and Applications. In Proceedings of the 2nd International Conference of the School of Science, Unwana, Nigeria, 3–5 April 2024. Available from: https://www.researchgate.net/publication/380544683_Blockchain_Smart_Contract_Use_cases_and_Applications
  21. [21] Adeniyi, J.K., Ajagbe, S.A., Adeniyi, E.A., et al., 2024. A Biometrics-Generated Private/Public Key Cryptography for a Blockchain-Based E-Voting System. Egyptian Informatics Journal. 25, 100447. DOI: https://doi.org/10.1016/j.eij.2024.100447
  22. [22] Shostack, A., 2014. Threat Modeling: Designing for Security. Wiley: Indianapolis, IN, USA.
  23. [23] Peffers, K., Tuunanen, T., Rothenberger, M.A., et al., 2007. A Design Science Research Methodology for Information Systems Research. Journal of Management Information Systems. 24(3), 45–77. DOI: https://doi.org/10.2753/MIS0742-1222240302
  24. [24] Nigerian Communications Commission (NCC), 2024. 2023 Subscriber/Network Performance Report: Policy, Competition and Economic Analysis Department. Nigerian Communications Commission (NCC): Abuja, Nigeria. Available from: https://www.ncc.gov.ng/media/1473/view
  25. [25] World Bank, 2023. Access to electricity (% of population)—Nigeria. Available from: https://data.worldbank.org/indicator/EG.ELC.ACCS.ZS?locations=NG (cited 29 April 2024).
  26. [26] Hyperledger Fabric, 2023. A Blockchain Platform for the Enterprise. Available from: https://hyperledger-fabric.readthedocs.io (cited 29 April 2024).
  27. [27] YIAGA Africa, 2020. 2019 Elections: Opportunity Lost? YIAGA AFRICA Watching Report on the 2019 Presidential Election. YIAGA Africa: Abuja, Nigeria. Available from: https://watchingthevote.org/wp-content/uploads/2022/06/Opportunity-Lost-YIAGA-AFRICA-2019-ELECTIONS-OBSERVATION-REPORT-1-compressed-1.pdf
  28. [28] Suleiman, Q., 2024. INEC gives details of IReV failure during 2023 presidential election. Available from: https://www.premiumtimesng.com/news/top-news/671063-inec-gives-details-of-irev-failure-during-2023-presidential-election.html (cited 29 April 2024).