I started-out certifying systems as-secure as underlying parts. Using mathematical logic for autonomous protocol verification, switching to manual cryptographic techniques for better precision, with passion (but little patience) for proven secure executables, wrote best practice manuals on each.

As prerequisite, frequently pondered, what is this? For twenty-one years I've wondered about influence-freedom-legitimacy. I recently found my answer; built voting system delivering. Bigger picture, agentic DAO require strong governance controls. Now I'm thinking about organisational democracy:

• Stakeholder influence optimised for personal gain,
• legitimacy of decision-making proven cryptographically,
• freedom of confidential expression.

Attorney-client privilege, doctor-patient confidentiality, right for spousal privacy; society needs protecting. Europe abolishing confidentiality of business dealings. America already tried. There's rumours about China/Russia. Fix: End-to-end encryption, cloud performance, hardware-based identity (BritCard compatible).

Hardware-based identity. I cut my teeth on hardware: Stealing cars without keys (on Top Gear) and unveiling anonymous trusted execution systems; early kit didn't work, modern stuff provides cryptographic guarantees, even when operators are compromised (by insiders, hackers, or simply because they're malicious criminals).

Decentralised stakeholders. David Chaum excited me about crypto, developing cryptographic fundamentals, long before their mainstream. We were trying to establish defining principles, replicating ballot-secrecy rights for digital society, creating stronger forms of legitimacy, seeking fraud eradication rather than minimisation.

My thoughts on influence-freedom-legitimacy are now ready for prime time.

End-to-end encryption. I inadvertently broke internet encryption whilst optimising for cloud performance — a complete break, I could have rewritten financial markets (only that's massively illegal, so I helped Oracle fix) — I've since helped standardise TLS, great tech, almost obsolete?

National and international tensions are simmering, cyberwarfare, espionage and criminals rampant, Siemens expects eleven trillion damage this year. "Encryption is your friend," announces US Cybersecurity and Infrastructure Security Agency (CISA). In wake of spies capturing secrets, "CISA strongly urges [use of] only end-to-end encrypted communications" (Dec'24). NSA infamously revealing internet encryption doesn't deliver.

I foresee Layer Zero slotting into TCP/IP, below Web 2.0 and Web3, bringing governance controls, protected by end-to-end encryption, digital society built atop, intrigued? Get in touch.

See also: Google Scholar, DBLP, AMiner, CS Authors, Semantic Scholar, ORCID

Unpublished

• Ben Smyth (2025) Score-based decisions: Influence, freedom, legitimacy.
• Ben Smyth (2025) Hooking up with Fiat-Shamir.
• Ben Smyth (2025) Annotated biography: Free & fair elections.
• Ben Smyth (2022) Overcoming Arrow's impossibility: Honeybee sidestep.
• Ben Smyth (2019) TLS 1.3 for engineers: An exploration of the TLS 1.3 specification and OpenJDK's Java implementation. arXiv Technical Report 1904.02148.

Journal Articles

• Ben Smyth & Michael R. Clarkson (2022) Surveying definitions of election verifiability. Information Processing Letters, vol. 177.
• Ben Smyth (2021) Ballot secrecy: Security definition, sufficient conditions, and analysis of Helios. Journal of Computer Security, 29(6), pp. 551-611.
• Ben Smyth (2020) Surveying global verifiability. Information Processing Letters, vol. 163.
• Ben Smyth & Yoshikazu Hanatani (2019) Non-malleable encryption with proofs of plaintext knowledge and applications to voting. International Journal of Security and Networks, 14(4), pp. 191-204.
• Maxime Meyer & Ben Smyth (2019) Exploiting re-voting in the Helios election system. Information Processing Letters, vol. 143, pp. 14-19.
• Bruno Blanchet & Ben Smyth (2018) Automated reasoning for equivalences in the applied pi calculus with barriers. Journal of Computer Security, 26(3), pp. 367-422.
• Elizabeth A. Quaglia & Ben Smyth (2018) Secret, verifiable auctions from elections. Theoretical Computer Science, vol. 730, pp. 44-92.
• Ben Smyth, Mark D. Ryan & Liqun Chen (2015) Formal analysis of privacy in Direct Anonymous Attestation schemes. Science of Computer Programming, 111(2).
• Véronique Cortier & Ben Smyth (2013) Attacking and fixing Helios: An analysis of ballot secrecy. Journal of Computer Security, 21(1), pp. 89-148.

Conference Papers

• Peter B. Rønne, Peter Y. A. Ryan & Ben Smyth (2021) Cast-as-Intended: A Formal Definition and Case Studies. In FC'21: 25th International Conference on Financial Cryptography and Data Security, LNCS 12676, Springer, pp. 251-262.
• Ashley Fraser, Elizabeth A. Quaglia & Ben Smyth (2019) A critique of game-based definitions of receipt-freeness for voting. In ProvSec'19: 13th International Conference on Provable and Practical Security, LNCS 11821, Springer, pp. 189-205.
• Elizabeth A. Quaglia & Ben Smyth (2018) Authentication with weaker trust assumptions for voting systems. In AFRICACRYPT'18: 10th International Conference on Cryptology in Africa, LNCS 10831, Springer, pp. 322-343.
• Tom Chothia, Joeri de Ruiter & Ben Smyth (2018) Modelling and Analysis of a Hierarchy of Distance Bounding Attacks. In USENIX Security'18: 27th USENIX Security Symposium, USENIX Association.
• Ben Smyth (2018) Verifiability of Helios Mixnet. In Voting'18: 3rd Workshop on Advances in Secure Electronic Voting, LNCS 10958, Springer, pp. 247-261.
• Maxime Meyer, Elizabeth A. Quaglia & Ben Smyth (2018) Attacks against GSMA's M2M Remote Provisioning. In FC'18: 22nd International Conference on Financial Cryptography and Data Security, LNCS 10957, Springer, pp. 243-252. (First appeared at Black Hat Europe 2017.)
• Jérémie Leguay, Georgios S. Paschos, Elizabeth A. Quaglia & Ben Smyth (2017) CryptoCache: Network Caching with Confidentiality. In ICC'17: IEEE International Conference on Communications, IEEE Computer Society.
• Bruno Blanchet & Ben Smyth (2016) Automated reasoning for equivalences in the applied pi calculus with barriers. In CSF'16: 29th Computer Security Foundations Symposium, IEEE Computer Society, pp. 310-324.
• Ben Smyth, Yoshikazu Hanatani & Hirofumi Muratani (2015) NM-CPA secure encryption with proofs of plaintext knowledge. In IWSEC'15: 10th International Workshop on Security, LNCS 9241, Springer.
• Tom Chothia, Ben Smyth & Chris Staite (2015) Automatically Checking Commitment Protocols in ProVerif without False Attacks. In POST'15: 4th Conference on Principles of Security and Trust, LNCS 9036, Springer.
• Adam McCarthy, Ben Smyth & Elizabeth A. Quaglia (2014) Hawk and Aucitas: e-auction schemes from the Helios and Civitas e-voting schemes. In FC'14: 18th International Conference on Financial Cryptography and Data Security, LNCS 8437, Springer, pp. 51-63.
• Ben Smyth & Alfredo Pironti (2013) Truncating TLS Connections to Violate Beliefs in Web Applications. In WOOT'13: 7th USENIX Workshop on Offensive Technologies, USENIX Association. (First appeared at Black Hat USA 2013.)
• Ben Smyth & David Bernhard (2013) Ballot secrecy and ballot independence coincide. In ESORICS'13: 18th European Symposium on Research in Computer Security, LNCS 8134, Springer, pp. 463-480.
• Fangming Zhao, Yoshikazu Hanatani, Yuichi Komano, Ben Smyth, Satoshi Ito & Toru Kambayashi (2012) Secure Authenticated Key Exchange with Revocation for Smart Grid. In ISGT'12: 3rd IEEE Power & Energy Society Conference on Innovative Smart Grid Technologies, IEEE Computer Society.
• Dalia Khader, Ben Smyth, Peter Y. A. Ryan & Feng Hao (2012) A Fair and Robust Voting System by Broadcast. In EVOTE'12: 5th International Conference on Electronic Voting, Lecture Notes in Informatics 205, Gesellschaft für Informatik, pp. 285-299.
• David Bernhard, Véronique Cortier, Olivier Pereira, Ben Smyth & Bogdan Warinschi (2011) Adapting Helios for provable ballot privacy. In ESORICS'11: 16th European Symposium on Research in Computer Security, LNCS 6879, Springer, pp. 335-354.
• Véronique Cortier & Ben Smyth (2011) Attacking and fixing Helios: An analysis of ballot secrecy. In CSF'11: 24th Computer Security Foundations Symposium, IEEE Computer Society, pp. 297-311.
• Ben Smyth, Mark D. Ryan & Liqun Chen (2011) Formal analysis of anonymity in ECC-based Direct Anonymous Attestation schemes. In FAST'11: 8th International Workshop on Formal Aspects of Security and Trust, LNCS 7140, Springer, pp. 245-262.
• Steve Kremer, Mark D. Ryan & Ben Smyth (2010) Election verifiability in electronic voting protocols. In ESORICS'10: 15th European Symposium on Research in Computer Security, LNCS 6345, Springer, pp. 389-404.
• Ben Smyth, Mark D. Ryan, Steve Kremer & Mounira Kourjieh (2010) Towards automatic analysis of election verifiability properties. In ARSPA-WITS'10: Joint Workshop on Automated Reasoning for Security Protocol Analysis and Issues in the Theory of Security, LNCS 6186, Springer, pp. 165-182.
• Stéphanie Delaune, Mark D. Ryan & Ben Smyth (2008) Automatic verification of privacy properties in the applied pi-calculus. In IFIPTM'08: 2nd Joint iTrust and PST Conferences on Privacy, Trust Management and Security, International Federation for Information Processing (IFIP) 263, Springer, pp. 263-278.
• Ben Smyth, Mark D. Ryan & Liqun Chen (2007) Direct Anonymous Attestation (DAA): Ensuring privacy with corrupt administrators. In ESAS'07: 4th European Workshop on Security and Privacy in Ad hoc and Sensor Networks, LNCS 4572, Springer, pp. 218-231.

Chapters in Books

• Mark D. Ryan & Ben Smyth (2011) Applied pi calculus. Chapter in Véronique Cortier & Steve Kremer (editors) Formal Models and Techniques for Analyzing Security Protocols, IOS Press.

Thesis

• Ben Smyth (2011) Formal verification of cryptographic protocols with automated reasoning. PhD thesis, School of Computer Science, University of Birmingham.

Edited Proceedings

• Mark D. Ryan, Ben Smyth & Guilin Wang, editors (2012) Proceedings of the 8th International Conference on Information Security Practice and Experience (ISPEC'12). LNCS 7232, Springer.

Miscellaneous

• Ben Smyth (2024) Championing tally-then-decrypt secrecy.
• Ben Smyth, Steven Frink & Michael R. Clarkson (2021) Election Verifiability: Cryptographic Definitions and an Analysis of Helios, Helios-C, and JCJ. Cryptology ePrint Archive Technical Report 2015/233.
• Ben Smyth (2020) Mind the Gap: Individual- and universal-verifiability plus cast-as-intended don't yield verifiable voting systems. Cryptology ePrint Archive Technical Report 2020/1054.
• Thomas Haines & Ben Smyth (2020) Surveying definitions of coercion resistance. Cryptology ePrint Archive Technical Report 2019/822.
• Ben Smyth (2019) Athena: A verifiable, coercion-resistant voting system with linear complexity. Cryptology ePrint Archive Technical Report 2019/761.
• Maxime Meyer, Elizabeth A. Quaglia & Ben Smyth (2019) An Overview of GSMA's M2M Remote Provisioning Specification. arXiv Technical Report 1906.02254.
• Ben Smyth (2018) A foundation for secret, verifiable elections. Cryptology ePrint Archive Technical Report 2018/225.
• Elizabeth A. Quaglia & Ben Smyth (2018) A short introduction to secrecy and verifiability for elections. arXiv Technical Report 1702.03168.
• Ben Smyth (2018) First-past-the-post suffices for ranked voting.
• Bruno Blanchet, Ben Smyth, Vincent Cheval & Marc Sylvestre (2018) ProVerif 2.00: Automatic Cryptographic Protocol Verifier, User Manual and Tutorial. Originally appeared as Bruno Blanchet and Ben Smyth (2011) ProVerif 1.85: Automatic Cryptographic Protocol Verifier, User Manual and Tutorial.
• Ben Smyth & Alfredo Pironti (2015) Truncating TLS Connections to Violate Beliefs in Web Applications. INRIA Technical Report hal-01102013.
• Ben Smyth (2014) Forget Me Do: Empowering user privacy on social network sites. Forget Me Do Limited Technical Report 2014/10.
• David Bernhard & Ben Smyth (2014) Ballot secrecy with malicious bulletin boards. Cryptology ePrint Archive Technical Report 2014/822.
• Ben Smyth & David Bernhard (2014) Ballot secrecy and ballot independence: definitions and relations. Cryptology ePrint Archive Technical Report 2013/235.
• Ben Smyth (2012) Replay attacks that violate ballot secrecy in Helios. Cryptology ePrint Archive Technical Report 2012/185.
• Ben Smyth & Véronique Cortier (2011) A note on replay attacks that violate privacy in electronic voting schemes. INRIA Technical Report RR-7643.
• Bruno Blanchet & Ben Smyth (2011) ProVerif 1.85: Automatic Cryptographic Protocol Verifier, User Manual and Tutorial.