This work proposes a distributed trust mechanism based on secure online private voting to replace centralized authorization, which traditionally relies on high-privilege accounts and is thus vulnerable to single points of failure that can lead to misuse or leakage of sensitive resources. The proposed system employs a privacy-preserving voting protocol resilient against arbitrary computational attacks, enabling delegated voting, rapid emergency response, and selective auditability while ensuring perpetual privacy, efficiency, and accountability. Experimental results demonstrate that the system operates efficiently on commodity hardware, fulfilling the security and performance requirements for practical deployment.

In traditional access control policies, every access granted and administrative account introduces an additional vulnerability, as a corruption of a high-privilege user can compromise several sensitive files. Privocracy is an access control mechanism that minimizes the need to attribute high privileges by triggering a secure e-voting procedure to run commands that require using sensitive resources. With Privocracy an organization can distribute trust in resource access, minimizing the system vulnerabilities from single points of failure, all while maintaining the high flexibility of discretionary access control policies. The Privocracy voting mechanism achieves everlasting privacy, ensuring votes remain confidential regardless of an adversary's computational power, while addressing the dependability requirements of a practical and secure system. The procedure incorporates useful features such as vote delegation to reduce voter fatigue, rapid voting rounds to enable quick action during emergencies, and selective vote auditing for application-level accountability. Our experimental results demonstrate that Privocracy processes votes efficiently and can be deployed on commodity hardware.