A trust and reputation-based access control model for virtual organizations

Arasteh, Majid; Amini, Morteza; Jalili, Rasool

doi:10.1109/iscisc.2012.6408204

Cited by 5 publications

(7 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Comprising the value representation, seventeen articles presented the trust or reputation value in continuous format, that is, included in a predefined range [8,17], while only two works presented the binary method, and one article was not identified (NI) [2]. The binary format is used in PathTrust [7] to represent feedback, which can be positive or negative, and in Arasteh et al [24] trust value under binary is used in the access control.…”

Section: Resultsmentioning

confidence: 99%

“…Through the analyzed articles in the systematic review [2,4,5,7,8,11,[17][18][19][20][21][22][23][24][25][26][27][28][29][30][31][32], and the review articles [1,6,[13][14][15]33] that presented classification characteristics for reputation and trust system in general, a taxonomy was designed to classify and compare the works that are applied in Virtual Organization's context.…”

Section: The Proposed Taxonomymentioning

confidence: 99%

See 1 more Smart Citation

A Classification Taxonomy for Reputation and Trust Systems Applied to Virtual Organizations

Bilecki

Fiorese

2017

Collaboration in a Data-Rich World

View full text Add to dashboard Cite

Online interactions between unknown parties are increasingly common. This is particularly exemplary in Virtual Organizations (VO). A VO is understood as a permanent or temporary alliance of enterprises that share their resources and skills to achieve specific business goals (collaboration opportunity). In this sense, the lack of trust between partners is seen as an hindrance to the VO's operation. Thus, reputation systems can be applied to trust establishment and management among VO's partners. Therefore, this paper presents a taxonomy to classify and compare trust and reputation systems applied to VO's context. The taxonomy is based on literature studies regarding characteristics observed through a systematic review process. In order to evaluate the proposed taxonomy, it was applied to trust and reputation systems obtained through a systematic review process. Finally, according the presented results, it is possible to note a gap concerning reputation systems applied to the context of VO and Cloud Computing integration.

show abstract

Section: Resultsmentioning

confidence: 99%

Section: The Proposed Taxonomymentioning

confidence: 99%

A Classification Taxonomy for Reputation and Trust Systems Applied to Virtual Organizations

Bilecki

Fiorese

2017

Collaboration in a Data-Rich World

View full text Add to dashboard Cite

show abstract

“…A confiança também auxilia no controle de acesso a recursos computacionais ou informações em que os mecanismos tradicionais de controle de acesso não são empregados, devido à dinamicidade da OV e a interação com usuários desconhecidos [39]. Weng et al [40] empregam o conceito de confiança na troca de arquivos confidenciais e destacam que o relacionamento de confiança entre os parceiros é a base para a colaboração.…”

Section: Organizações Virtuais E Confiançaunclassified

Uma Revisão Sistemática sobre Abordagens em Organizações Virtuais no Contexto de Confiança, Reputação e Computação em Nuvem

Bilecki

Hounsell

Fiorese

2017

RITA

View full text Add to dashboard Cite

AsOrganizaçõesVirtuaisrepresentamumaproeminenteformadecola- boração na qual um conjunto de empresas compartilham habilidades, competências e riscos para atender um objetivo em comum. Algumas preocupações surgem durante a colaboração, como, por exemplo, questões relativas a confiança, reputação e o uso de recursos tecnológicos. A confiança e a reputação nas OVs visam minimizar o risco ao lidar com entidades desconhecidas. Já o uso de recursos tecnológicos, como por exemplo computação em nuvem, fornece suporte a oportunidade de colaboração po- rém apresenta alguns problemas relacionados a autenticação, segurança, privacidade e confiança. Portanto, este artigo apresenta uma revisão sistemática cujo objetivo é veri- ficar as abordagens que estão sendo realizadas no contexto das Organizações Virtuais e que estejam relacionadas com pelo menos um dos conceitos de confiança, reputação ou computação em nuvem. Para tal, a busca junto a literatura especializada resultou em 75 artigos, sendo selecionadas 24 deles para análise. Os critérios utilizados para a seleção foram os artigos relevantes nos últimos 5 anos, completos, no idioma inglês e que relacionassem Organização Virtual com pelo menos um dos conceitos de confi- ança, reputação e computação em nuvem. Por conseguinte, identificou-se como cada conceito é abordado e verificou-se que um mesmo conceito apresenta-se de diferentes formas e nenhum dos trabalhos buscou apresentar a integração desses conceitos.

show abstract

“…For this reason, it becomes necessary to find a way to define trust. Trust cannot be directly mapped into the analytical world due to its subjective nature, but it can be generated using an element that generates measurable trust which is "Reputation" [101] [102]. Based on the reputation that a trustee have about doing a set of tasks, that trustee will generate a level of trust.…”

Section: Trust In Multi-stakeholder Scenariosmentioning

confidence: 99%

“…N.Lo et al [104] focuse on a two module-based system to manage the resources allocation in a multi-cloud scenario in which the multiple cloud managers are aware of the actions done regarding their resources. M.Arasteh et al [102] designed an access control model for the resources owners to participate together in a single virtual organization. While both works [102][104] focus on a multi-provider scenario, the solution they presented follows a centralized design (i.e., with a single element on top) which centralizes the whole process and so, it may lead to the possibility of becoming a bottleneck and cause a central point of failure situation that some entity might gain advantage over.…”

Section: Trust In Multi-stakeholder Scenariosmentioning

confidence: 99%

Quality of service, security and trustworthiness for network slices

Alemany Prats

View full text Add to dashboard Cite

(English) The telecommunications' systems are becoming much more intelligent and dynamic due to the expansion of the multiple network types (i.e., wired, wireless, Internet of Things (IoT) and cloud-based networks). Due to this network variety, the old model of designing a specific network for a single purpose and so, the coexistence of different and multiple control systems is evolving towards a new model in which the use of a more unified control system is able to offer a wide range of services for multiple purposes with different requirements and characteristics. To achieve this situation, the networks have become more digital and virtual thanks to the creation of the Software-Defined Networking (SDN) and the Network Function Virtualization (NFV).Network Slicing takes the strengths from these two technologies and allows the network control systems to improve their performance as the services may be deployed and their interconnection configured through multiple-transport domains by using NFV/SDN tools such as NFV-Orchestrators (NFV-O) and SDN Controllers. This thesis has the main objective to contribute to the state of the art of Network Slicing, with a special focus on security aspects towards the architectures and processes to deploy, monitor and enforce secured and trusted resources to compose network slices. Finally, this document is structured in eight chapters: Chapter 1 provides the motivation and objectives of this thesis which describes to where this thesis contributes and what it was expected to study, evaluate and research. Chapter 2 presents the background necessary to understand the following chapters. This chapter presents a state of the art with three clear sections: 1) the key technologies necessary to create network slices, 2) an overview about the relationship between Service Level Agreements (SLAs) and network slices with a specific view on Security Service Level Agreements (SSLAs), and, 3) the literature related about distributed architectures and systems and the use of abstraction models to generate trust, security, and avoid management centralization. Chapter 3 introduces the research done associated to Network Slicing. First with the creation of network slices using resources placed multiple computing and transport domains. Then, this chapter illustrates how the use of multiple virtualization technologies allows to have more efficient network slices deployments and where each technology fits better to accomplish the performance improvements. Chapter 4 presents the research done about the management of network slices and the definition of SLAs and SSLAs to define the service and security requirements to accomplish the expected QoS and the right security level. Chapter 5 studies the possibility to change at certain level the trend to centralise the control and management architectures towards a distributed design. Chapter 6 follows focuses on the generation of trust among service resources providers. This chapter first describes how the concept of trust is mapped into an analytical system and then, how the trust management among providers and clients is done in a transparent and fair way. Chapter 7 is devoted to the dissemination results and presents the set of scientific publications produced in the format of journals, international conferences or collaborations. Chapter 8 concludes the work and outcomes previously presented and presents possible future research. (Català) Els sistemes de telecomunicacions s'estan tornant molt més intel·ligents i dinàmics degut a l'expansió de les múltiples classes de xarxes (i.e., xarxes amb i sense fils, Internet of Things (IoT) i xarxes basades al núvol). Tenint en consideració aquesta varietat d'escenaris, el model antic de disseny d'una xarxa enfocada a una única finalitat i, per tant, la una coexistència de varis i diferents sistemes de control està evolucionant cap a un nou model en el qual es busca unificar el control cap a un sistema més unificat capaç d'oferir una amplia gama de serveis amb diferents finalitats, requeriments i característiques. Per assolir aquesta nova situació, les xarxes han hagut de canviar i convertir-se en un element més digitalitzat i virtualitzat degut a la creació de xarxes definides per software i la virtualització de les funcions de xarxa (amb anglès Software-Defined Networking (SDN) i Network Function Virtualization (NFV), respectivament). Network Slicing fa ús dels punts forts de les dues tecnologies anteriors (SDN i NFV) i permet als sistemes de control de xarxes millorar el seu rendiment ja que els serveis poden ser desaplegats i la seva interconnexió a través de múltiples dominis de transport configurada fent servir eines NFV/SDN com per exemple orquestradors NFV (NFV-O) i controladors SDN. Aquesta tesi té com a objectiu principal, contribuir en diferents aspectes a la literatura actual al voltant de les network slices. Més concretament, el focus és en aspectes de seguretat de cara a les arquitectures i processos necessaris per desplegar, monitoritzar i aplicar recursos segurs i fiables per generar network slices. Finalment, el document es divideix en 8 capítols: El Capítol 1correspon a la introducció de la temàtica principal, la motivació per estudiar-la i els objectius plantejats a l'inici dels estudis de doctorat. El Capítol 2 presenta un recull d'elements i exemples en la literatura actual per presentar els conceptes bàsics i necessaris en relació a les tecnologies NFV, SDN i Network Slicing. El Capítol 3 introdueix el lector a les tasques i resultats obtinguts per l'estudiant respecte l'ús de network slices enfocades en escenaris amb múltiples dominis de transport i posteriorment en la creació i gestió de network slices Híbrides que utilitzen diferents tecnologies de virtualització. El Capítol 4 s'enfoca en l'ús d’eines de monitorització tant en avaluar i assegurar que es compleixen els nivells esperats de qualitat del servei i sobretot de qualitat de seguretat de les network slices desplegades. Per fer-ho s'estudia l'ús de contractes de servei i de seguretat, en anglès: Service Level Agreements i Security Service Level Agreements. El Capítol 5 estudia la possibilitat de canviar el model d'arquitectura per tal de no seguir centralitzant la gestió de tots els dominis en un únic element, aquest capítol presenta la feina feta en l'ús del Blockchain com a eina per canviar el model de gestió de recursos de múltiples dominis cap a un punt de vista cooperatiu i transparent entre dominis. El Capítol 6 segueix el camí iniciat en el capítol anterior i presenta un escenari en el qual a part de tenir múltiples dominis, també tenim múltiples proveïdors oferint un mateix servei (multi-stakeholder). En aquest cas, l'objectiu del Blockchain passa a ser la generació, gestió i distribució de paràmetres de reputació que defineixin un nivell de fiabilitat associat a cada proveïdor. De manera que, quan un client vulgui demanar un servei, pugui veure quins proveïdors són més fiables i en quins aspectes tenen millor reputació. El Capítol 7 presenta les tasques de disseminació fetes al llarg de la tesi. El Capítol 8 finalitza la tesi amb les conclusions finals.

show abstract

A trust and reputation-based access control model for virtual organizations

Cited by 5 publications

References 12 publications

A Classification Taxonomy for Reputation and Trust Systems Applied to Virtual Organizations

A Classification Taxonomy for Reputation and Trust Systems Applied to Virtual Organizations

Uma Revisão Sistemática sobre Abordagens em Organizações Virtuais no Contexto de Confiança, Reputação e Computação em Nuvem

Quality of service, security and trustworthiness for network slices

Contact Info

Product

Resources

About