Dynamic inter-organizational cooperation setup in Circle-of-Trust environments

Boursas, Latifa; Danciu, Vitalian A.

doi:10.1109/noms.2008.4575124

Cited by 8 publications

(5 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…These approaches are mainly focused on flexible access control but do not deal with the establishment of dynamic trust relationships between providers. In this sense, the proposals that are closest to the ideas presented in this paper are [18,19] and [17]. However, thought they introduce reputation in FIM, they all require some form of centralized storage; so the move to a completely distributed model is the main novelty of our approach.…”

Section: Outcomes Under "Nice" Conditionsmentioning

confidence: 95%

“…However, the application of this dimension of trust to IdM has not been fully addressed yet, and here we aim to evaluate its usefulness to build a reputation-based federated model. Thought there are related proposals [18,19] and previous work [17], this is the first approach that introduces reputation in FIM without requiring any form of centralized storage.…”

Section: Motivationmentioning

confidence: 99%

See 1 more Smart Citation

To Federate or Not To Federate: A Reputation-Based Mechanism to Dynamize Cooperation in Identity Management

Arias-Cabarcos

Almenárez

Mármol³

et al. 2013

Wireless Pers Commun

View full text Add to dashboard Cite

Identity Management systems cannot be centralized anymore. Nowadays, users have multiple accounts, profiles and personal data distributed throughout the web and hosted by different providers. However, the online world is currently divided into identity silos forcing users to deal with repetitive authentication and registration processes and hindering a faster development of large scale e-business. Federation has been proposed as a technology to bridge different trust domains, allowing user identity information to be shared in order to improve usability. But further research is required to shift from the current static model, where manual bilateral agreements must be pre-configured to enable cooperation between unknown parties, to a more dynamic one, where trust relationships are established on demand in a fully automated fashion. This paper presents IdMRep, the first completely decentralized reputation-based mechanism which makes dynamic federation a reality. Initial experiments demonstrate its accuracy as well as an assumable overhead in scenarios with and without malicious nodes.

show abstract

Section: Outcomes Under "Nice" Conditionsmentioning

confidence: 95%

Section: Motivationmentioning

confidence: 99%

To Federate or Not To Federate: A Reputation-Based Mechanism to Dynamize Cooperation in Identity Management

Arias-Cabarcos

Almenárez

Mármol³

et al. 2013

Wireless Pers Commun

View full text Add to dashboard Cite

show abstract

“…Considerable research on Circle-of-Trust has been devoted to identity federation such as [10] where trust requirements and patterns in a Circle-of-Trust identity federation are identified. In [3], Circle-of-Trust collaboration trust considerations in identity federation for assessment of entities' trust outside the circle are considered. Our work is focussed on authorization federation in a collaboration group of entities considered as tenants.…”

Section: Related Workmentioning

confidence: 99%

Role-Centric Circle-of-Trust in Multi-tenant Cloud IaaS

Pustchi

Sandhu

2016

Data and Applications Security and Privacy XXX

View full text Add to dashboard Cite

Currently, collaboration is a major challenge in adopting cloud Infrastructure-as-a-Service (IaaS). Enterprise work-flow intrinsically mandates collaboration across its tenant boundaries as well as with associated organizations' tenants in the cloud. In this paper, we investigate a Circle-of-Trust approach where tenants establish trust within a circle of tenants for the purpose of collaboration. We present a novel extension of role-centric access control models to provide collaboration in the context of homogeneous and heterogeneous circles. In a homogeneous circle, our approach allows tenants to equally assert cross-tenant user assignments to enable access to shared resources. In a circle with nonuniform tenants, attributes are added to distinguish user-assignments where tenants are differentiated by type in the heterogeneous circle. Particularly, tenant-trust relation is established within a group of tenants authorizing user-role assignments across tenants.

show abstract

“…Telecom operators rely on a Circle of Trust model to allow CS interoperability. Joining the Circle of Trust ensures an implicit initial level of trust [1] to its members. On the contrary, Web CSs are usually organized in a silo model: to communicate together, two users must be using the same CS.…”

Section: Introductionmentioning

confidence: 99%

A WebRTC Extension to Allow Identity Negotiation at Runtime

Corre

Becot

Barais

et al. 2017

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. In this paper we describe our implementation of the WebRTC identity architecture. We adapt OpenID Connect servers to support WebRTC peer to peer authentication and detail the issues and solutions found in the process. We observe that although WebRTC allows for the exchange of identity assertion between peers, users lack feedback and control over the other party authentication. To allow identity negotiation during a WebRTC communication setup, we propose an extension to the Session Description Protocol. Our implementation demonstrates current limitations with respect to the current WebRTC specification.

show abstract

Dynamic inter-organizational cooperation setup in Circle-of-Trust environments

Cited by 8 publications

References 8 publications

To Federate or Not To Federate: A Reputation-Based Mechanism to Dynamize Cooperation in Identity Management

To Federate or Not To Federate: A Reputation-Based Mechanism to Dynamize Cooperation in Identity Management

Role-Centric Circle-of-Trust in Multi-tenant Cloud IaaS

A WebRTC Extension to Allow Identity Negotiation at Runtime

Contact Info

Product

Resources

About