Efficient private multi-party computations of trust in the presence of curious and malicious users

Gilboa, Niv; Kopeetsky, Marina

doi:10.1186/2196-064x-1-8

Cited by 11 publications

(5 citation statements)

References 28 publications

(59 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Dimitriou and Michalas [57,58] describe a decentralized privacy respecting scheme that is formally shown to be resistant to collusion against up to n − 1 malicious participants. Dolev et al [59,60] propose SMPC-based reputation schemes that are more efficient than the previous ones in terms of the number of messages exchanged. Their schemes privately compute reputation scores with a communication overhead of O(n) messages, where n is the number of participants in the protocol.…”

Section: Smpc-based Systemsmentioning

confidence: 99%

Privacy-Preserving Reputation Systems Based on Blockchain and Other Cryptographic Building Blocks: A Survey

2022

View full text Add to dashboard Cite

The purpose of a reputation system is to hold the users of a distributed application accountable for their behavior. The reputation of a user is computed as an aggregate of the feedback provided by fellow users in the system. Truthful feedback is clearly a prerequisite for computing a reputation score that accurately represents the behavior of a user. However, it has been observed that users can hesitate in providing truthful feedback because, for example, of fear of retaliation. Privacy-preserving reputation systems enable users to provide feedback in a private and thus uninhibited manner. In this survey, we propose analysis frameworks for privacy-preserving reputation systems. We use these analysis frameworks to review and compare the existing approaches. Emphasis is placed on blockchain-based systems as they are a recent significant development in the area. Blockchain-based privacy-preserving reputation systems have properties, such as trustlessness, transparency, and immutability, which prior systems do not have. Our analysis provides several insights and directions for future research. These include leveraging blockchain to its full potential in order to develop truly trustless systems, to achieve some important security properties, and to include defenses against common attacks that have so far not been addressed by most current systems.

show abstract

Section: Smpc-based Systemsmentioning

confidence: 99%

Privacy-Preserving Reputation Systems Based on Blockchain and Other Cryptographic Building Blocks: A Survey

2022

View full text Add to dashboard Cite

show abstract

“…In [23] Dolev et al presented a distributed approach for calculating a user's trustworthiness in specific time window by aggregating scores upon the request of an initiator. The scheme operates in a distributed manner, where each user calculates its trust value privately and independently.…”

Section: Related Workmentioning

confidence: 99%

A privacy-aware decentralized and personalized reputation system

Bag

Azad

Hao

2018

Computers & Security

View full text Add to dashboard Cite

Reputation systems enable consumers to evaluate the trustworthiness of business entities (retailers, sellers) over the marketplace. In electronic marketplaces, the reputation of an business entity (retailer, seller) is computed by aggregating the "trust-scores" assigned to her by the parties who have had transactions with her. Most reputation systems designed for online marketplaces use all the available trust-scores to compute the reputation of business entity. However, in some scenarios, the consumer may wish to compute the reputation of a business entity by considering the trust-scores from a set of trustworthy participants, however, she does not want to disclose the identities of the users she trusts. There are two privacy protection challenges in the design of this kind of personalized reputation system: 1) protecting the set of trusted users of participants, and 2) protecting the trust-scores assigned by the participants in the trusted set. In this paper, we present a novel framework for computing the personalized global reputation of a business entity by considering the trust-scores from a set of trusted participants without disclosing identities of participants in the trusted set and their trust-scores. To this extent, the participants share cryptograms of their trust-scores for the business entity to the decentralized public bulletin board or tally center. These encrypted trust-scores are then used by the requester to compute the personalized reputation score of the business entity without leaking private information of participants in the system. We have analyzed the security and privacy properties of the scheme for the malicious adversarial model. The protocol has a linear message complexity, which proves that the system can be deployed in a real setup where such personalized recommendations may be required in practice. Furthermore, the system ensures correctness, privacy and security of trust-scores of participants in the trusted set under the malicious adversarial model.

show abstract

“…Finally, we studied the use of zero-knowledge proofs and multiparty secure computation. Some publications (e.g., [ 19 ]) are useful for us to design our proposed scheme and to identify various aspects which could improved in the future.…”

Section: Related Workmentioning

confidence: 99%

Distributed One Time Password Infrastructure for Linux Environments

Peral

Orozco

Villalba

et al. 2018

Entropy

View full text Add to dashboard Cite

Nowadays, there is a lot of critical information and services hosted on computer systems. The proper access control to these resources is essential to avoid malicious actions that could cause huge losses to home and professional users. The access control systems have evolved from the first password based systems to the modern mechanisms using smart cards, certificates, tokens, biometric systems, etc. However, when designing a system, it is necessary to take into account their particular limitations, such as connectivity, infrastructure or budget. In addition, one of the main objectives must be to ensure the system usability, but this property is usually orthogonal to the security. Thus, the use of password is still common. In this paper, we expose a new password based access control system that aims to improve password security with the minimum impact in the system usability.

show abstract

Efficient private multi-party computations of trust in the presence of curious and malicious users

Cited by 11 publications

References 28 publications

Privacy-Preserving Reputation Systems Based on Blockchain and Other Cryptographic Building Blocks: A Survey

Privacy-Preserving Reputation Systems Based on Blockchain and Other Cryptographic Building Blocks: A Survey

A privacy-aware decentralized and personalized reputation system

Distributed One Time Password Infrastructure for Linux Environments

Contact Info

Product

Resources

About