Trust management for secure information flows

Authors:
Mudhakar Srivatsa;Shane Balfe;Kenneth G. Paterson;Pankaj Rohatgi
Affiliations:
IBM T.J. Watson Research Center, New York, NY, USA;Royal Holloway, University of London, Egham, United Kingdom;Royal Holloway, University of London, Egham, United Kingdom;IBM T.J. Watson Research Center, New York, NY, USA
Venue:
Proceedings of the 15th ACM conference on Computer and communications security
Year:
2008

Citing 34
Cited 8

A decentralized model for information flow control

Proceedings of the sixteenth ACM symposium on Operating systems principles
Enforcing service availability in mobile ad-hoc WANs

MobiHoc '00 Proceedings of the 1st ACM international symposium on Mobile ad hoc networking & computing
A key-management scheme for distributed sensor networks

Proceedings of the 9th ACM conference on Computer and communications security
The Sybil Attack

IPTPS '01 Revised Papers from the First International Workshop on Peer-to-Peer Systems
Hierarchical ID-Based Cryptography

ASIACRYPT '02 Proceedings of the 8th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Core: a collaborative reputation mechanism to enforce node cooperation in mobile ad hoc networks

Proceedings of the IFIP TC6/TC11 Sixth Joint Working Conference on Communications and Multimedia Security: Advanced Communications and Multimedia Security
Resilient Data-Centric Storage in Wireless Ad-Hoc Sensor Networks

MDM '03 Proceedings of the 4th International Conference on Mobile Data Management
The Eigentrust algorithm for reputation management in P2P networks

WWW '03 Proceedings of the 12th international conference on World Wide Web
Toward Secure Key Distribution in Truly Ad-Hoc Networks

SAINT-W '03 Proceedings of the 2003 Symposium on Applications and the Internet Workshops (SAINT'03 Workshops)
Random Key Predistribution Schemes for Sensor Networks

SP '03 Proceedings of the 2003 IEEE Symposium on Security and Privacy
Towards Practical Automated Trust Negotiation

POLICY '02 Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02)
Ad hoc-VCG: a truthful and cost-efficient routing protocol for mobile ad hoc networks with selfish agents

Proceedings of the 9th annual international conference on Mobile computing and networking
Stimulating cooperation in self-organizing mobile ad hoc networks

Mobile Networks and Applications
PPay: micropayments for peer-to-peer systems

Proceedings of the 10th ACM conference on Computer and communications security
Cooperation Issues in Mobile Ad Hoc Networks

ICDCSW '04 Proceedings of the 24th International Conference on Distributed Computing Systems Workshops - W7: EC (ICDCSW'04) - Volume 7
Threshold and Identity-based Key Management and Authentication for Wireless Ad Hoc Networks

ITCC '04 Proceedings of the International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 2 - Volume 2
PeerTrust: Supporting Reputation-Based Trust for Peer-to-Peer Electronic Communities

IEEE Transactions on Knowledge and Data Engineering
COMMIT: A Sender-Centric Truthful and Energy-Efficient Routing Protocol for Ad Hoc Networks with Selfish Nodes

IPDPS '05 Proceedings of the 19th IEEE International Parallel and Distributed Processing Symposium (IPDPS'05) - Workshop 12 - Volume 13
Distributed Detection of Node Replication Attacks in Sensor Networks

SP '05 Proceedings of the 2005 IEEE Symposium on Security and Privacy
Automated trust negotiation using cryptographic credentials

Proceedings of the 12th ACM conference on Computer and communications security
Node Cooperation in Hybrid Ad Hoc Networks

IEEE Transactions on Mobile Computing
Overcoming misbehavior in mobile ad hoc networks: an overview

Crossroads
A comparison of MNT curves and supersingular curves

Applicable Algebra in Engineering, Communication and Computing
A Cryptographic Decentralized Label Model

SP '07 Proceedings of the 2007 IEEE Symposium on Security and Privacy
Fuzzy Multi-Level Security: An Experiment on Quantified Risk-Adaptive Access Control

SP '07 Proceedings of the 2007 IEEE Symposium on Security and Privacy
Multi-Dimensional Range Query over Encrypted Data

SP '07 Proceedings of the 2007 IEEE Symposium on Security and Privacy
On designing incentive-compatible routing and forwarding protocols in wireless ad-hoc networks: an integrated approach using game theoretic and cryptographic techniques

Wireless Networks
Generic Constructions of Identity-Based and Certificateless KEMs

Journal of Cryptology
Conjunctive, subset, and range queries on encrypted data

TCC'07 Proceedings of the 4th conference on Theory of cryptography
New strategies for revocation in ad-hoc networks

ESAS'07 Proceedings of the 4th European conference on Security and privacy in ad-hoc and sensor networks
Hierarchical identity based encryption with constant size ciphertext

EUROCRYPT'05 Proceedings of the 24th annual international conference on Theory and Applications of Cryptographic Techniques
Efficient identity-based key encapsulation to multiple parties

IMA'05 Proceedings of the 10th international conference on Cryptography and Coding
SP 800-30. Risk Management Guide for Information Technology Systems

SP 800-30. Risk Management Guide for Information Technology Systems
Self-policing mobile ad hoc networks by reputation systems

IEEE Communications Magazine

Remote Attestation of Attribute Updates and Information Flows in a UCON System

Trust '09 Proceedings of the 2nd International Conference on Trusted Computing
A metadata calculus for secure information sharing

Proceedings of the 16th ACM conference on Computer and communications security
N±ε: Reflecting Local Risk Assessment in LoA

OTM '09 Proceedings of the Confederated International Conferences, CoopIS, DOA, IS, and ODBASE 2009 on On the Move to Meaningful Internet Systems: Part II
A new schema for security in dynamic uncertain environments

SARNOFF'09 Proceedings of the 32nd international conference on Sarnoff symposium
Time-specific encryption

SCN'10 Proceedings of the 7th international conference on Security and cryptography for networks
Risk-Aware role-based access control

STM'11 Proceedings of the 7th international conference on Security and Trust Management
Risk-based adaptive security for smart IoT in eHealth

Proceedings of the 7th International Conference on Body Area Networks
Using community structure to control information sharing in online social networks

Computer Communications

Quantified Score

Hi-index	0.00

Visualization

Abstract

In both the commercial and defence sectors a compelling need is emerging for the rapid, yet secure, dissemination of information across traditional organisational boundaries. In this paper we present a novel trust management paradigm for securing pan-organisational information flows that aims to address the threat of information leakage. Our trust management system is built around an economic model and a trust-based encryption primitive wherein: (i) entities purchase a key from a Trust Authority (TA) which is bound to a voluntarily reported trust score r, (ii) information flows are encrypted such that a flow tagged with a recipient trust score R can be decrypted by the recipient only if it possesses the key corresponding to a voluntarily reported score r