Integrating Dirichlet reputation into usage control

Authors:
Li Yang;Alma Cemerlic
Affiliations:
University of Tennessee at Chattanooga, Chattanooga, TN;University of Tennessee at Chattanooga, Chattanooga, TN
Venue:
Proceedings of the 5th Annual Workshop on Cyber Security and Information Intelligence Research: Cyber Security and Information Intelligence Challenges and Strategies
Year:
2009

Citing 7
Cited 1

A model of OASIS role-based access control and its support for active security

ACM Transactions on Information and System Security (TISSEC)
The UCONABC usage control model

ACM Transactions on Information and System Security (TISSEC)
Using trust and risk in role-based access control policies

Proceedings of the ninth ACM symposium on Access control models and technologies
PeerTrust: Supporting Reputation-Based Trust for Peer-to-Peer Electronic Communities

IEEE Transactions on Knowledge and Data Engineering
Peer-to-peer access control architecture using trusted computing technology

Proceedings of the tenth ACM symposium on Access control models and technologies
A quantitative trust establishment framework for reliable data packet delivery in MANETs

Proceedings of the 3rd ACM workshop on Security of ad hoc and sensor networks
Using Trust for Secure Collaboration in Uncertain Environments

IEEE Pervasive Computing

Comparative trust management with applications: Bayesian approaches emphasis

Future Generation Computer Systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

With new technology such as cloud computing emerging, parties communicate directly with each other to exchange files or execute transaction in a peer-to-peer fashion. Therefore, peers have to manage the risks involved in the collaboration when prior experience and knowledge about each other are imcomplete. The behaviors of a party are undertain and attributes of a party, requested objects, and context information are mutable. To address above changllenges, we integrate Dirichlet reputation into usage control to manage authentication and authorization in a collaborative enviornment. We added moving window mechanism to the Dirichlet reputation evaluation. Moving windows not only help to adjust our responsiveness of our system to changes in peers' behaviors, but also allow us to use different strategies to react to different group of peers. Our system offers a way to handle uncertainty and mutability by dynamically revoke granted privileges from a party due to low reputation or changed attributes and context information.