Presentation is loading. Please wait.

Presentation is loading. Please wait.

Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture."— Presentation transcript:

1 Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture 12: Trust Dr. Kemal Akkaya E-mail: kemal@cs.siu.edu

2 Kemal AkkayaWireless & Network Security 2Trust  Definition:  The belief that an entity is capable of acting reliably, dependably, and securely in a particular case  A well studied concept in sociology and psychology.  Need for trust  Traditional schemes focus on preventing attackers from entering the network through security protocols.  Those schemes, however, are not effective when: Malicious nodes have gained access to the network Some nodes in the network have been compromised  Trust function:  Provide an incentive for good behavior.  Provide a prediction of one’s future behavior.  Detect malicious and selfish entities.  Examples:  E-commerce : risk estimation  P2P : reducing free riding  Mobile ad hoc networks : mitigating nodes selfish behavior

3 Kemal AkkayaWireless & Network Security 3 Trust Models  Trust models entails collecting the information necessary to establish a trust relationship and dynamically monitoring and adjusting the existing truth relationship.  Two models:  Policy-based Trust Based on access control Restricting access to resources according to application-defined policies PolicyMaker, Keynote, REFEREE  Reputation-based Trust a peer requesting a resource may evaluate its trust in the reliability of the resource and the peer providing the resource Trust value assigned to a trust relationship is a function of the combination of the peer’s global reputation SPORAS, HISTOS, XREP, NICE, DCRC/CORC, Beta, EigenTrust  Others: Social network-based Trust  Utilize social relationships between peers when computing trust and reputation values

4 Kemal AkkayaWireless & Network Security 4 Policy-based Trust

5 Kemal AkkayaWireless & Network Security 5 Policy-based Trust: virtual  Problems  They do not provide a complete generic trust management solution for all decentralized applications  Scalability

6 Kemal AkkayaWireless & Network Security 6 Reputation-based Trust  Community of cooks (200 people)  Need to interact with someone you don’t know,  To extablish trust: you ask your friends –and friends of friends »... some recommendations are better than other you check the record (if any)  After success trust increases  p2p community of hackers (2000 people)  Exchange programs & scripts  Need to interact with someone you don’t know, ...  Difference with concrete community:  Larger, faster Trust establishment has to be to some extent automatic

7 Kemal AkkayaWireless & Network Security 7 Challenges  Trust metrics  How to model and compute trust  Evaluating initial trust value  Combining evidences, recommendations, reputation  Management of reputation data  Secure & efficient retrieval of reputation data  Automating trust based decision  Closing the circle: using experience as feedback

8 Kemal AkkayaWireless & Network Security 8 Reputation vs Policy-based Trust  open system (different security domains)  trust is a measure & changes in time  risk-based  recommendation based (NOT identity-based)  peers are not continuously available  Some systems: PGP TBD  open system (different security domains)  trust is boolean & less time-dependent  no risk  rule (credential) based (NOT identity-based)  peers are not continuously available  Some systems: keynote, Trust-X

9 Kemal AkkayaWireless & Network Security 9 Distributed Trust Models  Distributed Trust:  The representation of inputs to, and the process of making, trust decisions based on resources shared among multiple entities  Without Trust, either parties refuse to interact or require severe restrictions and complex controls – increased costs.  Trust is required for multiple entities to co-operate and share resources, and thus achieve some application value.  Conditional transitivity of trust  if A trusts B & B trusts C then A trusts C if B recommends its trust in C to A explicitly A trusts B as a recommender A can judge B’s recommendation and decide how much it will trust C, irrespective of B’s trust in C  Will look at different models separately  MANETs  P2P Networks

10 Kemal AkkayaWireless & Network Security 10 Comparison of TM Approaches ApproachTarget Environ.Idea AT&T labs(1996, 1998)PKIA lot like Access Control – Policy-based Abdul-Rahman & Hailes (2000) Virtual comm. Intro to Reputation-based Trust Models & agents autonomy Aberer & Despotovic (2001) P2P Attempts distributed Storage of Trust info. – Reputation-based CONFIDANT (2002)MANET Attempts incorporation of Detection & isolation of misbehavior SECURE (2003) Ubiquitous roaming entities Attempts Incorporation of risk model with Trust hTrust(2004)MANET Trust Management & dispositional trust. Detection & isolation of malicious recommenders. McNamara et al. (2006)MANETMobility introduced as a factor STRUDEL (2006)CPD Combat Tragedy of the commons (Selfishness of Nodes) MATE (2006)MANET Attempts integrated management of trust and risk (an element of dispositional trust).

Download ppt "Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture."

Similar presentations

Research Issues in Web Services CS 4244 Lecture Zaki Malik Department of Computer Science Virginia Tech

Research Issues in Web Services CS 4244 Lecture Zaki Malik Department of Computer Science Virginia Tech
June 4, 2004 A Robust Reputation System for P2P and Mobile Ad-hoc Networks Sonja Buchegger 1 A Robust Reputation System for P2P and Mobile Ad-hoc Networks.

June 4, 2004 A Robust Reputation System for P2P and Mobile Ad-hoc Networks Sonja Buchegger 1 A Robust Reputation System for P2P and Mobile Ad-hoc Networks.
Trust Management of Services in Cloud Environments:

Trust Management of Services in Cloud Environments:
Conceptual Framework for Dynamic Trust Monitoring and Prediction Olufunmilola Onolaja Rami Bahsoon Georgios Theodoropoulos School of Computer Science The.

Conceptual Framework for Dynamic Trust Monitoring and Prediction Olufunmilola Onolaja Rami Bahsoon Georgios Theodoropoulos School of Computer Science The.
1 Christophe S. Jelger, Michael Kleis, Burak Simsek, Rolf Stadler, Ralf König, Danny Raz Theories/formal methods in support of autonomic management Dagstuhl.

1 Christophe S. Jelger, Michael Kleis, Burak Simsek, Rolf Stadler, Ralf König, Danny Raz Theories/formal methods in support of autonomic management Dagstuhl.
1 CS 6910: Advanced Computer and Information Security Lecture on 11/2/06 Trust in P2P Systems Ahmet Burak Can and Bharat Bhargava Center for Education.

1 CS 6910: Advanced Computer and Information Security Lecture on 11/2/06 Trust in P2P Systems Ahmet Burak Can and Bharat Bhargava Center for Education.
A Survey of Trust Management for Mobile Ad Hoc Networks

A Survey of Trust Management for Mobile Ad Hoc Networks
On the Economics of P2P Systems Speaker Coby Fernandess.

On the Economics of P2P Systems Speaker Coby Fernandess.
Sogang University ICC Lab Using Game Theory to Analyze Wireless Ad Hoc networks.

Sogang University ICC Lab Using Game Theory to Analyze Wireless Ad Hoc networks.
On Data-Centric Trust Establishment in Ephemeral Ad Hoc Networks Maxim Raya, Panos Papadimitratos, Virgil D. Gligor, Jean-Pierre Hubaux INFOCOM 2008.

On Data-Centric Trust Establishment in Ephemeral Ad Hoc Networks Maxim Raya, Panos Papadimitratos, Virgil D. Gligor, Jean-Pierre Hubaux INFOCOM 2008.
TrustMe: Anonymous Management of Trust Relationships in Decentralized P2P Systems Aameek Singh and Ling Liu Presented by: Korporn Panyim.

TrustMe: Anonymous Management of Trust Relationships in Decentralized P2P Systems Aameek Singh and Ling Liu Presented by: Korporn Panyim.
NGMAST- WMS workshop17/09/2008, Cardiff, Wales, UK A Simulation Analysis of Routing Misbehaviour in Mobile Ad hoc Networks 2 nd International Conference.

NGMAST- WMS workshop17/09/2008, Cardiff, Wales, UK A Simulation Analysis of Routing Misbehaviour in Mobile Ad hoc Networks 2 nd International Conference.
A S URVEY OF TRUST MANAGEMENT AND ITS APPLICATIONS S UPERVISED BY : D R. Y AN W ANG Ravendra Singh Student-id: 41446461 1.

A S URVEY OF TRUST MANAGEMENT AND ITS APPLICATIONS S UPERVISED BY : D R. Y AN W ANG Ravendra Singh Student-id:
Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture.

Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture.
An Authentication Service Based on Trust and Clustering in Wireless Ad Hoc Networks: Description and Security Evaluation Edith C.H. Ngai and Michael R.

An Authentication Service Based on Trust and Clustering in Wireless Ad Hoc Networks: Description and Security Evaluation Edith C.H. Ngai and Michael R.
Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Services in Mobile Ad Hoc Networks Edith Ngai and Michael R.

Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Services in Mobile Ad Hoc Networks Edith Ngai and Michael R.
Mitigating routing misbehavior in ad hoc networks Mary Baker Departments of Computer Science and.

Mitigating routing misbehavior in ad hoc networks Mary Baker Departments of Computer Science and.
Trust CS 239 Advanced Topics in Computer Security Bernie Perez Vahab Pournaghshband November 9th, 2010.

Trust CS 239 Advanced Topics in Computer Security Bernie Perez Vahab Pournaghshband November 9th, 2010.
© 2007 Levente Buttyán and Jean-Pierre Hubaux Security and Cooperation in Wireless Networks Chapter 3: Trust assumptions and.

© 2007 Levente Buttyán and Jean-Pierre Hubaux Security and Cooperation in Wireless Networks Chapter 3: Trust assumptions and.
An Architecture for Dynamic Trust Monitoring in Mobile Networks Onolaja Olufunmilola, Rami Bahsoon, Georgios Theodoropoulos School of Computer Science.

An Architecture for Dynamic Trust Monitoring in Mobile Networks Onolaja Olufunmilola, Rami Bahsoon, Georgios Theodoropoulos School of Computer Science.

Similar presentations

Ads by Google