Trust management tools

Trust in E-Services: Technologies, Practices and Challenges

Volumn , Issue , 2007, Pages 198-216

  Grandison, Tyrone ^a  

^a IBM ALMADEN RESEARCH CENTER   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

EID: 74049092988     PISSN: None     EISSN: None     Source Type: Book    
DOI: 10.4018/978-1-59904-207-7.ch008     Document Type: Chapter

References (55)

1. Agudo, I., Lopez, J., & Montenegro, J. A. (2005). A representation model of trust relationships with delegation extensions. In P. Herrmann, V. Issarny, & S. Shiu (Eds.), Third International Conference on Trust Management (iTrust 2005), Paris (LNCS 3477, pp. 116-130).
2. Anderson, R. J. (2002). TCPA/Palladium frequently asked questions, Version 1.0. Retrieved January 23, 2006, from http://www.cl.cam.ac.uk/~rja14/tcpa-faq.html
3. Azzedin, F., & Maheswaran, M. (2002). Integrating trust into grid resource management systems. In International Conference on Parallel Processing 2002 (ICPP 2002) (pp. 47-54).
4. Barlow, T., Hess, A., & Seamons, K. E. (2001). Trust negotiation in electronic markets. In Eighth Research Symposium in Emerging Electronic Markets, Maastricht, Netherlands. Retrieved January 24, 2006, from http://isrl.cs.byu.edu/pubs/rseem2001.pdf
5. Biskup, J., & Karabulut, Y. (2003). Mediating between strangers: A trust management based approach. In 2nd Annual Public Key Infrastructure (PKI) Research Workshop, Gaithersburg, MD: NIST. Retrieved January 20, 2006, from http://middleware.internet2.edu/pki03/presentations/07.pdf
6. Blaze, M., Feigenbaum, J., Ioannidis, J., & Keromytis, A. (1999). The KeyNote Trust Management System, Version 2 (RCF 2704). Retrieved February 8, 2006, from http://www.crypto/papers/rfc2704.txt
7. Blaze, M., Feigenbaum, J., & Keromytis, A. D. (1998). KeyNote: Trust management for public-key infrastructures. In Security Protocols International Workshop, Cambridge, UK. Retrived January 20, 2006, from http://www1.cs.columbia.edu/~angelos/Papers/keynote-position.pdf
8. Blaze, M., Feigenbaum, J., & Lacy, J.(1996). Decentralized trust management. In IEEE Conference on Security and Privacy. Oakland, CA: IEEE Computer Society Press.
9. Blaze, M., Feigenbaum, J., & Strauss, M. (1998). Compliance checking in the PolicyMaker trust management system. In (Ed.), Financial Cryptography: Second International Conference (pp. 251-265). Anguilla, British West Indies: Springer-Verlag.
10. Blaze, M., Ioannidis, J., & Keromytis, A. D. (2003). Experience with the KeyNote trust management system: Applications and future directions. In P. Nixon, & S. Terzis (Eds.), First International Conference on Trust Management (iTrust 2003), Heraklion, Crete, Greece (LNCS 2692, pp. 284-300).
11. Carbo, J., Molina, J. M., & Davila, J. (2003). Trust management through fuzzy reputation. International Journal of Cooperative Information Systems 12(1), 135-155.
12. Carbone, M., Nielsen, M., & Sassone, V. (2004). A calculus for trust management. In K. Lodaya, & M. Mahajan (Eds.), 24th International Conference on Foundations of Software Technology and Theoretical Computer Science, Chennai, India (LNCS 3328, pp. 161-172).
13. Chen, R., & Yeager, W. (2000). Poblano: A distributed trust model for peer-to-peer networks. Sun Microsystems. Retrieved January 14, 2006, from http://www.jxta.org/docs/trust.pdf
14. Chu, Y.-H. (1997). Trust management for the World Wide Web. Massachusetts institute of Technology. Unpublished masters thesis. Retrieved January 16, 2006, from http://www.w3.org/1997/Theses/YanghuaChu/
15. Chu, Y.-H., Feigenbaum, J., LaMacchia, B., Resnick, P., & Strauss, M. (1997). REFEREE: Trust management for Web applications. Retrieved January 17, 2006, from http://www.farcaster.com/papers/www6-referee/
16. Compaq et al. (2005). TPM main: Part 1 Design principles, Version 1. Retrieved March 8, 2006, from https://www.trustedcomputinggroup.org/specs/TPM/tpmwg-mainrev62_Part1_Design_Principles.pdf
17. English C., Nixon, P., Terzis, S., McGettrick, A., & Howe, H. (2002). Dynamic trust models for ubiquitous computing environments. In Workshop on Security in Unbiquitous Computing (UBICOMP) 2002. Retrieved March 3, 2006, from http://www.teco.edu/~philip/ubicom2002ws/organize/paddy.pdf
18. Evans, C., Feather, C. D. W., Hopmann, A., Presler-Marshall, M., & Resnick, P. (1997). PICSRules 1.1. Retrieved March 8, 2006, from http://www.w3.org/TR/REC-PICS-Rules
19. Foley, S. N. (2002). Trust management and whether to delegate. In B. Christianson, B. Crispo, J. A. Malcolm, & M. Roe, M. (Eds.), 9th International Workshop on Security Protocols (LNCS 2467, pp. 151-157). Cambridge, UK: Springer-Verlag.
20. Freudenthal, E., & Karamcheti, V. (2003). QTM: Trust management with quantified stochastic attributes (Tech. Rep. No. TR2003-848). New York: Courant Institute of Mathematical Sciences, New York University. Retrieved January 20, 2006, from http://csdocs.cs.nyu.edu/Dienst/Repository/2.0/Body/ncstrl.nyu_cs%2fTR2003-848/pdf
21. Grandison, T. (2001). Trust specification and analysis for Internet applications. In 2nd IFIP Conference on E-Commerce, E-Business, E-Government (I3e 2002), Lisbon, Portugal. Retrieved January 16, 2006, from http://www.eyetap.org/~maali/trust-papers/I3e2002.pdf
22. Grandison, T. (2003). Trust management for Internet applications. Unpublished doctoral dissertation, Imperial College - University of London, UK.
23. Grandison, T., & Sloman, M. (2000). A survey of trust in Internet applications. IEEE Communications Surveys and Tutorials, 4(4), 2-16.
24. Grandison, T., & Sloman, M. (2003). Trust management tools for Internet applications. In P. Nixon, & S. Terzis, S. (Eds.), First International Conference on Trust Management (iTrust 2003), Heraklion, Crete, Greece (LNCS 2692, pp. 91-107).
25. Gunter, C.A. & Jim, T. (2000). Policy-directed certificate retrieval. Software: Practice & Experience, 2000, 30(15) 1609-1640.
26. Hayton, R., Bacon, J., & Moody, K. (1998, May). OASIS: Access control in an open, distributed environment. In IEEE Symposium on Security and Privacy (pp. 3-14). Oakland CA: IEEE Computer Society Press.
27. IBM. (n.d.). IBM trust establishment policy language. Retrieved March 3, 2006, from http://www.haifa.il.ibm.com/projects/software/e-Business/TrustManager/PolicyLanguage.html
28. IBM. (2000). Access control meets public key infrastructure, or: Assigning roles to strangers. Retrieved January 6, 2006, from http://www.haifa.ibm.com/projects/software/e-Business/papers/Paper_Trust.pdf
29. Jajodia, S. S. P., & Subrahmanian, V. (1997). A logical language for expressing authorizations. In IEEE Symposium on Security and Privacy (pp. 31-42). Oakland, CA: IEEE Press.
30. Jim, T. (2001). SD3: A trust management system with certified evaluation. In (Ed.), IEEE Symposium on Security and Privacy (pp. 106-115). Oakland, CA: IEEE Computer Society.
31. Jøsang, A.(1996). The right type of trust for distributed systems. In ACM New Security Paradigms Workshop (pp. 119-131). Lake Arrowhead, CA.
32. Jøsang, A., & Tran, N. (2000). Trust management for e-commerce. Retrieved January 17, 2006, from http://citeseer.nj.nec.com/375908.html
33. Kagal, L., Undercoffer, J., Perich, F., Joshi, A., & Finin, T. (2002). A security architecture based on trust management for pervasive computing systems. Retrieved January 14, 2006, from http://ebiquity.umbc.edu/_file_directory_/papers/15.pdf
34. Khare, R., & Rifkin, A. (1998). Trust management on the World Wide Web. Peer-reviewed Journal on the Internet 3(6). Retrieved Janury 15, 2006, from http://www.firstmonday.org/issues/issue3_6/khare/index.html
35. Kolluru, R., & Meredith, P. H. (2001). Security and trust management in supply chains. Information Management and Computer Security, 9(5), 233-236.
36. Krauskopf, T., Miller, J., Resnick, P., & Treesee, W. (1996). PICS label distribution label syntax and communication protocols, Version 1.1. Retrieved February 8, 2006, from http://www.w3.org/TR/REC-PICS-labels
37. Krukow, K. (2004). On foundations for dynamic trust management. Technical report, University of Aarhus, Denmark. Retrieved January 16, 2006, from http://www.brics.dk/~krukow/research/publications/online_papers/Progress.pdf
38. Li, N., & Mitchell, J. C. (2003). RT: A role-based trust-management framework. In DARPA Information Survivability Conference and Exposition (DISCEX), Washington, DC. Retrieved January 16, 2006, from http://theory.stanford.edu/people/jcm/papers/rt_discex03.pdf
39. Li, N., & Mitchell, J. C. (2003). Datalog with constraints: A foundation for trust management languages. In V. Dahl, & P. Wadler (Eds.), Fifth International Symposium on Practical Aspects of Declarative Languages (LNCS 2562, pp. 58-73).
40. Li, N., Mitchell, J. C., & Winsborough, W. H. (2002). Design of a role-based trust management framework. In (Ed.), 2002 IEEE Symposium on Security and Privacy (pp. 114-130). IEEE Computer Society. Retrieved January 15, 2006, from http://www.cs.purdue.edu/homes/ninghui/papers/rt_oakland02.pdf
41. Miller, J., Resnick, P., & Singer, D. PICS rating services and rating systems (and their machine readable descriptions), Version 1.1. Retrieved January 8, 2006, from http://www.w3.org/TR/REC-PICS-services
42. Network Associates. (1990). An introduction to cryptography. In PGP 6.5.1 user's guide (pp. 11-36). Network Associates Inc.
43. Riegelsberger, J., Sasse, A. M., & McCarthy, J. D. (2005). The mechanics of trust: A framework for research and design. International Journal of Human-Computer Studies, 62(3), 381-422.
44. Ruohomaa, S., & Kutvonen, L. (2005). Trust management survey. In P. Herrmann, V. Issarny, & S. Shiu (Eds.), Third International Conference on Trust Management (iTrust 2005), Paris (LNCS 3477, pp. 77-92).
45. Seamons, K. E., Winslett, M., & Yu, T.(2001). Limiting the disclosure of access control policies during automated trust negotiation. In Network and Distributed System Security Symposium, San Diego, CA. Retrieved January 13, 2006, from http://dais.cs.uiuc.edu/pubs/winslett/ndss2001.pdf
46. Seigneur, J. M., & Jensen, C. D. (2004). Trading privacy for trust. In C. Jensen, S. Poslad, & T. Dimitrakos (Eds.), Second International Conference on Trust Management (iTrust 2004), Oxford, UK (LNCS 2995, pp. 93-107).
47. Shmatikov, V., & Talcott, C. (2005). Reputation-based trust management. Journal of Computer Security, 13(1), 167-190.
48. Shrobe, H., & Doyle, J. (2000). Active trust management for autonomous adaptive survivable systems (ATMs for AAsss). In P. Robertson, H. Shrobe, & R. Laddaga, (Eds.), 1st International Workshop on Self-Adaptive Software (IWSAS 2000) (pp. 40-49). Springer-Verlag.
49. Sun. (2001). X.509 certificates and certificate revocation lists (CRLs). Retrieved October 12, 2005, from http://java.sun.com/products/jdk/1.2/docs/guide/security/cert3.html
50. Suryanarayana, G., & Taylor, R. N. (2004). A survey of trust management and resource discovery technologies in peer-to-peer applications (Tech. Rep. No. UCI-ISR-04-6). Irvine, CA: University of California, Irvine.
51. Weeks, S. (2001). Understanding trust management systems. In (Ed.), IEEE Symposium on Security and Privacy (pp. 94-105). Oakland, CA: IEEE Computer Society.
52. Winsborough, W. H., Seamons, K. E., & Jones, V. E. (1999). Automated trust negotiation: Managing disclosure of sensitive credentials. IBM Transarc White Paper.
53. Winsborough, W. H., Seamons, K. E., & Jones, V. E.(1999). Negotiating disclosure of sensitive credentials. In Second Conference on Security in Communication Networks, Amalfi, Italy. Retrieved January 24, 2006, from http://isrl.cs.byu.edu/pubs/scn99.pdf
54. Yao, W. T., Moody, K., & Bacon, J. (2003). Fidelis: A policy-driven trust management framework. In P. Nixon, & S. Terzis (Ed.), First International Conference on Trust Management (iTrust 2003), Heraklion, Crete, Greece (LNCS 2692, pp 301-317).
55. Zacharia, G., & Maes, P. (2000). Trust management through reputation mechanisms. Applied Artificial Intelligence, 14(9), 881-907.