A survey of trust in workflows and relevant contexts

IEEE Communications Surveys and Tutorials

Volumn 14, Issue 3, 2012, Pages 911-940

  Viriyasitavat, Wattana ^a   Martin, Andrew ^b  

^a CHULALONGKORN UNIVERSITY   (Thailand)

^b UNIVERSITY OF OXFORD   (United Kingdom)

Author keywords

Security; Trust; Wowkflows

Indexed keywords

CONTENT PROVIDERS; DISTRIBUTED ENVIRONMENTS; EFFECTIVE MECHANISMS; HETEROGENEOUS DOMAINS; INTERNET TECHNOLOGY; PEER TO PEER; POOR PERFORMANCE; SECURITY; SECURITY POLICY; SECURITY SOLUTIONS; SERVICE LEVEL AGREEMENTS; SERVICE-BASED; SERVICE-WORKFLOW; STANDARD DEVELOPMENT; TRUST; VIRTUAL ORGANIZATION; WORK-FLOWS; WOWKFLOWS;

SURVEYS; WEB SERVICES;

QUALITY OF SERVICE;

EID: 84864579042     PISSN: None     EISSN: 1553877X     Source Type: Journal    
DOI: 10.1109/SURV.2011.072811.00081     Document Type: Review

References (230)

1. G. Fox and D. Gannon, "Workflow in grid systems," Concurrency and Computation: Practice and Experience, pp. 1009-1019, 2006.
2. A. Jšang, R. Ismail, and C. Boyd, "A survey of trust and reputation systems for online service provision," 2006.
3. S. K. Sarin, "Object-oriented workflow technology in inconcert," in COMPCON, pp. 446-450, 1996.
4. D. S. Pagani and R. Pareschi, "Generalized process structure grammars gpsg for flexible representations of work," in Conference on Computer Supported Cooperative Work, pp. 180-189, 1996.
5. G. Alonso, M. Kamath, D. Agrawal, E. Abbadi, R. Gunter, and C. Mohan, "Failure handling in large scale workflow management systems," 1994.
6. J. G. Hayes, E. Peyrovian, S. Sarin, M.-T. Schmidt, K. D. Swenson, and R. Weber, "Workflow interoperability standards for the internet," IEEE Internet Comput., vol. 4, pp. 37-45, May 2000.
7. A. Dogac, T. Ozsu, and L. Kalinichenko, eds., Workflow Management Systems and Interoperability. Secaucus, NJ, USA: Springer-Verlag New York, Inc., 1st ed., 2001.
8. S. Rajbhandari, O. F. Rana, and I. Wootten, "A fuzzy model for calculating workflow trust using provenance data," in Proc. 15th ACM Mardi Gras conference: From lightweight masH.-ups to lambda grids: Understanding the spectrum of distributed computing requirements, applications, tools, infrastructures, interoperability, and the incremental adoption of key capabilities, MG '08, (New York, NY, USA), pp. 10:1-10:8, ACM, 2008.
9. M. Altunay, D. Brown, G. Byrd, and R. Dean, "Trust-based secure workflow path construction," in Service-Oriented Computing-ICSOC 2005 (B. Benatallah, F. Casati, and P. Traverso, eds.), vol. 3826 of Lecture Notes in Computer Science, pp. 382-395, Springer Berlin /Heidelberg, 2005. (Pubitemid 43856199)
10. S. Ramchurn, C. Sierra, L. Godo, and N. R. Jennings, "A computational trust model for multi-agent interactions based on confidence and reputation," in 6th International Workshop of Deception, Fraud and Trust in Agent Societies, pp. 69-75, 2003.
11. T. Grandison and M. Sloman, "A survey of trust in internet applications," IEEE Commun. Surveys Tutorials, vol. 3, no. 4, pp. 2-16, 2000.
12. D. S. Wallach, "A survey of peer-to-peer security issues," in In International Symposium on Software Security, pp. 42-57, 2002.
13. H. Koshutanski, "A survey on distributed access control systems for web business processes," I. J. Network Security, vol. 9, no. 1, pp. 61-69, 2009.
14. A. E. Arenas, "Survey material on trust and security in grids," CoreGRID Project Deliverable D.IA.03, 2005.
15. D. Artz and Y. Gil, "A survey of trust in computer science and the semantic web," Web Semant., vol. 5, pp. 58-71, June 2007. (Pubitemid 46856280)
16. R. Eshuis and R. Wieringa, "Comparing petri net and activity diagram variants for workflow modelling-a quest for reactive petri nets," in DFG Projects, pp. 321-351, 2003. (Pubitemid 37528818)
17. D. Marinescu, "A grid workflow management architecture," GGF White Paper, 2002.
18. N. Kuntze and J. Schutte, "Securing decentralized workflows in ambient environments," in Proc. IEEE/IFIP Int. Conf. Embedded and Ubiquitous Computing EUC '08, vol. 2, pp. 361-366, 2008.
19. R. D. Stevens, A. J. Robinson, and C. A. Goble, "myGrid: personalised bioinformatics on the information grid.," Bioinformatics, vol. 19 Suppl 1, 2003.
20. C. Ellis, K. Keddara, and G. Rozenberg, "Dynamic change within workflow systems," in Proc. conference on Organizational computing systems, COCS '95, (New York, NY, USA), pp. 10-21, ACM, 1995.
21. W. Viriyasitavat and A. Martin, "Formal trust specification in service workflows," in Proc. 2010 IEEE/IFIP International Conference on Embedded and Ubiquitous Computing, EUC '10, (Washington, DC, USA), pp. 703-710, IEEE Computer Society, 2010.
22. A. Jøsang and S. Pope, "Semantic constraints for trust transitivity," in Proc. 2nd Asia-Pacific conference on Conceptual modelling-Volume 43, APCCM '05, (Darlinghurst, Australia, Australia), pp. 59-68, Australian Computer Society, Inc., 2005.
23. S. Stein, N. R. Jennings, and T. R. Payne, "Provisioning heterogeneous and unreliable providers for service workflows," in National Conference on Artificial Intelligence, pp. 1452-1458, 2007. (Pubitemid 350149771)
24. R. A. Botha and J. H. Eloff, "A security interpretation of the workflow reference model," in Proceedings of WG 11.2 and WG 11.1 of IFIP TC11 (R. v. Solms and J. H. Eloff, eds.), vol. 2 of Information Security-from Small Systems to Management of Infrastructures, (Vienna, Austria), pp. 43-50, 2 Sep 1998.
25. Z. Xie and C.-H. Chi, "Quantifying trust through delegation in service oriented architecture," in Proc. IEEE Congress Services, pp. 308-315, 2007.
26. J. Yu and R. Buyya, "A taxonomy of scientific workflow systems for grid computing," SIGMOD Rec., vol. 34, pp. 44-49, September 2005. (Pubitemid 43152531)
27. M. Blaze, J. Feigenbaum, P. Resnick, and M. Strauss, "Managing trust in an information-labeling system," in SPECIAL ISSUE OF SELECTED PAPERS FROM THE 1996 AMALFI CONFERENCE ON SECURE COMMUNICATION IN NETWORKS, pp. 491-501, 1996.
28. M. Blaze, J. Feigenbaum, and J. Lacy, "Managing trust in medical information systems," tech. rep., 1996.
29. J. J. Ordille, "When agents roam, who can you trust?," in Proc. First Annual Conf Emerging Technologies and Applications in Communications, pp. 188-191, 1996.
30. U. G. Wilhelm, S. Staamann, and L. Butty̌n, "On the problem of trust in mobile agent systems," in IN SYMPOSIUM ON NETWORK AND DISTRIBUTED SYSTEM SECURITY. INTERNET SOCIETY, pp. 114-124, Internet Society, 1998.
31. J. Feigenbaum and P. Lee, "Trust management and proof-carrying code in secure mobile-code applications," 1997.
32. A. Jšang, "Trust-based decision making for electronic transactions," in Proc. Fourth Nordic Workshop on Secure Computer Systems (NORDSEC' 99, 1999.
33. S. L. Jarvenpaa, N. Tractinsky, and L. Saarinen, "Consumer trust in an internet store: A crosS.-cultural validation.," J. Computer-Mediated Communication, vol. 5, no. 2, 1999.
34. J. Su and D. W. Manchala, "Trust vs. threats: recovery and survival in electronic commerce," in Proc. 19th IEEE Int Distributed Computing Systems Conf, pp. 126-133, 1999.
35. S. P. Ketchpel and H. Garcia-Molina, "Making trust explicit in distributed commerce transactions," in Proc. 16th Int Distributed Computing Systems Conf, pp. 270-281, 1996.
36. R. S. Dick and E. B. Steen, The computer-based patient record: an essential technology for health care. Washington, DC, USA: National Academy Press, 1991.
37. D. G. Kilman and D. W. Forslund, "An international collaboratory based on virtual patient records," Commun. ACM, vol. 40, pp. 110-117, August 1997.
38. D. Forslund and D. Kilman, "The virtual patient record: a key to distributed healthcare and telemedicine," tech. rep., Los Alamos National Laboratory, 1996.
39. J. O'Donovan and B. Smyth, "Trust in recommender systems," in Proc. 10th international conference on Intelligent user interfaces, IUI '05, (New York, NY, USA), pp. 167-174, ACM, 2005.
40. M. Deutsch, "Trust and suspicion," Journal of Conflict Resolution, vol. 2(4), pp. 265-279, 1958.
41. D. Gambetta, "Can we trust trust?," in Trust: Making and Breaking Cooperative Relations, pp. 213-237, Basil Blackwell, 1988.
42. M. Adamski, A. Arenas, A. Bilas, P. Fragopoulou, V. Georgiev, A. Hevia, G. Jankowski, B. Matthews, N. Meyer, J. Platte, and M. Wilson, "Trust and security in grids: A state of the art," 2008.
43. A. Kini, "Trust in electronic commerce: Definition and theoretical considerations," in Proc. Thirty-First Annual Hawaii International Conference on System ScienceS.-Volume 4-Volume 4, (Washington, DC, USA), pp. 51-, IEEE Computer Society, 1998.
44. R. C. Mayer, J. H. Davis, and F. D. Schoorman, "An Integrative Model of Organizational Trust," The Academy of Management Review, vol. 20, no. 3, pp. 709-734, 1995.
45. L. Lau and B. Whyte, "Technological aspects of trust in virtual organisations," tech. rep., School of Computer Studies, Research Report Series, Report 98.27, University of Leeds, 1998.
46. L. Mui, M. Mohtashemi, and A. Halberstadt, "A computational model of trust and reputation for e-businesses," in Proc. 35th Annual Hawaii International Conference on System Sciences (HICSS'02)-Volume 7-Volume 7, HICSS '02, (Washington, DC, USA), pp. 188-, IEEE Computer Society, 2002.
47. R. Falcone and C. Castelfranchi, "Social trust: A cognitive approach," Artificial Intelligence, 2001.
48. D. H. MCKNIGHT and N. L. CHERVANY, "The meanings of trust," 1996.
49. D. Olmedilla, O. F. Rana, B. Matthews, and W. Nejdl, "Security and trust issues in semantic grids," in Dagstuhl Seminars, 2005.
50. A. Jøsang, "The right type of trust for distributed systems," in Proc. 1996 workshop on New security paradigms, NSPW '96, (New York, NY, USA), pp. 119-131, ACM, 1996.
51. "Department of defense trusted computer system evaluation criteria," 1985.
52. D. Gollmann, "Why trust is bad for security," Electron. Notes Theor. Comput. Sci., vol. 157, pp. 3-9, May 2006. (Pubitemid 43728535)
53. M. D. Abrams and M. V. Joyce, "Trusted system concepts," Computers & Security, vol. 14, pp. 45-56, 1995.
54. M. D. Abrams and M. V. Joyce, "Trusted computing update," Computers & Security, pp. 57-68, 1995.
55. M. D. Abrams and M. V. Joyce, "New thinking about information technology security," Computers & Security, vol. 14, pp. 69-81, 1995.
56. F. Malamateniou, G. Vassilacopoulos, and P. Tsanakas, "A workflowbased approach to virtual patient record security," vol. 2, no. 3, pp. 139-145, 1998.
57. I. Moodahi, E. Gudes, O. Lavee, and A. Meisels, "A secure workflow model based on distributed constrained role and task assignment for the internet," Information and Communications Security, pp. 171-186, 2004. (Pubitemid 39737138)
58. M. Addis, J. Ferris, M. Greenwood, D. Marvin, T. Oinn, and A. Wipat, "Experiences with e-science workflow specification and enactment in bioinformatics," 2003.
59. Y. Lu, L. Zhang, and J. Sun, "Types for task-based access control in workflow systems," IET Software, vol. 2, no. 5, pp. 461-473, 2008.
60. R. Kalcklšch and K. Herrmann, "Statistical trustability (conceptual work)," in iTrust, pp. 271-274, 2003.
61. J. Morency, "Application service providers and e-business," 1999.
62. M. Blaze, J. Feigenbaum, and J. Lacy, "Decentralized trust management," in Proc. IEEE Symp Security and Privacy, pp. 164-173, 1996.
63. M. Blaze, J. Feigenbaum, and A. D. Keromytis, "Keynote: Trust management for public-key infrastructures," in Infrastructures (Position Paper). Lecture Notes in Computer Science 1550, pp. 59-63, 1998.
64. M. Blaze, "Using the keynote trust management system," 1999.
65. M. Blaze, J. Feigenbaum, J. Ioannidis, and A. Keromytis, "The keynote trust management system version 2," 1999.
66. Y.-H. Chu, J. Feigenbaum, B. LaMacchia, P. Resnick, and M. Strauss, "Referee: trust management for web applications," Comput. Netw. ISDN Syst., vol. 29, pp. 953-964, September 1997.
67. J. Liu and V. Issarny, "Enhanced reputation mechanism for mobile ad hoc networks," pp. 48-62, 2004.
68. V. Balakrishnan, V. Varadharajan, U. K. Tupakula, and P. Lucs, "Trust and recommendations in mobile ad hoc networks," in Proc. Third International Conference on Networking and Services, (Washington, DC, USA), pp. 64-, IEEE Computer Society, 2007.
69. M. I. Smirnov, "Trust by workflow in autonomic communication," in MMM-ACNS, pp. 136-150, 2005.
70. Z. M. Qiu and Y. S. Wong, "Dynamic workflow change in pdm systems," Comput. Ind., vol. 58, pp. 453-463, June 2007. (Pubitemid 46590430)
71. S. D. Ramchurn, D. Huynh, and N. R. Jennings, "Trust in multi-agent systems," THE KNOWLEDGE ENGINEERING REVIEW, vol. 19, p. 2004, 2004.
72. V. Atluri and W. kuang Huang, "An extended petri net model for supporting workflows in a multilevel secure environment," in in P. Samarati and R.S. Sandhu, Database Security X: Status and Prospects, Chapman, pp. 199-216, Hall, 1996.
73. V. Atluri, W.-K. Huang, and E. Bertino, "An execution model for multilevel secure work-flows," in Proc. 11th IFIP Working Conference on Database Security, pp. 151-165, 1997.
74. S. Chaari, F. Biennier, C. Ben Amar, and J. Favrel, "An authorization and access control model for workflow," in Proc. First Int Control, Communications and Signal Processing Symp, pp. 141-148, 2004.
75. M. Kohler and A. Schaad, "Avoiding policy-based deadlocks in business processes," in Proc. Third Int. Conf. Availability, Reliability and Security ARES 08, pp. 709-716, 2008.
76. S. Wu, A. Sheth, J. Miller, and Z. Luo, "Authorization and access control of application data in workflow systems," J. Intell. Inf. Syst., vol. 18, pp. 71-94, January 2002. (Pubitemid 34129948)
77. N. Kuntze, A. U.Schmidt, Z. Velikova, and C. Rudolph, "Trust in business processes," in Proc. 9th International Conference for Young Computer Scientists, 2008. ICYCS 2008., (Hunan, China), pp. 1992-1997, IEEE Computer Society, 2008.
78. E. Bertino, E. Ferrari, and V. Atluri, "The specification and enforcement of authorization constraints in workflow management systems," ACM Trans. Inf. Syst. Secur., vol. 2, pp. 65-104, February 1999.
79. D. Georgakopoulos, M. Hornick, and A. Sheth, "An overview of workflow management: from process modeling to workflow automation infrastructure," Distrib. Parallel Databases, vol. 3, pp. 119-153, April 1995.
80. B. Inc, Lotus Notes 6 Calendar Quick Reference Guide. Salt Lake City, UT: Beezix Software Services, 2007.
81. R. Medina-mora, H. K. T. Wong, and P. Flores, "Actionworkflow as the enterprise integration technology," IEEE Data(base) Engineering Bulletin, vol. 16, pp. 49-52, 1993.
82. S. L. Jarvenpaa, K. Knoll, and D. E. Leidner, "Is anybody out there?: antecedents of trust in global virtual teams," J. Manage. Inf. Syst., vol. 14, pp. 29-64, March 1998.
83. S. L. Jarvenpaa and D. E. Leidner, "Communication and trust in global virtual teams," Organization Science, vol. 10, pp. 791-815, June 1999.
84. X. Ao and N. H. Minsky, "Flexible regulation of distributed coalitions," in European Symposium on Research in Computer Security, pp. 39-60, 2003. (Pubitemid 37311862)
85. W. Viriyasitavat, "Modeling delegation in requirementS.-driven trust framework," in Proc. World Conf. ServiceS.-I, pp. 522-529, 2009.
86. G. Alonso, C. Mohan, R. Gunthor, D. Agrawal, A. E. Abbadi, and K. Mohan, "Exotica/fmqm: A persistent message-based architecture for distributed workflow management," 1995.
87. S. Das, K. Kochut, J. Miller, A. Sheth, and D. Worah, "Orbwork: A reliable distributed corba-based workflow enactment system for meteor2," 1996.
88. P. Muth, D. Wodtke, J. Weǐenfels, A. K. Dittrich, and G. Weikum, "From centralized workflow specification to distributed workflow execution," Journal of Intelligent Information Systems, vol. 10, pp. 159-184, 1998.
89. D. Wodtke and G. Weikum, "A formal foundation for distributed workflow execution based on state charts," in International Conference on Database Theory, pp. 230-246, 1997. (Pubitemid 127013756)
90. J. Sabater and C. Sierra, "Regret: A reputation model for gregarious societies," 2000.
91. M. Witkowski, A. Artikis, and J. Pitt, "Experiments in building experiential trust in a society of objective-trust based agents," in Autonomous Agents & Multiagent Systems/International Conference on Autonomous Agents, pp. 111-132, 2000.
92. S. D. Kamvar, M. T. Schlosser, and H. Garcia-Molina, "The eigentrust algorithm for reputation management in p2p networks," in Proc. 12th international conference on World Wide Web, WWW '03, (New York, NY, USA), pp. 640-651, ACM, 2003.
93. L. Page, S. Brin, R. Motwani, and T. Winograd, "The pagerank citation ranking: Bringing order to the web," 1998.
94. L. Kagal, T. Finin, and Y. Peng, "A delegation based model for distributed trust," 2001.
95. N. Li, B. N. Grosof, and J. Feigenbaum, "Delegation logic: A logicbased approach to distributed authorization," ACM Transactions on Information and System Security, vol. 6, pp. 128-171, 2003.
96. R. V. Guha, R. Kumar, P. Raghavan, and A. Tomkins, "Propagation of trust and distrust," in World Wide Web Conference Series, pp. 403-412, 2004. (Pubitemid 40752775)
97. C. nicolas Ziegler and G. Lausen, "Propagation models for trust and distrust in social networks," Information Systems Frontiers, vol. 7, pp. 337-358, 2005. (Pubitemid 43037076)
98. A. Jšang, S. Marsh, and S. Pope, "Exploring different types of trust propagation," in iTrust, pp. 179-192, 2006. (Pubitemid 44045025)
99. E. Gray and M. Kinateder, "Analysing topologies of transitive trust," 2003.
100. J. Huang and M. S. Fox, "An ontology of trust: formal semantics and transitivity," in International Conference on Electronic Commerce, pp. 259-270, 2006. (Pubitemid 47140666)
101. G. Lu, J. Lu, S. Yao, and J. Yip, "A review on computational trust models for multi-agent systems," in International Conference on Internet Computing, pp. 325-331, 2007.
102. Y. L. Simmhan, B. Plale, and D. Gannon, "A survey of data provenance in e-science," Sigmod Record, vol. 34, pp. 31-36, 2005. (Pubitemid 43152529)
103. Y. Kim and K.-G. Doh, "Trust type based semantic web services assessment and selection," in Proc. 10th Int. Conf. Advanced Communication Technology ICACT 2008, vol. 3, pp. 2048-2053, 2008. (Pubitemid 351714918)
104. S. J. H. Yang, J. S. F. Hsieh, B. C. W. Lan, and J.-Y. Chung, "Composition and evaluation of trustworthy web services," in Proc. IEEE EEE05 international workshop on Business services networks, BSN '05, (Piscataway, NJ, USA), pp. 5-5, IEEE Press, 2005.
105. C.-W. Hang and M. P. Singh, "Trustworthy service selection and composition," ACM Trans. Auton. Adapt. Syst., vol. 6, pp. 5:1-5:17, February 2011.
106. I. Foster, C. Kesselman, G. Tsudik, and S. Tuecke, "A security architecture for computational grids," in Proc. 5th ACM conference on Computer and communications security, CCS '98, (New York, NY, USA), pp. 83-92, ACM, 1998.
107. T. Li, H. Zhu, and K. yan Lam, "A novel two-level trust model for grid," in International Conference on Information and Communication Security, pp. 214-225, 2003.
108. L. Pearlman, V. Welch, I. Foster, C. Kesselman, and S. Tuecke, "A community authorization service for group collaboration," in Proc. 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02), POLICY '02, (Washington, DC, USA), pp. 50-, IEEE Computer Society, 2002.
109. M. Lorch, D. B. Adams, D. Kafura, M. S. R. Koneni, A. Rathi, and S. Shah, "The prima system for privilege management, authorization and enforcement in grid environments," in Proc. 4th International Workshop on Grid Computing, GRID '03, (Washington, DC, USA), pp. 109-, IEEE Computer Society, 2003.
110. R. Alfieri, R. Cecchini, V. Ciaschini, . Frohner, A. Gianoli, K. Lřentey, F. Spataro, and I. Firenze, "an authorization system for virtual organizations," in In Proc. 1st European Across Grids Conference, Santiago de Compostela, pp. 13-14, 2003.
111. S. Langella, S. Oster, S. Hastings, F. Siebenlist, T. Kurc, and J. Saltz, "Enabling the provisioning and management of a federated grid trust fabric." Gaithersburg 6th Annual PKI R&D Workshop, 2007.
112. C.-C. Pan, P. Mitra, and P. Liu, "Semantic access control for information interoperation," in Proc. eleventh ACM symposium on Access control models and technologies, SACMAT '06, (New York, NY, USA), pp. 237-246, ACM, 2006. (Pubitemid 44300761)
113. J. Warner, V. Atluri, R. Mukkamala, and J. Vaidya, "Using semantics for automatic enforcement of access control policies among dynamic coalitions," in Proc. 12th ACM symposium on Access control models and technologies, SACMAT '07, (New York, NY, USA), pp. 235-244, ACM, 2007. (Pubitemid 47281558)
114. H. Koshutanski and A. Maǎ, "Interoperable semantic access control for highly dynamic coalitions," Security and Communication Networks, vol. 3, pp. 565-594, 2010.
115. T. Ahmed and A. R. Tripathi, "Security policies in distributed cscw and workflow systems," IEEE Trans. Syst. Man Cybern. A, Syst. Hum., vol. 40, no. 6, pp. 1220-1231, 2010.
116. S. Naqvi, S. Naqvi, and C. Tr, "A study of languages for the specification of grid security policies 1." Technical Report TR0037, 2006.
117. S. Naqvi, A. E. Arenas, and P. Massonet, "Deriving policies from grid security requirements model," in Achievements in European Research on Grid Systems (S. Gorlatch, M. Bubak, and T. Priol, eds.), pp. 151-163, Springer US, 2008.
118. S. Naqvi, C. Ponsard, P. Massonet, and A. Arenas, "Security requirements elaborations for grid data management systems," International Journal of System of Systems Engineering, 2008.
119. T. B. Quillinan, B. C. Clayton, and S. N. Foley, "Gridadmin: Decentralising grid administration using trust management," in in Proc. ISPDC/HeteroPar 04, p. 184, 2004.
120. H. Koshutanski, A. Lazouski, F. Martinelli, and P. Mori, "Enhancing grid security by fine-grained behavioral control and negotiation-based authorization," Int. J. Inf. Secur., vol. 8, pp. 291-314, August 2009.
121. F. Azzedin and M. Maheswaran, "Evolving and managing trust in grid computing systems," in Canadian Conference on Electrical and Computer Engineering, 2002.
122. B. K. ALUNKAL, "Grid eigen trust a framework for computing reputation in grids,
123. B. K. Alunkal, I. Veljkovic, G. V. Laszewski, and K. Amin, "Reputation-based grid resource selection," in In Workshop on Adaptive Grid Middleware, p. 28, 2003.
124. T. D. Huynh, N. R. Jennings, and N. R. Shadbolt, "Fire: An integrated trust and reputation model for open multi-agent systems," in European Conference on Artificial Intelligence, pp. 18-22, 2004.
125. M. G. Uddin, M. Zulkernine, and S. I. Ahamed, "Collaboration through computation: incorporating trust model into service-based software systems," Service Oriented Computing and Applications, vol. 3, pp. 47-63, 2009.
126. E. Papalilo and B. Freisleben, "Towards a flexible trust model for grid environments," in Grid Services Engineering and Management (M. Jeckle, R. Kowalczyk, and P. Braun, eds.), vol. 3270 of Lecture Notes in Computer Science, pp. 35-65, Springer Berlin /Heidelberg, 2004.
127. M. Sobolewski and S. Goel, "Trust and security in enterprise grid computing environment," Proc. of IASTED Int. Conf. on Communication, Network and Information Security, 2003.
128. S. Zhao, V. Lo, and C. GauthierDickey, "Result verification and trust-based scheduling in peer-to-peer grids," in Proc. Fifth IEEE International Conference on Peer-to-Peer Computing, (Washington, DC, USA), pp. 31-38, IEEE Computer Society, 2005. (Pubitemid 44883087)
129. R. Zhou and K. Hwang, "Trust overlay networks for global reputation aggregation in p2p grid computing," in International Parallel and Distributed Processing Symposium/International Parallel Processing Symposium, 2006.
130. P. Domingues, B. Sousa, and L. M. Silva, "Sabotage-tolerance and trust management in desktop grid computing," Future Generation Computer Systems, vol. 23, pp. 904-912, 2007. (Pubitemid 46755400)
131. F. Azzedin and M. Maheswaran, "Integrating trust into grid resource management systems," in International Conference on Parallel Processing, pp. 47-54, 2002.
132. F. Azzedin and M. Maheswaran, "Towards trust-aware resource management in grid computing systems," in Cluster Computing and the Grid, pp. 452-457, 2002.
133. J. R. D. Dyson, N. E. Griffiths, H. N. L. C. Keung, S. A. Jarvis, and G. R. Nudd, "Trusting agents for grid computing," in IEEE International Conference on Systems, Man, and Cybernetics, pp. 3187-3192, 2004. (Pubitemid 40408323)
134. A. Sedrakian, R. M. Badia, J. M. Přez, R. Sirvent, T. Kielmann, and A. Merzky, "Reliability and trust based workflows job mapping on the grid," tech. rep., Institute on Grid Systems, Tools and Environments, CoreGRID Technical Report, TR-0069, 2007.
135. S. Song and K. Hwang, "Dynamic grid security with trust integration and optimized resource allocation," tech. rep., Internet and Grid Computing Laboratory, University of Southern California, Los Angeles, 2004.
136. S. Song, K. Hwang, and M. Macwan, "Fuzzy trust integration for security enforcement in grid computing," in in Proc. IFIP International Conf. on Network and Parallel Computing, (NPC-2004, pp. 9-21, Springer-Verlag, 2004. (Pubitemid 39746614)
137. S. Song, K. Hwang, and Y. kwong Kwok, "Trusted grid computing with security binding and trust integration," Journal of Grid Computing, vol. 3, pp. 53-73, 2005. (Pubitemid 41762485)
138. N. Griffiths and K. ming Chao, "Experience-based trust: Enabling effective resource selection in a grid environment," in iTrust, pp. 240-255, 2005. (Pubitemid 41313132)
139. J. Basney, W. Nejdl, D. Olmedilla, V. Welch, and M. Winslett, "Negotiating trust on the grid," in In 2nd WWW Workshop on Semantics in P2P and Grid Computing, 2004.
140. I. Constandache, D. Olmedilla, and F. Siebenlist, "Policy-driven negotiation for authorization in the grid," in Policies for Distributed Systems and Networks, pp. 211-220, 2007. (Pubitemid 47469564)
141. A. J. Lee, M. Winslett, and K. J. Perano, "Trustbuilder2: A reconfigurable framework for trust negotiation," pp. 176-195, 2009.
142. T. Yu, M. Winslett, and K. E. Seamons, "Supporting structured credentials and sensitive policies through interoperable strategies for automated trust negotiation," ACM Trans. Inf. Syst. Secur., vol. 6, pp. 1-42, February 2003.
143. B. Smith, K. E. Seamons, and M. D. Jones, "Responding to policies at runtime in trustbuilder," in Proc. Fifth IEEE Int. Workshop Policies for Distributed Systems and Networks POLICY 2004, pp. 149-158, 2004. (Pubitemid 40061194)
144. T. Yu and M. Winslett, "A unified scheme for resource protection in automated trust negotiation," in Proc. 2003 IEEE Symposium on Security and Privacy, SP '03, (Washington, DC, USA), pp. 110-, IEEE Computer Society, 2003.
145. A. Uszok, J. M. Bradshaw, M. Johnson, R. Jeffers, A. Tate, J. Dalton, and S. Aitken, "Kaos policy management for semantic web services," vol. 19, no. 4, pp. 32-41, 2004.
146. K. P. Sycara, M. Paolucci, A. Ankolekar, and N. Srinivasan, "Automated discovery, interaction and composition of semantic web services," Journal of Web Semantics, vol. 1, pp. 27-46, 2003. (Pubitemid 44914725)
147. T. Leithead, W. Nejdl, D. Olmedilla, K. E. Seamons, M. Winslett, T. Yu, and C. C. Zhang, "How to exploit ontologies for trust negotiation," in International Semantic Web Conference, 2004.
148. Z. Wu and L. Wang, "An enforcement architecture for security and trust policies in federated web-service-based systems," in International Computer Software and Applications Conference, pp. 329-334, 2009.
149. P. A. Bonatti and D. Olmedilla, "Driving and monitoring provisional trust negotiation with metapolicies," in Policies for Distributed Systems and Networks, pp. 14-23, 2005. (Pubitemid 43861244)
150. C. Holland, "The importance of trust and business relationships in the formation of virtual organisations," Organizational Virtualness and Electronic Commerce Proceedings of the 2nd International VoNet-Workshop, 1999.
151. J. Patel, W. T. L. Teacy, N. R. Jennings, M. Luck, S. Chalmers, N. Oren, T. J. Norman, A. Preece, P. M. D. Gray, G. Shercliff, P. J. Stockreisser, J. Shao, W. A. Gray, N. J. Fiddian, and S. Thompson, "Monitoring, policing and trust for grid-based virtual organisations," in Proc. UK e-Science All Hands Meeting 2005 (S. J. Cox and D. W. Walker, eds.), (Nottingham, UK), pp. 891-898, September 2005.
152. Y. Karabulut, F. Kerschbaum, F. Massacci, P. Robinson, and A. Yautsiukhin, "Security and trust in it business outsourcing: a manifesto," Electronic Notes in Theoretical Computer Science, vol. 179, pp. 47-58, 2007. (Pubitemid 46963712)
153. J. L. Griffin, T. Jaeger, R. Perez, R. Sailer, L. V. Doorn, and R. Cčeres, "Trusted virtual domains: Toward secure distributed services," in In Proc. First Workshop on Hot Topics in System Dependability (Hotdep05, IEEE Press, 2005.
154. P. Grefen, K. Aberer, H. Ludwig, and Y. Hoffner, "Crossflow: Crossorganizational workflow management in dynamic virtual enterprises," International Journal of Computer Systems Science & Engineering, vol. 15, pp. 277-290, 2000.
155. M. Gaeta, G. Laria, P. Ritrovato, N. Romano, B. Serhan, S. Wesner, T. Dimitrakos, and D. M. Randal, "Trust, security, and contract management challenges for grid-based application service provision," in iTrust, pp. 362-368, 2004.
156. T. Dimitrakos, D. Golby, and P. Kearney, "Towards a trust and contract management framework for dynamic virtual organisations," in In eAdoption and the Knowledge Economy: eChallenges 2004, pp. 27-29, Kluwer Academic, 2004.
157. A. Svirskas, M. D. Wilson, A. E. Arenas, E. C. Lupu, N. Tuptuk, D. Chadwick, P. Giambiagi, T. Dimitrakos, and B. Roberts, "Aspects of trusted and secure businesS.-oriented vo management in service oriented architectures.," in CEC Workshops, pp. 3-11, IEEE Computer Society, 2005. (Pubitemid 44459635)
158. T. Dimitrakos, "A service-oriented trust management framework," in Proc. 2002 international conference on Trust, reputation, and security: theories and practice, AAMAS'02, (Berlin, Heidelberg), pp. 53-72, Springer-Verlag, 2003. (Pubitemid 36550611)
159. N. Nagaratnam, P. Janson, J. Dayka, A. Nadalin, F. Siebenlist, V. Welch, I. Foster, and S. Tuecke, "The security architecture for open grid services," 2003.
160. V. Welch, F. Siebenlist, I. T. Foster, J. Bresnahan, K. Czajkowski, J. Gawor, C. Kesselman, S. Meder, L. Pearlman, and S. Tuecke, "Security for grid services," Computing Research Repository, vol. cs.CR/0306, pp. 48-57, 2003.
161. R. Breu, M. Hafner, B. Weber, and A. Nowak, "Model driven security for inter-organizational workflows in e-government," in TCGOV, pp. 122-133, 2005. (Pubitemid 41451179)
162. M. Menzel, I. Thomas, and C. Meinel, "Security requirements specification in service-oriented business process management," in Availability, Reliability and Security, pp. 41-48, 2009.
163. A. Arenas, I. Djordjevic, T. Dimitrakos, L. Titkov, J. Claessens, C. Geuer-Pollmann, E. Lupu, N. Tuptuk, S. Wesner, and L. Schubert, "Toward web services profiles for trust and security in virtual organisations," in Collaborative Networks and Their Breeding Environments (L. Camarinha-Matos, H. Afsarmanesh, and A. Ortiz, eds.), vol. 186 of IFIP International Federation for Information Processing, pp. 175-182, Springer Boston, 2005.
164. S. Galizia, A. Gugliotta, and J. Domingue, "A trust based methodology for web service selection," in Proc. International Conference on Semantic Computing, (Washington, DC, USA), pp. 193-200, IEEE Computer Society, 2007.
165. E. M. Maximilien and M. P. Singh, "Toward autonomic web services trust and selection," in Proc. 2nd international conference on Service oriented computing, ICSOC '04, (New York, NY, USA), pp. 212-221, ACM, 2004. (Pubitemid 40821152)
166. W. Liu, "Trustworthy service selection and composition-reducing the entropy of service-oriented web," in Proc. 3rd IEEE Int. Conf. Industrial Informatics INDIN '05, pp. 104-109, 2005. (Pubitemid 44868848)
167. H. Skogsrud, B. Benatallah, and F. Casati, "Model-driven trust negotiation for web services," vol. 7, no. 6, pp. 45-52, 2003.
168. H. Koshutanski and F. Massacci, "An access control framework for business processes for web services," in Proc. 2003 ACM workshop on XML security, XMLSEC '03, (New York, NY, USA), pp. 15-24, ACM, 2003.
169. E. Papalilo, T. Friese, M. Smith, and B. Freisleben, "Trust shaping: Adapting trust establishment and management to application requirements in a service-oriented grid environment," in Grid and Cooperative Computing, pp. 47-58, 2005. (Pubitemid 43774685)
170. Y. Zhang, L. Lin, and J. Huai, "Balancing trust and incentive in peerto-peer collaborative system," in Network Security, vol. 5, pp. 73-81, 2007.
171. A. Berthold, M. Alam, R. Breu, M. Hafner, A. Pretschner, J.-P. Seifert, and X. Zhang, "A technical architecture for enforcing usage control requirements in service-oriented architectures," in Proc. 2007 ACM workshop on Secure web services, SWS '07, (New York, NY, USA), pp. 18-25, ACM, 2007.
172. C. Schneider, F. Stumpf, and C. Eckert, "Enhancing control of service compositions in service-oriented architectures," in Proc. Int. Conf. Availability, Reliability and Security ARES '09, pp. 953-959, 2009.
173. Z. Song, S. Kotani, and R. Masuoka, "Building an independent integrated authentication service," in International Conference for Young Computer Scientists, pp. 2254-2259, 2008.
174. W. Mao, F. Yan, and C. Chen, "Daonity: grid security with behaviour conformity from trusted computing," in Proc. first ACM workshop on Scalable trusted computing, STC '06, (New York, NY, USA), pp. 43-46, ACM, 2006. (Pubitemid 47117275)
175. H. Jin and C. Yi, "Cmm: Credential migration management system based on trusted computing in cgsp.," 2007.
176. J. Zhan, H. Zhang, and F. Yan, "Information security and cryptology," ch. Building Trusted Sub-domain for the Grid with Trusted Computing, pp. 463-471, Berlin, Heidelberg: Springer-Verlag, 2008.
177. P.-W. Yau, A. Tomlinson, S. Balfe, and E. Gallery, "Securing grid workflows with trusted computing," in Computational Science ICCS 2008 (M. Bubak, G. van Albada, J. Dongarra, and P. Sloot, eds.), vol. 5103 of Lecture Notes in Computer Science, pp. 510-519, Springer Berlin Heidelberg, 2008.
178. P. wah Yau and A. Tomlinson, "Enhancing grid security using workflows, trusted computing and virtualisation," in International Conference on Grid Computing and Applications, pp. 113-119, 2009.
179. W. Mao, A. Martin, H. Jin, and H. Zhang, "Innovations for grid security from trusted computing," in Security Protocols (B. Christianson, B. Crispo, J. Malcolm, and M. Roe, eds.), vol. 5087 of Lecture Notes in Computer Science, pp. 132-149, Springer Berlin /Heidelberg, 2009.
180. M. Hafner, M. Memon, and M. Alam, "Models in software engineering," ch. Modeling and Enforcing Advanced Access Control Policies in Healthcare Systems with Sectet, pp. 132-144, Berlin, Heidelberg: Springer-Verlag, 2008.
181. M. Kuba, D. Kouǐl, and M. Prochžka, "Sealed grid with downloadable services," in Towards Next Generation Grids (T. Priol and M. Vanneschi, eds.), pp. 83-91, Springer US, 2007.
182. Z. Song, S. Lee, and R. Masuoka, "Trusted web service," in The 2nd Workshop on Advances in Trusted Computing, 2006.
183. P.-W. Yau and A. Tomlinson, "Using trusted computing in commercial grids," in ICCS 2007 (B. Akhgar, ed.), pp. 31-36, Springer London, 2007.
184. A. Alkassar and R. Husseiki, "D3.9: Study on the impact of trusted computing on identity and identity management," tech. rep., FIDIS Deliverable D3.9, 2008.
185. M. Carbone, M. Nielsen, and V. Sassone, "A formal model for trust in dynamic networks," in Conference on Software Engineering and Formal Methods, 2003.
186. C. Lin, V. Varadharajan, Y. Wang, and V. Pruthi, "Enhancing grid security with trust management," in Proc. IEEE Int. Conf. Services Computing (SCC 2004), pp. 303-310, 2004. (Pubitemid 40201759)
187. L. Moreau, S. Chapman, A. Schreiber, R. Hempel, L. Varga, U. Cortes, and S. Willmott, "Provenance-based trust for grid computing position paper," 2004.
188. C. A. Lynch, "When documents deceive: trust and provenance as new factors for information retrieval in a tangled web," J. Am. Soc. Inf. Sci. Technol., vol. 52, pp. 12-17, January 2001. (Pubitemid 32133545)
189. L. Ding, P. Kolari, T. Finin, A. Joshi, Y. Peng, and Y. Yesha, "On homeland security and the semantic web: A provenance and trust aware inference framework," in In AAAI Spring Symposium on AI Technologies for Homeland Security, pp. 21-23, AAAI Press, 2005.
190. J. Zhao, C. Wroe, C. A. Goble, R. Stevens, D. Quan, and R. M. Greenwood, "Using semantic web technologies for representing e-science provenance," in International Semantic Web Conference, pp. 92-106, 2004. (Pubitemid 39743877)
191. L. Tan, C. hung Chi, and J. Deng, "Quantifying trust based on service level agreement for software as a service," in International Computer Software and Applications Conference, pp. 116-119, 2008.
192. S. Rajbhandari, A. Contes, O. F. Rana, V. Deora, and I. Wootten, "Trust assessment using provenance in service oriented applications," in Enterprise Distributed Object Computing Conference, 2006.
193. S. Rajbhandari, I. Wootten, A. S. Ali, and O. F. Rana, "Evaluating provenance-based trust for scientific workflows," in Cluster Computing and the Grid, pp. 365-372, 2006. (Pubitemid 44761727)
194. S. Rajbhandari, A. Contes, O. F.Rana, V. Deora, , and I. Wootten, "Establishing workflow trust using provenance information," in IEEE Workshop on Modelling Autonomic Communications Environments (MACE), 2006.
195. A. Chebotko, S. Chang, S. Lu, F. Fotouhi, and P. Yang, "Scientific workflow provenance querying with security views," in Proc. Ninth Int. Conf. Web-Age Information Management WAIM '08, pp. 349-356, 2008.
196. J. Lyle and A. Martin, "Trusted computing and provenance: Better together," in Proc. 2nd Workshop on the Theory and Practice of Provenance, Usenix, 2010.
197. S. M. S. d. Cruz, P. M. Barros, P. M. Bisch, M. L. M. Campos, and M. Mattoso, "Provenance services for distributed workflows," in Proc. 2008 Eighth IEEE International Symposium on Cluster Computing and the Grid, (Washington, DC, USA), pp. 526-533, IEEE Computer Society, 2008.
198. A. Hoheisel, S. Mueller, and B. Schnor, "Fine-grained security management in a service-oriented grid architecture," 2006.
199. P. J. Broadfoot and G. Lowe, "Architectures for secure delegation within grids," Tech. Rep. RR-03-19, Oxford University Computing Laboratory, September 2003.
200. V. Atluri and W. kuang Huang, "An authorization model for workflows," in European Symposium on Research in Computer Security, pp. 44-64, 1996. (Pubitemid 126128893)
201. J. Wainer, A. Kumar, and P. Barthelmess, "DW.-rbac: A formal security model of delegation and revocation in workflow systems," Inf. Syst., vol. 32, pp. 365-384, May 2007. (Pubitemid 44821542)
202. M. Seguran, C. Hebert, and G. Frankova, "Secure workflow development from early requirements analysis," in Proc. IEEE Sixth European Conf. on Web Services ECOWS '08, pp. 125-134, 2008.
203. P. Giorgini, F. Massacci, J. Mylopoulos, and N. Zannone, "Requirements engineering meets trust management model, methodology, and reasoning," in In Proc. iTrust 04, LNCS 2995, pp. 176-190, Springer Verlag, 2004.
204. B. Matthews, J. Bicarregui, and T. Dimitrakos, "Building trust on the grid, trust issues underpinning scalable virtual organisations," tech. rep., CLRC Rutherford Appleton Laboratory, 2001.
205. M. Surridge, "A rough guide to grid security," tech. rep., IT Innovation, 2002.
206. H. Chivers and J. A. Mcdermid, "Refactoring service-based systems: how to avoid trusting a workflow service," Concurrency and Computation: Practice and Experience, vol. 18, pp. 1255-1275, 2006. (Pubitemid 44258509)
207. J. B. D. Joshi, W. G. Aref, A. Ghafoor, and E. H. Spafford, "Security models for web-based applications," Commun. ACM, vol. 44, pp. 38-44, February 2001. (Pubitemid 33631852)
208. "Globus security policy and implementation," 1997.
209. I. Foster and C. Kesselman, "The globus project: A progress report," in Heterogeneous Computing Workshop, 1998.
210. W. Xu, J. Wei, Y. Liu, and J. Li, "Sowac: A service-oriented workflow access control model," in Proc. 28th Annual International Computer Software and Applications Conference-Volume 01, COMPSAC '04, (Washington, DC, USA), pp. 128-134, IEEE Computer Society, 2004. (Pubitemid 40673840)
211. L. Wang and X. Xie, "Authorization model for multilevel security workflow based on rtbac," in Proc. 3rd international conference on Anti-Counterfeiting, security, and identification in communication, ASID'09, (Piscataway, NJ, USA), pp. 520-523, IEEE Press, 2009.
212. "Xamcl and oasis security services technical committee," 2005.
213. P. Mazzoleni, B. Crispo, S. Sivasubramanian, and E. Bertino, "Xacml policy integration algorithms," ACM Trans. Inf. Syst. Secur., vol. 11, pp. 4:1-4:29, February 2008.
214. F. Cornelli, E. Damiani, S. D. C. di Vimercati, S. Paraboschi, and P. Samarati, "Choosing reputable servents in a p2p network," in World Wide Web Conference Series, pp. 376-386, 2002.
215. E. Damiani, D. C. di Vimercati, S. Paraboschi, P. Samarati, and F. Violante, "A reputation-based approach for choosing reliable resources in peer-to-peer networks," in Computer and Communications Security, pp. 207-216, 2002.
216. T. Yu and M. Winslett, "Policy migration for sensitive credentials in trust negotiation," in Workshop On Privacy In The Electronic Society, pp. 9-20, 2003.
217. L. Kagal, T. Finin, and A. Joshi, "A policy based approach to security for the semantic web," in The Semantic Web-ISWC 2003 (D. Fensel, K. Sycara, and J. Mylopoulos, eds.), vol. 2870 of Lecture Notes in Computer Science, pp. 402-418, Springer Berlin /Heidelberg, 2003.
218. C. Barreto, V. Bullard, T. Erl, J. Evdemon, D. Jordan, K. Kand, D. Kňig, S. Moser, R. Stout, R. Ten-Hove, I. Trickovic, D. van der Rijn, and A. Yiu, "Web services business process execution language version 2.0," 2007.
219. L. M. Camarinha-matos and H. Afsarmanesh, "A roadmap for strategic research on virtual organizations," in Proc. IFIP Working Conference on Virtual Enterprises PROVE03, p. 3346, Kluwer, 2003.
220. I. Foster, C. Kesselman, J. M. Nick, and S. Tuecke, "The physiology of the grid an open grid services architecture for distributed systems integration," 2002.
221. S. Bajaj, D. Box, and D. Chappell, "Web services policy framework," 2004.
222. G. Della-Libera, M. Hondo, and J. Shewchuk, "Web services trust language (wS.-trust),
223. M. Hafner, R. Breu, B. Agreiter, and A. Nowak, "Sectet-an extensible framework for the realization of secure inter-organizational workflows," in WOSIS (E. F. Medina, Mariemma, E. F. Medina, and Mariemma, eds.), pp. 47-57, INSTICC Press, 2006.
224. S. P. Marsh, Formalising Trust as a Computational Concept. PhD thesis, University of Stirling, Apr 1994.
225. I. Foster, J. Vockler, M. Wilde, and Y. Zhao, "Chimera: a virtual data system for representing, querying, and automating data derivation," in Proc. 14th Int Scientific and Statistical Database Management Conf, pp. 37-46, 2002.
226. C. Pancerella, J. Hewson, W. Koegler, D. Leahy, M. Lee, L. Rahn, C. Yang, J. D. Myers, B. Didier, R. McCoy, K. Schuchardt, E. Stephan, T. Windus, K. Amin, S. Bittner, C. Lansing, M. Minkoff, S. Nijsure, G. von Laszewski, R. Pinzon, B. Ruscic, A. Wagner, B. Wang, W. Pitz, Y.-L. Ho, D. Montoya, L. Xu, T. C. Allison, W. H. Green, Jr., and M. Frenklach, "Metadata in the collaboratory for multi-scale chemical science," in Proc. 2003 international conference on Dublin Core and metadata applications: supporting communities of discourse and practice-metadata research & applications, pp. 13:1-13:9, Dublin Core Metadata Initiative, 2003.
227. J. Myers, C. Pancerella, C. Lansing, K. Schuchardt, and B. Didier, "Multi-Scale Science, Supporting Emerging Practice with Semantically Derived Provenance," in ISWC workshop on Semantic Web Technologies for Searching and Retrieving Scientific Data, 2003.
228. J. Widom, "Trio: A system for integrated management of data, accuracy, and lineage.," In Conference on Innovative Data Systems Research, pp. 262-276, 2005.
229. M. Gasser and E. McDermott, "An architecture for practical delegation in a distributed system," in Proc. IEEE Computer Society Symp Research in Security and Privacy, pp. 20-30, 1990. (Pubitemid 20739272)
230. Z.Wu and A. C. Weaver, "Bridging trust relationships with web service enhancements," in Proc. Int. Conf. Web Services ICWS '06, pp. 163-169, 2006. (Pubitemid 351209850)