Privacy and trust issues in context-aware pervasive computing: State-of-the-art and future directions

Trust Modeling and Management in Digital Environments: From Social Concept to System Development

Volumn , Issue , 2010, Pages 352-377

  Abi Char, Pierre E ^a   M'hamed, Abdallah ^a   El Hassan, Bachar ^b   Mokhtari, Mounir ^a  

^a TELECOM SUDPARIS   (France)

^b LEBANESE UNIVERSITY   (Lebanon)

Author keywords

[No Author keywords available]

Indexed keywords

EID: 84898146482     PISSN: None     EISSN: None     Source Type: Book    
DOI: 10.4018/978-1-61520-682-7.ch015     Document Type: Chapter

References (83)

1. Al-Muhtadi, J., Campell, R., Kapadia, A., Mickunas, M., & Yi, S. (2002). Routing Through the Mist: Privacy Preserving Communication In Ubiquitous Computing Environments. In Proceedings of the International Conference of Distributed Computing Systems (ICDCS 2002), Vienna, Austria (pp. 65-74).
2. Almenarez, F., Marin, A., Diaz, D., & Sanchez, J. (2006). Developing a Model for Trust Management in Pervasive Devices. In Proceeding of the fourth Annual IEEE International Conference on Pervasive Computing and Communications Workshops (PERCOM'06), Italy (pp. 267-271).
3. Bellotti, V. (1997). Design for Privacy in Multimedia Computing and Communications Environments. In Technology and Privacy: The New Landscape (pp. 63-98).
4. Berrached, A., & Korvin, A. (2006). Reinforcing Access Control Using Fuzzy Relation Equations. In Proceedings of the 2006 International Conference on Security and Management (SAM06) (pp. 489-493).
5. Bertino, E., Ferrari, E., & Squicciarini, A. (2004a). Privacy Preserving Trust Negotiations. In Proceedings of the fourth International workshop Privacy Enhancing Technologies (pp. 283-301).
6. Bertino, E., Ferrari, E., & Squicciarini, A. (2004b). Trust-X: A Peer to Peer Framework for Trust Establishment. IEEE Transactions on Knowledge and Data Engineering, 16(7), 827-842. doi:10.1109/TKDE.2004.1318565
7. Bertino, E., Khan, L., Sandhu, R., & Thuraisingham, B. (2006). Secure Knowledge Management: Confidentiality, Trust, and Privacy. IEEE Transactions on Systems, Man, and Cybernetics. Systems and Humans, 36(3), 429-438.
8. Blaze, M., Feigenbaum, J., & Lacy, J. (1996). Decentralized Trust Management. In Proceedings of the 1996 IEEE Symposium on Security and Privacy (pp. 164-173).
9. Bojadziev, G., & Bojadziev, M. (1997). Fuzzy Logic for Business, Finance, and Management. Singapore: World Scientific.
10. Calcutt, D. (1990). British House of Commons, Committee on Privacy and Related Matters (Report of the Committee on Privacy and Related Matters, Cm 1102). London.
11. Campbell, R., Al-Muhtadi, J., Nadldurg, P., Sampemane, G., & Mickunas, M. (2002). Towards Security and Privacy for Pervasive Computing. In Proceedings of the ISSS, Tokyo, Japan (pp. 1-15).
12. Caronni, G. (2000). Walking the Web of Trust. In Proceedings of the 9th IEEE International Workshops on Enabling Technologies (pp. 153-158).
13. Chandrasekaran, B., Josephson, J., & Benjamins, V. (1999). What are ontologies, and why do we need them? IEEE Intelligent Systems and Applications, 14, 20-26. doi:10.1109/5254.747902
14. Chen, G., & Kotz, D. (2000). A Survey of ContextAware Mobile Computing Research (Tech. Rep. Dartmouth Computer Science Technical Report TR2000-381).
15. Covington, M., Long, W., Srinivasan, S., Dey, A., Ahamad, M., & Abowd, D. G. (2001). Securing Context-Aware Applications Using Environments Roles. In Proceedings of the sixth ACM Symposium on Access Controls Models and Technologies (pp. 10-20).
16. Cranor, L., Reagle, J., & Ackerman, S. M. (1999). Beyond Concern: Understanding net USERS' attitudes about online privacy (Technical report TR 99.4.3). AT&T Labs Research.
17. Cranor, L., & Wenning, R. (2002). Platform for Privacy Preferences (P3P) Project. Retrieved March 4, 2009, from http://www.w3.org/P3P/
18. Dey, A. K. (2001). Understanding and using context. Personal and Ubiquitous Computing Journal, 5(1), 4-7. Retrieved February 23, 2009, from http://www.cc.gatech.edu/fce/ctk/pubs/PeTe5-1.pdf
19. Dey, A. K., & Abowd, G. D. (2000). Towards a better understanding of context and contextawareness. The Proceedings of the CHI 2000 Workshop on the What, Who, when, and How of Context-Awareness, The Hague, The Netherlands. Retrieved January 8, 2009, from ftp://ftp. cc.gatech.edu/pub/gvu/tr/1999/92-22.pdf
20. rd Annual Conference on Trust Management, France (pp. 364-371).
21. th ACM Symposium on Access Control Models and technologies (pp. 156-162). New York: ACM Press.
22. Duma, C., Shahmehri, N., & Caronni, G. (2005). Dynamic Trust Metrics for Peer-to-Peer Systems. In Proc. of the 2nd IEEE Workshop on P2P Data Management, Security and Trust.
23. English, C., Nixon, P., Terzis, S., McGettrick, A., & Lowe, H. (2002). Dynamic Trust Models for Ubiquitous Computing Environments. In Proceedings of the UBICOMP2002-Workshop on Security in Ubiquitous Computing, Goteborg, Sweden.
24. Feruzan, A. (2007). Context Modeling and Reasoning using Ontologies. Retrieved February 15, 2009, from http://www.ponnuki.de/cmaruo/cmaruo.pdf
25. Grandison, T. (2003). Trust Management for Internet Application. Unpublished doctoral dissertation, Imperial College London.
26. Gruninger, M., & Lee, J. (2002). Ontology-Applications and Design. Communications of the ACM, 45(2), 39-65. doi:10.1145/503124.503146
27. He, Q., Wu, L., & Khosla, P. (2004). Quest for Personal Control over Mobile Location Privacy. IEEE Communications Magazine, 42(5), 130-136. doi:10.1109/MCOM.2004.1299356
28. th ACM symposium on Access Control Models and Technologies (pp. 11-20). New York: ACM.
29. Herzberg, A., Mass, Y., & Michaeli, J. (2000). Access Control Meets Public Key Infrastructure, or: Assigning Roles to Strangers. In Proceedings of the 2000 IEEE Symposium on Security and Privacy (pp. 2-14).
30. Hong, I. J., & Landay, A. L. (2004). An Architecture for Privacy-Sensitive Ubiquitous Computing. In Proceeding of the Second International Conference on Mobile Systems, Applications and Services (MobiSys 2004) (pp. 177-189).
31. Hull, R., Kumar, B., Lieuwen, D., Patel-Schneider, P. F., Shuguet, A., Varadarajan, S., & Vyas, A. (2004). Enabling Context-Aware and Privacy-Conscious User Data Sharing. In Proc. of the 2004 IEEE International Conference on Mobile Data Management (pp.187-198).
32. th European Conference on Artificial Intelligence, Spain (pp. 18-22).
33. Jendricke, U., Kreutzer, M., & Zugenmair, A. (2002). Pervasive Privacy with Identity Management. In Proceedings of the 1st Workshop Security, UbiComp.
34. Jiang, X., & Landay, J. A. (2002). Modeling Privacy Control in Context-Aware Systems. Pervasive Computing, 1(3), 59-63. doi:10.1109/MPRV.2002.1037723
35. Kagal, L., Finin, T., & Joshi, A. (2001). Trusted-based Secuirty in Pervasive Computing Environments. IEEE Computer Society Press, 34(12), 154-157.
36. Kagal, L., Undercoffer, J., Perich, F., Joshi, A., & Finin, T. (2002). Vigil: Enforcing Security in Ubiquitous Environments. In Proceedings of the Grace Hopper Celebration of Women in Computing 2002.
37. Kagal, L., Undercoffer, J., Perich, F., Joshi, A., & Finin, T. (2002). A Security Architecture Based on Trust Management for Pervasive Computing. In Proceeding of the Grace Hopper Celebration of Women in Computing.
38. Kapadia, A., Henderson, T., Fielding, J. J., & Kotz, D. (2007). Virtual Walls: Protecting Digital Privacy in Pervasive Environments. In Proceedings of the Fifth International Conference on Pervasive Computing (Pervasive) (pp. 162-179). Berlin, Germany: Springer-Verlag.
39. th international Conference on Information Security and Cryptography, ICISC 2007 (pp. 37-48).
40. Konar, A. (2000). Artificial Intelligence and Soft Computing: Behavioral and Cognitive Modeling of the Human Brain. Boca Raton, FL: CRC Press.
41. Lahlou, S., & Jegou, F. (2004). European Disappearing Computer Privacy Design Guidelines (version 1.1), Ambient Agoras Programme Report (IST-2000-25134). Disappearing Computer Initiative.
42. rd International Conference on Ubiquitous Computing (UbiComp 2001) (LNCS 2201, pp. 273-291). Berlin, Germany: Springer.
43. Langheinrich, M. (2002). A Privacy Awareness System for Ubiquitous Computing Environments. In Proceeding of the 4th International Conference on Ubiquitous Computing (UbiComp2002),(LNCS 2498, pp. 237-245). Berlin, Germany: Springer.
44. Li, N., & Mitchell, J. C. (2003). Datalog with Constraints: A Foundation for Trust-Management Languages. In Proc. of the Fifth International Symposium on Practical aspects of Declarative Languages (pp. 58-73).
45. Li, N., Winsborough, W., & Mitchell, J. (2003). Distributed Credential Chain Discovery in Trust Management. Journal of Computer Security, 11(1), 35-86.
46. th International Conference on Intelligent Environments (pp. 1-8). Washington, DC: IEEE Computer Society Press.
47. Minami, K., & Kotz, D. (2002). Controlling Access to Pervasive Information in the "Solar" system (Dartmouth Computer Science Technical Report TR2002-422).
48. th Annual Conference on Privacy, Security and Trust (pp. 201-212). Washington, DC: IEEE Computer Society Press.
49. Myles, G., Friday, A., & Davies, N. (2003). Preserving Privacy in Environments with Location-Based Applications. IEEE Pervasive Computing / IEEE Computer Society [and] IEEE Communications Society, 2(1), 56-64. doi:10.1109/MPRV.2003.1186726
50. NIST. (2001). National Institute of Standards and Technologies, About Pervasive Computing. Retrieved December 13, 2008, from http://www.nist.gov/pc2001/about-pervasive.html
51. OECD. (1980). Organization for Economic Co-operation and Development, Recommendation of the council concerning guidelines on the Protection of Privacy and Transborder Flows of Personal Data. Retrieved December 14, 2008, from http://www.oecd.org/document
52. Pfleeger, P. C. (1997). Security in Computing. Upper Saddle River, NJ: Prentice-Hall, Inc.
53. th International Workshop on Privacy Enhancing Technologies (PET), Cavtat, Croatia (pp. 93-109).
54. Rehak, M., Foltyn, M., Pechoucek, M., & Benda, P. (2005). Trust Model for Open Ubiquitous agent systems. In Proceedings of the IEEE/WIC/ACM/ International Conference on Intelligent Agent Technology (IAT), Compiegne University of Technology, France (pp. 536-542).
55. nd International Conference of Broadband Networks 2005 (Vol. 1, pp. 356-365).
56. Ren, K., & Lou, W. (2007). Privacy-Enhanced, Attack-Resilient Access Control in Pervasive Computing Environments with Optional Context Authentication Capability. Mobile Networks and Applications, 12(1), 79-92. doi:10.1007/s11036-006-0008-7
57. Ren, K., Lou, W., Kim, K., & Deng, R. (2006). A Novel Privacy Preserving Authentication and Access Control Scheme for Pervasive Computing Environments. IEEE Transactions on Vehicular Technology, 55(4), 1373-1384. doi:10.1109/TVT.2006.877704
58. nd Annual ACM Symposium on Applied Computing (pp. 1599-1604). New York: ACM Press.
59. Saltzer, J., & Schroeder, M. (1975). The protection of information in computer systems. Proceedings of the IEEE Computer Society Press, 63(9).
60. Schilit, B., Adams, N., & Want, R. (1994). ContextAware Computer Applications. In Proceedings of the Workshop on Mobile Computing Systems and Applications (pp. 85-90).
61. Seamons, K. E., Winslett, M., & Yu, T. (2001). Limiting the Disclosure of Access Control Policies During Automated Trust Negotiation. In Proceedings of the Network and Distributed System Security Symposium, San Diego, CA.
62. nd International Conference on Trust Management (pp. 93-107).
63. Siljeee, B. I. J., & Bosloper, I. E. (2004). A classification framework for storage and retrieved of context. In Proceedings of the First International Workshop on Modeling and Retrieval of Context (MRC2004).
64. Squicciarini, A., Bertino, E., Ferrari, E., Paci, F., & Thuraisinghm, B. (2007). PP-Trust-X: A system for Privacy Preserving Trust Negotiations. [TISSEC]. ACM Transactions on Information and System Security, 10(3). doi:10.1145/1266977.1266981
65. Squicciarini, A., Bertino, E., Ferrari, E., & Ray, I. (2006). Achieving Privacy in Trust Negotiations with an Ontology-Based Approach. IEEE Transactions on Dependable and Secure Computing, 3(1), 13-30. doi:10.1109/TDSC.2006.3
66. Squicciarini, A., Spantzel, A., Bertino, E., Ferrari, E., & Ray, I. (2006). Trust Negotiations with Customizable Anonymity. In Proceedings of the IEEE/WIC/ACM International Conference on Web Intelligence and Intelligent Agent Technology (WI-ATW06) (pp. 69-72).
67. Stajano, F. (2002). Security for Ubiquitous Computing. New York: Halsted Press.
68. Takabi, H., Amini, M., & Jalili, R. (2006). Enhancing Role-Based Access Control Model through Fuzzy Relations. In Proceedings of the third International Conference on Information Assurance and Security (IAS07) (pp. 131-136). Washington, DC: IEEE Computer Society Press.
69. Tentori, M., Favela, J., Gonzalez, V., & Rodriguez, M. (2005). Supporting Quality of Privacy (QOP) in Pervasive Computing. In Proceeding of the Sixth Mexican International Conference on Computer Science (pp. 58-67). New York: ACM Press.
70. th International Joint Conference on Artificial Intelligence, Boston (pp. 1-6).
71. Westin, F. A. (1967). Privacy and Freedom. New York: Atheneum.
72. rd International Workshop on Policies for Distributed Systems and Networks (pp. 92-103). Washington, DC: IEEE Computer Society Press.
73. Worna, K., & Gomez, L. (2005). Context-Aware Security and Secure Context-Awareness in Ubiquitous Computing Environments. In SAP research, XXI Autumn Meeting of Polish Information Processing Society Conference Proceedings (pp. 255-265).
74. th Annual International Computer Software and Applications Conferences (COMPSAC06) (pp. 215-222). Washington, DC: IEEE Computer Society Press.
75. th Annual International Conference on Mobile and Ubiquitous Systems: Networking and Services (pp. 1-3). Washington, DC: IEEE Society Press.
76. Xiu, D., & Liu, Z. (2004). A Dynamic Trust Model for Pervasive Computing Environments. A Research Paper. Research Supported by the NSF Grant0406325. Retrieved from http://coitweb.uncc.edu/~zhliu/Research/Papers/asc.pdf
77. Xu, W., Xin, Y., & Lu, G. (2007). A Trust Framework for Pervasive Computing Environments. In Proceeding of the International Conference on Wireless Communications, Networking and Mobile Computing (WiCom 07) (pp. 2222-2225). Washington, DC: IEEE Society Press.
78. Yu, T. (2003). Automated Trust Establishment In Open Systems. Unpublished doctoral dissertation, University of Illinois at Urbana-Champaign.
79. th International Conference on Web Information Systems Engineering (WISE06) (pp. 375-386).
80. Yuan, W., Guan, D., Lee, S., Lee, Y., & Lee, H. (2006b). Filtering out unfair recommendations Finding for trust model in ubiquitous environments. In Proceeding of the second International Conference on Information Systems Security (ICISS '06) (pp. 258-263).
81. Zadeh, L. A. (1973). Outline of a new Approach to the Analysis of Complex Systems and Decision Processes. IEEE Transactions on Systems, Man, and Cybernetics, 3(1), 28-44.
82. Zimmer, T. (2004). Toward a better understanding of Context attributes. In Proceedings of the second IEEE Annual Conference on Pervasive Computing and Communications Workshops (PERCOMMW04) (pp. 23). Washington, DC: IEEE Computer Society.
83. Zuidweg, M. (2003). Using P3P in a Web Services-Based context-aware Application Platform. In Proc. of 9th Open European Summer School and IFIP Workshop on Next Generation Networks (EUNICE 2003), Hungary.