User-centric identity, trust and privacy

Trust in E-Services: Technologies, Practices and Challenges

Volumn , Issue , 2007, Pages 293-322

  Seigneur, Jean Marc ^a   Jensen, Christian Damsgaard ^b  

^a UNIVERSITY OF GENEVA   (Switzerland)

^b TECHNICAL UNIVERSITY OF DENMARK   (Denmark)

Author keywords

[No Author keywords available]

Indexed keywords

EID: 84898295519     PISSN: None     EISSN: None     Source Type: Book    
DOI: 10.4018/978-1-59904-207-7.ch012     Document Type: Chapter

References (85)

1. Aboba, B., Blunk, L., Vollbrecht, J., Carlson, J., & Levkowetz, H. (2004). Extensible authentication protocol (EAP) (RFC 3748). Network Working Group.
2. Al-Muhtadi, J., Anand, M., Mickunas, M. D., & Campbell, R. (2000). Secure smart homes using Jini and UIUC SESAME.
3. Beth, T., Borcherding, M., & Klein, B. (1994). Valuation of trust in open networks. In Proceedings of the 3rd European Symposium on Research in Computer Security.
4. Blaze, M., Feigenbaum, J., & Lacy, J. (1996). Decentralized trust management In Proceedings of the 17th IEEE Symposium on Security and Privacy (pp. 164-173). IEEE Computer Society.
5. Brin, S., & Page, L. (1998). The anatomy of a large-scale hypertextual Web search engine. Computer Networks, 30(1-7).
6. Brunk, B. D. (2002). Understanding the privacy space. In First Monday. Chicago: Library of the University of Illinois.
7. Burton, K. A. (2002). Design of the OpenPrivacy distributed reputation system: OpenPrivacy.org. Retrieved from http://openprivacy.org
8. Cahill, V., Gray, E., Seigneur, J.-M., Jensen, C., Chen, Y., & Shand, B. (2003, July-September). Using trust for secure collaboration in uncertain environments. Pervasive Computing, 2(3), 52-61.
9. Cameron, K. Microsoft's vision for an identity metasystem. Retrieved November 29, 2005, from http://www.identityblog.com/stories/2005/07/05/IdentityMetasystem.htm
10. Campbell, R., Al-Muhtadi, J., Naldurg, P., Sampermane, G., & Mickunas, M. D. (2002, November 8). Towards security and privacy for pervasive computing. In Proceedings of the International Symposium on Software Security, Keio University, Tokyo, Japan.
11. Castro, P., & Muntz, R. (1999). Using context to assist in multimedia object retrieval. In ACM Workshop on Multimedia Intelligent Storage and Retrieval Management, Orlando, FL.
12. nd ed.). Chicago: Callaghan.
13. Damiani, E., Vimercati, S. D. C. D., Paraboschi, S., & Samarati, P. (2003). Managing and sharing servants' reputations in P2P systems. In Transactions on knowledge and data engineering (pp. 840-854). IEEE.
14. Damiani, E., Vimercati, S. D. C. D., Paraboschi, S., & Samarati, P. (2004). P2P-based collaborative spam detection and filtering. In Proceedings of the Fourth International Conference on Peer-to-Peer Computing (P2P'04).
15. Damiani, E., Vimercati, S. D. C. D., & Samarati, P. (2003). Managing multiple and dependable identities. IEEE Internet Computing, 7(6), 29-37.
16. Despotovic, Z., & Aberer, K. (2004a). Maximum likelihood estimation of peers' performance in P2P networks. In Proceedings of the Second Workshop on the Economics of Peer-to-Peer Systems.
17. Despotovic, Z., & Aberer, K. (2004b). Trust and reputation management in P2P networks. CEC.
18. Dimmock, N. (2003). How much is 'enough'? Risk in trust-based access control. In Proceedings of IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises: Enterprise Security (Special Session on Trust Management) (pp. 281-282).
19. Dimmock, N., Bacon, J., Belokosztolszki, A., Eyers, D., Ingram, D., & Moody, K. (2004). Preliminary definition of a trust-based access control model. SECURE Deliverable 3.2.
20. Douceur, J. R. (2002). The Sybil attack. In Proceedings of the 1st International Workshop on Peer-to-Peer Systems.
21. eBay. (n.d.). Feedback Forum. Retrieved November 29, 2005, from http://pages.ebay.com/services/forum/feedback.html
22. FOAF. The Friend-of-a-Friend Project. Retrieved April 8, 2006, from http://www.foafproject.org/
23. Frankel, J., & Pepper, T. (2000). Gnutella. Nullsoft.
24. Golbeck, J., & Hendler, J. (2004a). Accuracy of metrics for inferring trust and reputation in semantic Web-based social networks.
25. Golbeck, J., & Hendler, J. (2004b). Reputation network analysis for email filtering. In Proceedings of the First Conference on Email and Anti-Spam (CEAS).
26. Golbeck, J., & Parsia, B. (2004). Trusting claims from trusted sources: Trust network based filtering of aggregated claims. In Proceedings of the 3rd International Semantic Web Conference (ISWC2004).
27. Gollmann, D. (1999). Computer security. John Wiley & Sons.
28. Gray, E., Seigneur, J.-M., Chen, Y., & Jensen, C. D. (2003). Trust propagation in small worlds. In Proceedings of the First International Conference on Trust Management (LNCS 2693). Springer-Verlag.
29. Jonker, C. M., & Treur, J. (1999). Formal analysis of models for the dynamics of trust based on experiences. In Proceedings of the 9th European Workshop on Modelling Autonomous Agents in a Multi-Agent World. Multi-Agent System Engineering.
30. Jøsang, A. (1996). The right type of trust for distributed systems. In Proceedings of the 1996 New Security Paradigms Workshop. ACM.
31. Jøsang, A. (1998). A subjective metric of authentication. In J.- J. Quisquater, Y. Deswarte, C. Meadows, & D. Gollmann (Eds.), ESORICS'98. Louvain-la-Neuve, Belgium: Springer-Verlag.
32. Jøsang, A. (2001). A logic for uncertain probabilities. Fuzziness and Knowledge-Based Systems, 9(3).
33. Kantola, R.(2004). Peer to peer and SPAM in the Internet. Technical Report of the Helsinki University of Technology.
34. Keromytis, A. D. (2004). The KeyNote trustmManagement system.
35. Khare, R. (1999). What's in a name? Trust. 4K Associates.
36. Kinateder, M., & Rothermel, K. (2003). Architecture and algorithms for a distributed reputation system. In Proceedings of the First Conference on Trust Management (LNCS). Springer.
37. Kinateder, M. P., & Siani. (2003). A privacy-enhanced peer-to-peer reputation system. In Proceedings of the 4th International Conference on Electronic Commerce and Web Technologies.
38. Kobsa, A., & Schreck, J. (2003). Privacy through pseudonymity in user-adaptive systems. In ACM transactions on Internet technology (pp. 149-183).
39. Kohl, J., & Neuman, B. C. (1993). The Kerberos Network Authentication Service, Version 5.
40. Labalme, F., & Burton, K. (2001). Enhancing the Internet with reputations.
41. Lai, C., Gong, L., Koved, L., Nadalin, A., & Schemers, R. (1999). User authentication and authorization in the Java(TM) platform. In Proceedings of the 15th Annual Computer Security Application Conference, Phoenix, AZ.
42. Lampson, B., Abadi, M., Burrows, M., & Wobber, E. (1992). Authentication in distributed systems: Theory and practice. In Transactions on computer systems. ACM.
43. Langheinrich, M. (2001). Privacy by design-principles of privacy-aware ubiquitous systems. In Proceedings of Ubicomp 2001: Ubiquitous Computing: Third International Conference (LNCS 2201, pp. 273-291). Heidelberg: Springer Verlag.
44. Levien, R. (2004). Attack resistant trust metrics. UC Berkeley.
45. LibertyAlliance. Liberty Alliance Project. Retrieved 29/11/2005, from http://www.projectliberty.org/
46. Lo Presti, S., Cusack, M., & Booth, C. (2003). Trust issues in pervasive environments. Trusted Software Agents and Services for Pervasive Information Environments project.
47. Marsh, S. (1994). Formalising trust as a computational concept. Department of Mathematics and Computer Science, University of Stirling.
48. Maslow, A. H. (1954). Motivation and personality. Harper.
49. McKnight, D. H., & Chervany, N. L. (2000). What is trust? A conceptual analysis and an interdisciplinary model. In Proceedings of the Americas Conference on Information Systems (AMCIS). AIS, Long Beach, CA.
50. Microsoft. (n.d.). NET Passport 2.5. Retrieved November 29, 2005, from http://msdn.microsoft.com/library/default.asp?url=/library/en-us/passport25/serviceguide/intro/NET_Passport_SDK_Components.asp
51. Milojicic, D. S., Kalogeraki, V., Lukose, R., Nagaraja, K., Pruyne, J., & Richard, B. (2002). Peer-to-peer computing.
52. Nielsen, M., Carbone, M., & Krukow, K. (2004a). An operational model of trust. SECURE Deliverable 1.2.
53. Nielsen, M., Carbone, M., & Krukow, K. (2004b). Revised computational trust model. SECURE Deliverable 1.3.
54. Nielsen, M., Plotkin, G., & Winskel, G. (1981). Petri nets, event structures and domains. Theoritical Computer Science, (13), 85-108.
55. OpenPrivacy. (2001). Open Privacy project. Retrieved November 11, 2005, from http://www.openprivacy.org/Postini.
56. Postini. (2004). Worldwide map of origin of spam. Retrieved November 11, 2005, from http://www.postini.com/SECURE.
57. Rahman, A. (2003). Learning to rely on others' opinion on your own. Computer Lab (Com Sci Dept), University of Cambridge.
58. Rahman, A. (2005). A framework for decentralised trust reasoning. University of London.
59. Rahman, A., & Hailes, S. (1997). Using recommendations for managing trust in distributed systems.
60. Romano, D. M. (2003). The nature of trust: Conceptual and operational clarification. Unpublished PhD thesis, Louisiana State University.
61. SECURE. Secure environments for collaboration among ubiquitous roaming entities project. Retrieved November 11, 2005, from http://secure.dsp.cs.tcd.ie/
62. Seigneur, J.-M. (2005a). Decentralized identity for the digital business ecosystem. ERCIM News.
63. Seigneur, J.-M. (2005b). Trust, security and privacy in global computing. Trinity College Dublin PhD thesis, technical report TCD-CS-2006-02. Retrieved from https://www.cs.tcd.ie/publications/tech-reports/reports.06/TCD-CS-2006-02.pdf
64. Seigneur, J.-M., Cahill, V., Jensen, C. D., Gray, E., & Chen, Y. (2004). The SECURE framework architecture (Beta). TCD Technical Report.
65. Seigneur, J.-M., Dimmock, N., Bryce, C., & Jensen, C. D. (2004). Combating spam with TEA (Trustworthy Email Addresses). In Proceedings of the 2nd Conference on Privacy, Security and Trust.
66. Seigneur, J.-M., Gray, A., & Jensen, C. D. (2005). Trust transfer: Encouraging self-recommendations without Sybil attack. In Proceedings of the Third International Conference on Trust Management (LNCS). Springer.
67. Seigneur, J.-M., & Jensen, C. D. (2004a). The claim tool kit for ad-hoc recognition of peer entities. Journal of Science of Computer Programming.
68. Seigneur, J.-M., & Jensen, C. D. (2004b). Trading privacy for trust. In Proceedings of iTrust'04 the Second International Conference on Trust Management (LNCS 2995). Springer-Verlag.
69. Seigneur, J.-M., & Jensen, C. D. (2004c). Trust enhanced ubiquitous payment without too much privacy loss. In Proceedings of SAC 2004. ACM.
70. Smith, R. E. (2001). Authentication: From passwords to public keys. Addison Wesley.
71. TCPA. Trusted Computing Platform Alliance. (2005). Retrieved from http://www.trustedcomputing.org/
72. Terzi, E., Zhong, Y., Bhargava, B., Pankaj, & Madria, S. (2003). An algorithm for building user-role profiles in a trust environment. In Proceedings of the International Conference on Data Warehousing and Knowledge Discovery. Springer.
73. Terzis, S., Wagealla, W., English, C., McGettrick, A., & Nixon, P. (2004). The SECURE collaboration model. SECURE Deliverables D2.1, D.2.2 and D2.3.
74. Travers, J., & Milgram, S. (1969). An experimental study of the small world problem. Sociometry, 32(4), 425-443.
75. Twigg, A., & Dimmock, N. (2003). Attack-resistance of computational trust models. In Proceedings of the Twelfth International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises. IEEE.
76. Wagealla, W., Carbone, M., English, C., Terzis, S., & Nixon, P. (2003). A formal model of trust lifecycle management. In Proceedings of the Workshop on Formal Aspects of Security and Trust (FAST 2003).
77. Watts, D., Sheridan, D. P., & Newman, M. E. J. (2002). Identity and search in social networks. Science 1(1), 26-41.
78. Weiser, M., & Brown, J. S. (1996). Designing calm technology. PowerGrid Journal, 1(01).
79. Winsborough, W. H., Seamons, K. E., & Jones, V. E. (2000). Automated trust negotiation. In DARPA Information Survivability Conference and Exposition.
80. Winslett, M., Yu, T., Seamons, K. E., Hess, A., Jacobson, J., & Jarvis, R. (2002). Negotiating trust on the Web (pp. 30-37). IEEE.
81. Wobber, E., Abadi, M., Burrows, M., & Lampson, B. (1994). Authentication in the Taos operating system. ACM.
82. Yahalom, R., Klein, B., & Beth, T. (1993). Trust relationships in secure systems-a distributed authentication perspective. In Proceedings of the Symposium on Security and Privacy (pp. 150). IEEE.
83. Ziegler, C.-N., & Golbeck, J. (2006). Investigating correlations of trust and interest similarity-do birds of a feather really flock together? Decision Support Systems 42(3), 1111-1136.
84. Ziegler, C.-N., & Lausen, G. (2004). Spreading activation models for trust propagation. In Proceedings of the International Conference on E-Technology, E-Commerce, and E-Service. IEEE.
85. Zimmerman, P. R. (1995). The pfficial PGP user's guide. MIT Press.