Yingjie Xia,Guanghua Song,Yao Zheng,Jun Ni,Mingzhe Zhu

DOI: https://doi.org/10.1109/ICICSE.2008.7

2008-01-01

Abstract:This paper introduces a small world overlay Peer- to-peer (P2P) transfer system with role based and reputation based access control policies, through which we are able to solve several serious problems existed in traditional P2P systems, like resource piracy, user privacy and network jam. The role based access control policy is implemented by the certificate based cryptography, e.g. X509. The reputation based access control policy consists of artificial scoring and automatic scoring components, corresponding to the quality and quantity evaluation of the transfer resources respectively. This system, upon the two policies and the adaptive small world overlay P2P topology, can restrict the peer's role and select a more credible peer to upload and download without any loss of performance, for the reason of the dramatic topology. Indeed it provides a secure, controllable and efficient resource transfer community.

Yingjie Xia,Guanghua Song,Yao Zheng,Mingzhe Zhu

DOI: https://doi.org/10.1109/wkdd.2008.28

2007-01-01

Abstract:This paper introduces R2P, a Peer-to-Peer (P2P) transfer system with role based and reputation based access control policies. With the combination of user authentication, organization authorization and scoring system, we solve the problem of resource piracy, user privacy and network jam, which exist in traditional P2P systems. The R2P system takes advantage of the X509 certificate to implement the role based access control policy. By assembling the artificial scoring and the automatic scoring components, the system evaluates the quantity and quality of the transfer resources, putting forward the reputation based access control policy. Upon the two policies and the adaptive P2P transfer model, the R2P system provides a secure, controllable and efficient resource transfer community.

Yuansheng Zhong,Dongping Hu,Maojun Huang,Deren Chen

DOI: https://doi.org/10.1109/WI-IATW.2006.8

2006-01-01

Abstract:In order to overcome the deficiencies of current reputation management system (RMS) for P2P e-commerce communities (ECCs), a comprehensive RMS model is presented. This model is composed of a reference model, a directed graph of feedback relationship (DGFR), and a protocol for management of transaction among peers within the ECC. It provides the possibility for different pair of peers with different trust values between them at different time. The model also differentiates apparently between the feedback trust and trade trust. By the tool of DGFR, the model is integrated with the average transaction money per peer and average rating it receives. It gives a preferable solution to several ordinary trust cheat in the reputation-based ECC and help implement a practical RMS in an ECC

Yu Zhang,Xianxian Li,Jinpeng Huai,Yunhao Liu

DOI: https://doi.org/10.1109/ICDCSW.2005.29

2005-01-01

Abstract:As an emerging model of communication and computation, peer-to-peer networking represents a fully distributed, cooperative network design, and has recently gained significant acceptance. Peer groups share the properties of peer-to-peer overlay network, including full decentralization, symmetric abilities, and dynamism, which make security problems more complicated. In this paper, we propose a fine-grained and attribute-based access control framework forpeer-to-peer systems. This design employs a novel policy model which extends role-based trust management language RT to satisfy security requirements of peer groups. Intend for a pure decentralized model without centralized server, our framework presents distributed delegation authorization mechanism which could avoid single point of failure. We also introduce our implementation experience.

Chunrui ZHANG,Fan JIANG,Ke XU

DOI: https://doi.org/10.3321/j.issn:1000-0054.2005.10.037

2005-01-01

Abstract:The P2P(peer to peer) technique is now used in many areas,but no good solutions have yet been developed to set up trust among peers.This paper presents a model,called P2Ptrust,which combines a local trust table and a global reputation table.Each peer endows a trust value to other peers respectively whose trades are trustworthy.And the values construct a local trust table.Each peer must save several global reputation tables which belong to other peers.This model uses the friend mechanism and unites the virtue of the local trust table and the global reputation table.This paper also introduces a solution for the sybil attack,the malicious collectives attack,and other such attacks.Simulation results show that the P2Ptrust model reduces communication overhead and is more robust with security and has better extensibility.

LIN Chuang,FENG Fu-Jun,LI Jun-Shan

DOI: https://doi.org/10.1360/jos180955

2007-01-01

Abstract:Access control is an important technology for system security, and its mechanism is different for different networks. This paper first introduces the characteristics and applications of three traditional access control policies which are DAC (discretionary access control), MAC (mandatory access control) and RBAC (role-based access control), introduces the UCON (usage control) model, and then analyzes access control technology and current researches in Grid, P2P and wireless environment respectively. In addition, this paper proposes that trustworthy networks as the developing goal of the next generation Internet require using trust-based the access control model to assure security. This paper investigates on the trust and reputation model in detail, and finally gives the prospects of access control.

Lei Yang,Zhiguang Qin,Can Wang,Yao Liu,Chao Sheng Feng

DOI: https://doi.org/10.1109/ICCCAS.2010.5582006

2010-01-01

Abstract:The characteristics of P2P networks bring great convenience for the users. Meanwhile, it causes also some security problems. It is an effective method of response that the reputation mechanism is built in P2P networks. In most existing reputation models, global flooding and local query are used for achieving the information of recommendation. The inadvisable methods affect the accuracy and efficiency for evaluating reputation. To make up the lack of existing models, a new trust evaluation model based on Ant Colony Algorithm is proposed in this paper. The recommendation relationship and the pheromone are associated in this model, several optimized trust paths between the requesting peer and the target peer are archived by enforcing the extend Ant Colony Algorithm, the reputation value of the target peer is composed of the trust values generated from different recommendation paths, the requesting peers always select the target peers with uppermost reputation values for transaction. Simulation analyses show that this model can further alleviate the negative impact due to the malicious peers, and the message overhead is reduced.

LIN Chuang,FENG Fu-Jun,LI Jun-Shan

2007-01-01

Abstract:Access control is an important technology for system security, and its mechanism is different for different networks. This paper first introduces the characteristics and applications of three traditional access control policies which are DAC (discretionary access control), MAC (mandatory access control) and RBAC (role-based access control), introduces the UCON (usage control) model, and then analyzes access control technology and current researches in Grid, P2P and wireless environment respectively. In addition, this paper proposes that trustworthy networks as the developing goal of the next generation Internet require using trust-based the access control model to assure security. This paper investigates on the trust and reputation model in detail, and finally gives the prospects of access control.

Zhu Chang-sheng,Gao Ying-ying,Lei Qian,Wang Qing-rong

DOI: https://doi.org/10.1109/CINC.2010.5643720

2010-01-01

Abstract:Fuzzy set has become the focus method of trust model. Based on the exisdng research, this trust model give a description of the trust with fuzzy set theory, and trust assessment is separated two aspects which are subjective trust assessment and objective environment impact. In order to adapt to the dynamic of credibility, we use close function which from fuzzy set and distributed storage method in trust update model. Simulation experiment results show that this model is effective and rational. ©2010 IEEE.

Meng-shu Hou,Xianliang Lu,Xu Zhou,Chuan Zhan

DOI: https://doi.org/10.1145/1044552.1044558

2005-01-01

Abstract:The feature of the peer-to-peer system such as user anonymity, open nature makes that some peers are not responsible for their distributing inauthentic information. An effective solution is that set up the trust model in the p2p system. This paper presents a novel global trust model based on confirmation theory. The reputation of peers is calculated by C-F model according the bartering history, and then the peer decides to download the sharing file from which the peer has good reputation. Analyses and simulations show that this trust model can discard the malicious peer from p2p system effectively and improve the rate of successful barter greatly.

Lu Chen,Qing Zhou,Gaofeng Huang,Liqiang Zhang

DOI: https://doi.org/10.1109/CIS.2014.47

2014-01-01

Abstract:Resource sharing is one of the main applications of network. How to establish a trust relationship between resources requestor and provider, and enforce authority is the key issue of efficient resource sharing. Existing models and methods are mostly focus on identity, recommendation and other information, but lack of the considering of resource requestor's conduct and environment of computing. And once authorized, it will not be able to track and control user behavior dynamically. It may cause more risks when sharing resources. Aiming to resolve the above problems, a trust-role based context aware access control model is proposed relying on the measurement and verification of the \"trust credentials and evidences\" which embody the context information of user behavior and platform environment to achieve the security, dependable and dynamic access control for resource sharing.

HUANG Quan-neng,SONG Jia-xing,LIU Wei-dong,ZHANG Jun

DOI: https://doi.org/10.3969/j.issn.1000-1220.2006.07.006

2006-01-01

Abstract:With the boom of E-Commerce,Grid,and Peer-to-Peer applications,the trust based on reputation system has been proposed to handle its complex security problems.Up to now,much work has been done around this subject internationally.This paper introducs the background of the trust mainly in the peer-to-peer networks and Presents some important systems or models proposed recently after a summery of the basic framework of a reputation system.Finally the paper analyzes some problems faced by many researchers and gives a probable way to solve these problems.

Huiqun Yu

2011-01-01

Computer Science

Abstract:With the development of the P2P(Peer to Peer) technology,it's important to judge the reliability of the request peer.One reputation-based evaluation model for P2P is introduced to calculate the reputation value of each peer while the process of P2P and judge whether the request peer is reliable.The model combines the past experience with other's suggestions.Through the experiments,it is proved that the model not only is able to protect normal peers from malicious peers,but also improves the ability to resist the attack from groups of the malicious peers.

Zude Li,Guoqiang Zhan,Xiaojun Ye

DOI: https://doi.org/10.1007/11775300_17

2006-01-01

Abstract:Peer-to-peer (P2P) resource dissemination has raised some security concerns for privacy protection and intellectual property rights protection along resource dissemination over the network. To solve these challenges, we propose the Role-Based P2P model, in which the role notion is functioned as the bridge component between users and resources to enforce secure resource dissemination together with relative constraints. The property rights attached to resource and user's private identity information are both protected as promise by taking each local role as a permission set in local centralized network and each global role as a user's pseudonym in global decentralized network. Furthermore, we propose the access control algorithm to describe how to handle access requests by the role policy in the role-based hybrid P2P model. In addition, we illustrate the intra and inter access schemas as two kinds of access processes. The model is feasible as its role structure and the connection with user and resource in open environment are consistent with the application objectives. The model is extensible, as the role structure can be also available for Purpose-Based Privacy Protection technologies.

LIU Wu,DUAN Hai-Xin,ZHANG Hong,WU Jian-Ping

2008-01-01

Periodical of Ocean University of China

Abstract:In traditional network security management systems,system administrators could not prevent malicious users from illegal actions in time.This paper introduces the trust mechanism to dynamically evaluate user's reputation which is correlated with the user's privilege in the network and based on which we proposed and implemented the key algorithm of trust based access control in P2P Network.

HUANG Quan-neng,SONG Jia-xing,LIU Wei-dong

DOI: https://doi.org/10.3969/j.issn.1001-3695.2006.07.075

2006-01-01

Abstract:P2P networks have become increasingly popular in the recent years.However,their open,distributed and anonymous nature makes them very vulnerable against some security problems.Therefore,much work has been done to build reputation systems upon P2P networks.This paper analyze some tough problems existed in many reputation models and represent an improved reputation model named GRep to show some new ideas for these problems.

SUN Hua,YU Hui-qun,YANG Nian-hua

DOI: https://doi.org/10.3969/j.issn.1006-3080.2010.06.012

2010-01-01

Abstract:For efficient evaluating the reputation of the target peers in Peer-to-Peer environments,an encourage-and-punish-based computational reputation model is proposed.Th proposed model considers not only the direct transactions,but also the recommending data of other peers,which includes their direct transactions with target peers and their querying results before their transactions.By different weights on these data and the measure of relative encouragement and punishment,the integrated reputation of peers may be computed.The experimental results show that the present model can not only hold back malicious peers,but also ensure higher transaction rate.

HOU Meng-Shu,LU Xian-Liang,ZHOU Xu

2005-01-01

Computer Science

Abstract:Trust is a problem of particular importance in peer-to-peer system. However, the feature of the peer-to- peer system such as user anonymity, open nature makes that peers are not responsible for their irresponsible bartering history. This paper describes an algorithm to assess the peer which provides service based on the behavior of the peer. According bartering history and other peers recommend, the peer decides to download the sharing file from which peers. Analyses and simulations show that the model can assess the peer's reputation effectively, discard the mali- cious peer from peer-to-peer system and improve the rate of successful download greatly.

CHEN Guihai,l i zhenhua,CAO Xiaomei

2008-01-01

Abstract:As P2P networks grow larger, the selfishness of rational nodes and collusions of malicious nodes challenges traditional P2P reputation management mechanisms, which suffer from various attacks based on false feedbacks. In this paper, a market model based reputation management mechanism (MMRM) is proposed, in which the members in the system can gain from the system with proportional to its contribution. MMRM removes the incentive of users to give false feedbacks and encourages them to serve other peers. Meanwhile, it discovers malicious behaviors and mitigates their endangerment. The simulation results prove it can encourage honest behavior and cooperation of rational nodes and handle different kinds of attacks launched by malicious nodes.

Ruichuan Chen,Xuan Zhao,Liyong Tang,Jianbin Hu,Zhong Chen

DOI: https://doi.org/10.1007/978-3-540-73547-2_22

2007-01-01

Abstract:Peer-to-Peer communication model has the potential to harness huge amounts of resources. However, some recent studies indicate that most of current Peer-to-Peer systems suffer from inauthentic resource attacks. One way to cope with these attacks is to constitute a reputation-based trust model to help evaluating the trust values of peers and predicting their future behaviors. In this paper, we propose a global reputation-based trust model, called CuboidTrust. It builds four relations among three trust factors including contribution, trustworthiness and quality of resource, and applies power iteration to compute the global trust value of each peer. The experimental results show that CuboidTrust performs efficiently, and significantly decreases the count of inauthentic resource downloads under various threat models.