Wen Li,Lingdi Ping,Kuijun Lu,Xiaoping Chen

DOI: https://doi.org/10.1109/ICIE.2009.33

2009-01-01

Abstract:As traditional network security cannot meet the security requirements, the international research shows that network security is on the way to Trustworthy Internet and that the trustworthy issue becomes a hot topic in the future Internet. Trust evaluation of users' behavior is an important part of Trustworthy Internet and a rational trust model plays a key role in the evaluation. This paper concludes many principles of the trust model by analyzing existing trust models and proposes a novel trust model including both the direct and indirect trust. In our model, the direct trust is more trustworthy and is weighted more with the more and more interactions and the indirect evaluation becomes less and less important. The subjective factor is considered to make the direct trust obey the principle of "rise-lowly, decline-quickly". Furthermore, recommenders' credibility is taken into account in the indirect trust evaluation, which can avoid the denigration and make indirect trust more objective. We also consider the process of referral of the credibility to gain more information to evaluate the indirect trust effectively. Credibility evaluation is the basis of the filtering of low credibility and the improvement of trust evaluation. Finally, several experiments are shown to illustrate the properties of the model. © 2009 IEEE.

Jie Jiang,Dongxian Shi,Deren Chen

DOI: https://doi.org/10.1109/icss.2010.56

2010-01-01

Abstract:In e-service environments, the delegation relationship is rarely considered as one of important factors of trust models. Most of work on delegation relationship focused on the permission of delegatee, delegation depth, delegation constrain and so on. They ignored the potential hazards brought from blind delegation, so easily to form the collusion attack. This paper defines the concept of delegation trustworthiness firstly, and then proposes a method for calculating trustworthiness based on the delegation relationship. The method enables the involved delegator and delegatee to be responsible for their actual behavior in delegation process. The delegate targets can choose a reliable trust entity according to the value of trustworthiness. Finally, a P2P simulation platform is used for experiments, and the simulation results presented verify the validity of the trustworthiness calculation.

Chaoqun Kang Chaoqun Kang,Erxia Li Chaoqun Kang,Dongxiao Liu Erxia Li,Xinhong You Dongxiao Liu,Xiaoyong Li Xinhong You

DOI: https://doi.org/10.53106/199115992023083404019

2023-08-01

電腦學刊

Abstract:With the diversity and complexity of user access behaviors in the “micro-segmentation” cloud computing environment, it is no longer possible to control unauthorized access of authorized users by only relying on user identity login authentication to control user access to cloud resources. The existing trust evaluation methods can not cope with the characteristics of “micro-isolated” cloud environment, which is characterized by high granularity of resources, increasing number of users’ access requests and rapid changes. Based on the zero-trust principle of “Never trust, al-ways verify”, we propose a dynamic, fine-grained user trust evaluation model for micro-segmentation cloud computing environment, which combines multiple user trust attributes and leverages the subjective-objective approach to assign weights to trust attribute indicators to achieve dynamic scoring of users’ real-time behaviors. To capture the characteristics of users’ intrinsic behaviors, we use correlation analysis to identify the correlation between users’ current and historical behaviors, and combine sliding windows and penalty functions to optimize the model. The massive simulation experiments demonstrate the effectiveness of the proposed dynamic and fine-grained method, which can effectively combine the intrinsic correlation of users’ own access behavior and the difference of access behavior among different users.  

Zhenguo Chen,Liqin Tian,Chuang Lin

DOI: https://doi.org/10.1177/1550147718776924

IF: 1.938

2018-01-01

International Journal of Distributed Sensor Networks

Abstract:In the process of using the cloud platform, how to ensure the safety of users is a matter we must concern. The user authentication can provide a certain degree of security, but when the user information was leaked, this method will not be effective. Therefore, this article proposes a trust evaluation model based on user behavior data. In this model, the user’s historical behavior will be used to construct a set of trusted behavior of the cloud users. On this basis, the direct trust of the user’s behavior can be obtained. Then, the recommendation trust can be calculated by the interaction between the users and other cloud users. Given the current historical trust, the comprehensive trust can be obtained using the weighted average method. Among them, the initial value of historical trust is set to a constant and then updated by the comprehensive trust. In order to control the user’s abnormal behavior more effectively, the suspicious threshold value and the abnormal threshold value were defined, which are used to punish the historical trust. Through the simulation of the virtual digital library cloud platform, the method can effectively evaluate the cloud users.

Li-qin Tian,Chuang Lin,Yang Ni

DOI: https://doi.org/10.1109/iccasm.2010.5620636

2010-01-01

Abstract:Currently, the cloud computing is hot research both in scholars and enterprise, because of its good features such as low investment, easy maintenance, Flexibility and fast deployment, reliable service. But to truly implement cloud computing, we need to gradually improve it in academic, legal and institutional. Especially, the issue of trust is one of the biggest obstacles for the development of cloud computing. In the cloud computing, due to users directly use and operate the software and OS, and even basic programming environment and network infrastructure which provided by the cloud services providers, so the impact and destruction for the software and hardware cloud resources in cloud computing are worse than the current Internet users who use it to share resources. Therefore, that whether user behavior is trusted, how to evaluate user behavior trust is an important research content in cloud computing. mainly discusses evaluation importance of user behavior trust and evaluation strategy, in the cloud computing, including trust object analysis, principle on evaluating user behavior trust, basic idea of evaluating user behavior trust, evaluation strategy of behavior trust for each access, and long access, which laid the theoretical foundation about trust for the practical cloud computing application.

Haidong Cui,Zheng Feng,Dongfang Ma

DOI: https://doi.org/10.1109/BESC48373.2019.8963258

2019-01-01

Abstract:In order to solve the problem that traditional user behavior trustworthiness assessment methods are too subjective and have poor dynamic adaptability when setting classification weight, in this paper, the traditional Analytic Hierarchy Process has been optimized and improved, a new trustworthiness evaluation model of user behavior based on improved AHP, rough set and game theory is proposed. This method combines user activity, reward and punishment factors to evaluate user behavior comprehensively, so that the evaluation results are more scientific and accurate. and demonstrates the feasibility of the method by an example. The results show that the evaluation model can adapt to the dynamic changes in user behavior trust, objectively determine the weight of each decision attribute, and can accurately and effectively assess the credibility of user behavior.

Keting Yin,Bo Zhou,Shuai Zhang,Yixi Chen,Dangxing Chu

DOI: https://doi.org/10.1109/WiCom.2008.2875

2008-01-01

Abstract:The authenticity of advertised QoS for web services is of particular relevance during service discovery and selection. Reputation of a service is often used as a measure of its trustworthiness. Currently, reputation is usually computed from the users' feedbacks and represents a snapshot for the interactions in a past time slot. However, in an open environment, reputation is a volatile property, which is subject to change. A more effective measure is needed for the users to pick up trustable web services.In this paper, we propose a novel measure to evaluate the authenticity of web services based on reputation. To enhance the traditional service trustworthiness measurement that depends mainly on services' current reputation, our measure incorporates historical reputation data of services and service providers' reputation into the evaluation of users' trust in services. Experiments are presented to evaluate the effectiveness of our approach.

Shuai Wang,Aiqun Hu,Tao Li,Shaofan Lin

DOI: https://doi.org/10.3390/sym16020249

2024-02-17

Symmetry

Abstract:Industrial control terminals play an important role in industrial control scenarios. Due to the special nature of industrial control networks, industrial control terminal systems are vulnerable to malicious attacks, which can greatly threaten the stability and security of industrial production environments. Traditional security protection methods for industrial control terminals have coarse detection granularity, and are unable to effectively detect and prevent attacks, lacking real-time responsiveness to attack events. Therefore, this paper proposes a real-time dynamic credibility evaluation mechanism based on program behavior, which integrates the matching and symmetry ideas of credibility evaluation. By conducting a real-time dynamic credibility evaluation of function call sequences and system call sequences during program execution, the credibility of industrial control terminal application program behavior can be judged. To solve the problem that the system calls generated during program execution are unstable and difficult to measure, this paper proposes a partition-based dynamic credibility evaluation method, dividing program behavior during runtime into function call behavior and system call behavior within function intervals. For function call behavior, a sliding window-based function call sequence benchmark library construction method is proposed, which matches and evaluates real-time measurement results based on the benchmark library, thereby achieving symmetry between the benchmark library and the measured data. For system call behavior, a maximum entropy system call model is constructed, which is used to evaluate the credibility of system call sequences. Experiment results demonstrate that our method performs better in both detection success rate and detection speed compared to the existing methods.

multidisciplinary sciences

Tian Li-Qin,Ni Yang,Lin Chuang

DOI: https://doi.org/10.1109/icfcc.2010.5497781

2010-01-01

Abstract:In trust evaluation of wireless sensor networks, behavior evidence is the fundamental basis of behavior evaluation. But at present, researchers almost directly use node behavior results or use a third party's evaluation results to synthesize it, not study the original evidence of node behavior and ignore analysis of node behavior history, which limit the reliability, rationality and sharing of trust. Drawing on the characteristics of social trust and trust requirement in wireless sensor networks application, we first put forward basic criteria about evaluating node behavior trust, and then bring forward a kind of evaluation mechanism on node behavior trust based on sliding windows model. Through various operations on sliding window, we ensure evaluation principles of node behavior trust. Finally, we use three theorems to prove strategy's effect, reliability and scalability. The results lay the quantity foundation for WSNs application and research based on behavior trust.

LIU Wu,DUAN Hai-Xin,ZHANG Hong,WU Jian-Ping

2008-01-01

Periodical of Ocean University of China

Abstract:In traditional network security management systems,system administrators could not prevent malicious users from illegal actions in time.This paper introduces the trust mechanism to dynamically evaluate user's reputation which is correlated with the user's privilege in the network and based on which we proposed and implemented the key algorithm of trust based access control in P2P Network.

Feng Li,Yali Si

DOI: https://doi.org/10.4028/www.scientific.net/AMM.397-400.1949

2013-01-01

Abstract:Trust mechanism has been identified as one of key areas in the field of Internet security. Our objective in this paper is to develop a dynamic trust evaluation model for Internet computing. The proposed scheme divides the recommendation trust into the direct recommendation trust and the indirect recommendation trust, and considers variety of factors to calculate the two types of recommendation trust degree. Simulation results show that, compared to the existing trust model, the model can effectively improve the accuracy of trust evaluation, and provide a better capacity of resisting malicious entities.

Tian Liqin,Lin Chuang,Ni Yang

DOI: https://doi.org/10.1109/ICCET.2010.5486133

2010-01-01

Abstract:At present, in areas such as wireless sensor networks, cloud computing, digital electronic resource services and other new Web applications, single static identity-based entity authentication can't meet the dynamic security needs. In order to provide better security we must combine dynamic behaviour-based entity trust with static identity-based entity authentication. In entity behavior trust evaluation, behavior evidence is the fundamental basis of behavior evaluation. Because the entity's behavior is random, uncertain, which causes behavior evidence was not complete and behavior value is not equal in each interaction, but as far as we know, It rarely consider this very important phenomenon in behavior trust evaluation. This paper analyzes incomplete behavior evidence obtained in entity interaction bring about a significant impact for trust evaluation and discusses the relationship between incomplete behavior evidence and behavior value, gives a kind of behavior trust evaluation strategy for different values interaction such as Less-Filling and Weight-Extension. Finally, we use two theorems and two properties to prove strategy's effect and property in behavior trust evaluation. Paper lays the quantity foundation in enhancing value-trust reliability of entity behavior trust.

Jun Li,Xiaolin Zheng,Deren Chen,William Wei Song

DOI: https://doi.org/10.4018/jwsr.2012070102

2012-01-01

International Journal of Web Services Research

Abstract:In a service-oriented environment, it is inevitable and indeed quite common to deal with web services, whose reliability is unknown to the users. The reputation system is a popular technique currently used for providing a global quality score of a service provider to requesters. However, such global information is far from sufficient for service requesters to choose the most qualified services. In order to tackle this problem, the authors present a trust based architecture containing a computational trust model for quantifying and comparing the trustworthiness of services. In this trust model, they firstly construct a network based on the direct trust relations between participants and rating similarity in service oriented environments, then propose an algorithm for propagating trust in the social network based environment which can produce personalized trust information for a specific service requester, and finally implement the trust model and simulate various malicious behaviors in not only dense but also sparse networks which can verify the attack-resistant and robustness of the proposed approach. The experiment results also demonstrate the feasibility and benefit of the approach.

YANG Xiao-hui,ZHOU Xue-hai,TIAN Jun-feng,LI Zhen

2010-01-01

Abstract:In order to improve current dynamic trusted evaluation theories and methods of software,the conceptions of behavior trace and checkpoint scene are proposed to depict the dynamic characteristics of software behaviors,the deviation degrees of behavior trace and checkpoint scene are measured by computing system call context values and formulating relationship constraint rules of system call arguments,and a dynamic trusted evaluation model is built based on software behavior automaton.Experimental results show that this novel model can accurately obtain information on software behavior and correctly detect attacks with lower overhead.

Peiyun Zhang,Mengchu Zhou,Yang Kong

DOI: https://doi.org/10.1109/tsmc.2019.2906310

2021-03-01

IEEE Transactions on Systems, Man, and Cybernetics: Systems

Abstract:In the last ten years, cloud services provided many applications in various areas. Most of them are hosted in a heterogeneous distributed large-scale cloud computing environment and face inherent uncertainty, unreliability, and malicious attacks that trouble both service users and providers. To solve the problems of malicious attacks (including solo and collusion deception ones) in a public cloud computing environment, we for the first time propose a double-blind anonymous evaluation-based trust model. Based on it, cloud service providers and users are anonymously matched according to user requirements. It can be used to effectively handle some malicious attacks that intend to distort trust evaluations. Providers may secretly hide gain-sharing information into service results and send the results to users to ask for higher trust evaluations than their deserved ones. This paper proposes to adopt checking nodes to help detect such behavior. It then conducts gain–loss analysis for providers who intend to perform provider–user collusion deception. The proposed trust model can be used to effectively help one recognize collusion deception behavior and allow policy-makers to set suitable loss to punish malicious providers. Consequently, provider-initiated collusion deception behavior can be greatly discouraged in public cloud computing systems. Simulation results show that the proposed method outperform two updated methods, i.e., one based on fail-stop signature and another based on fuzzy mathematics in terms of malicious node detection ratio and speed.

English Else

Xiaoqing Zheng,Zhaohui Wu,Huajun Chen,Yuxin Mao

DOI: https://doi.org/10.1007/11755593_31

2006-01-01

Abstract:The Semantic Web will only achieve its full potential when users have trust in its operations and in the quality of services and information provided, so trust is inevitably a high-level and crucial issue. Modeling trust properly and exploring techniques for establishing computational trust is at the heart of the Semantic Web to realize its vision. We propose a scalable probabilistic approach to trust evaluation which combines a variety of sources of information and takes four types of costs (operational, opportunity, service charge and consultant fee) and utility into consider during the process of trust evaluation. Our approach gives trust a strict probabilistic interpretation which can assist users with making better decisions in choosing the appropriate service providers according to their preferences. A formal robust analysis has been made to examine the performance of our method.

Surong Yan,Xiaolin Zheng,Deren Chen,Wen-Yu Zhang

DOI: https://doi.org/10.1002/int.20488

IF: 8.993

2011-01-01

International Journal of Intelligent Systems

Abstract:Improving quality of services (QoS) through applying trust and reputation management technology is increasingly popular in the literature and industry. Most existing trust and reputation systems calculate a general trust value or vector based on the gathered feedback without regard to trust's locality and subjectivity; therefore, they cannot effectively support a personal selection with consumer preferences. Our goal is to build a trust and reputation mechanism for facilitating a trustworthy and personal service selection in a service-oriented Web, where service peers can act as a service provider and/or a service consumer. A user-centric trust and reputation mechanism distinguishing the different trust context and content to enable a personal service selection with regard to trust preference in a service-oriented Web is represented in detail. It is widely recognized that reputation-based trust methods must face the challenge of malicious behaviors. To deal with the malicious feedback behaviors, we introduce a "bidirectional" feedback mechanism based on QoS experience similarity in our trust and reputation framework. The test run demonstrates that our method can significantly increase the success rate of service transactions and is effective in resisting various malicious behaviors of service peers, when it is compared to other similar methods. (C) 2011 Wiley Periodicals, Inc.

Xi Yang,Gul Jabeen,Ping Luo,Xiao-Ling Zhu,Mei-Hua Liu

DOI: https://doi.org/10.1007/s11390-018-1843-2

2018-01-01

Abstract:As trust becomes increasingly important in software domain, software trustworthiness - as a complex high-composite concept, has developed into a big challenge people have to face, especially in the current open, dynamic and ever-changing Internet environment. Furthermore, how to recognize and define trust problem from its nature and how to measure software trustworthiness correctly and effectively play a key role in improving users' trust in choosing software. Based on trust theory in the field of humanities and sociology, this paper proposes a measurable S2S (Social-to-Software) software trustworthiness framework, introduces a generalized indicator loss to unify three parts of trustworthiness result, and presents a whole metric solution for software trustworthiness, including the advanced J-M model based on power function and time-loss rate for ability trustworthiness measurement, the fuzzy comprehensive evaluation advanced-model considering effect of multiple short boards for basic standard trustworthiness, and the identity trustworthiness measurement method based on the code homology detecting tools. Finally, it provides a case study to verify that the solution is applicable and effective.

TIAN Li-qin,LIN Chuang

DOI: https://doi.org/10.3969/j.issn.1002-137X.2010.10.007

2010-01-01

Computer Science

Abstract:In wireless sensor networks,single static identity-based node authentication can't meet the dynamic security needs.In order to provide better security we must combine dynamic behaviour-based node trust with static identity-based node authentication.In node behavior trust evaluation,behavior evidence is the fundamental basis of behavior eva-luation.Because the node's behavior is random,uncertain,which causes behavior evidence was not complete and behavior value is not equal in each interaction,but as far as we know,this very important phenomenon in behavior trust evaluation is rarely considerd.This paper analyzed incomplete behavior evidence obtained in node interaction brings about a significant impact on trust evaluation and discussed the relationship between incomplete behavior evidence and behavior value,gave a kind of behavior trust evaluation strategy for different values interaction such as Less-Filling and Weight-Extension.Finally,we used two theorems and two properties to prove strategy's effect and property in behavior trust evaluation.Paper lays the quantity foundation in enhancing value-trust reliability of node behavior trust.

Yan Wang,Zenan Wu

DOI: https://doi.org/10.1109/access.2024.3426535

IF: 3.9

2024-07-19

IEEE Access

Abstract:With the rapid popularization of cloud computing, the increase in cloud traffic and resources has come with increased uncertainty. Therefore, the consideration of uncertainty and dynamics is becoming more important for the effective management of cloud resources. This article aims to establish a more accurate and reliable service evaluation model suited for a dynamic and changeable network environment, which provides users with more precise service selections and recommendations. Cloud service (CS) trust evaluation is conducted from subjective and objective perspectives in this paper. First, a set of objective criteria evaluation cloud is generated based on multivalued monitoring data, which can more accurately reflect the dynamic performance of CSs. Second, similar recommenders are identified based on the similarity of the objective criteria evaluation cloud of the current user and recommenders. Then an objective assessment is employed as a benchmark to remove malicious or potentially biased subjective recommendations by comparisons with corresponding subjective assessment characteristics. Finally, the objective trust evaluation cloud is converted into a trust degree expressed by the probabilistic linguistic term set (PLTS) method. Additionally, the subjective trust degree and trust preference defined by the trustor are combined to evaluate the trustworthiness of the CSs. Using the PLTS method to scale the trust of each criterion of CSs can systematically describe the dynamic performance of CSs, and consider the uncertainty and vagueness of trust. The experimental results demonstrate its effectiveness, feasibility and better accuracy compared with other methods.

computer science, information systems,telecommunications,engineering, electrical & electronic