Shan WANG,Ying GAO,Tao-yuan CHENG,Kun-Long ZHANG

2005-01-01

Journal of Computer Applications

Abstract:In open service grid,to establish trust relationships among different domains is a basic problem so as to cooperate between them.In this paper a two-layer trust model based on behavior was proposed to enhance grid security and extensibility.This trust model was used to resolve trust issues between entities in different domains.The upper layer established and maintained recommendation trust relationships between different domains in grid.Lower layer was in charge of how domain manager evaluated trust of entities in his domain.An algorithm was given to adjust trust relationships between domains based on entities interactions,and a practical method to process recommendation trust.At last,the experiment results show that two-layer trust model is effective and extensible.

GAO Ying,CHENG Tao-yuan,ZHAN Jiang

DOI: https://doi.org/10.3321/j.issn:1002-8331.2006.29.048

2006-01-01

Computer Engineering and Applications Journal

Abstract:In open service grid,to establish trust relationships among different domains is a basic problem so as to cooperate between them.This paper proposes a two-layer trust model based on bayesian network to enhance grid security and extensibility.We use such trust model to resolve trust issues between entities in different domains.The upper layer establishes and maintains recommendation trust relationships between different domains in grid,lower layer is in charge of how domain manager evaluates trust of entities in his domain.We leverage Bayesian network and domain hierarchy to incorporate all the factors to get entities' direct trust value.

HL Hu,D Chen,CQ Huang

DOI: https://doi.org/10.1007/11428862_31

2005-01-01

Abstract:The open and anonymous of grid make the task of controlling access to sharing information more difficult, which cannot be addressed by traditional access control methods. In this paper, we identify access control requirements in such environments and propose a trust based access control framework for grid resource sharing. The framework is an integrated solution involving aspects of trust and recommendation models, based the discretionary access control (DAC), and are applied to grid resource-sharing systems. In this paper, we integrate technology of web services into idea of trust for describing resources.

LI Wen-juan,WANG Xiao-dong,FU Yang-geng,FU Zhi-xiang

DOI: https://doi.org/10.3969/j.issn.1000-2243.2006.02.009

2006-01-01

Abstract:We firstly analyze three trust models in grid environment, compare their constructs, advanta|ges and disadvantages, then bring forward some advice such as defining identity weight, realizing authen|tication in the initialization, regarding trust recommendation as one type of trade context, enhancing self-determination of grid entities and establishing trust management layer, and based on the former analy|sis develop framework of a novel grid trust model.

Wenjuan Li,Lingdi Ping

DOI: https://doi.org/10.1007/978-3-642-10665-1_7

2009-01-01

Abstract:Trust is one of the most important means to improve security and enable interoperability of current heterogeneous independent cloud platforms. This paper first analyzed several trust models used in large and distributed environment and then introduced a novel cloud trust model to solve security issues in cross-clouds environment in which cloud customer can choose different providers' services and resources in heterogeneous domains can cooperate. The model is domain-based. It divides one cloud provider's resource nodes into the same domain and sets trust agent. It distinguishes two different roles cloud customer and cloud server and designs different strategies for them. In our model, trust recommendation is treated as one type of cloud services just like computation or storage. The model achieves both identity authentication and behavior authentication. The results of emulation experiments show that the proposed model can efficiently and safely construct trust relationship in cross-clouds environment.

GUI Jin-song,CHEN Zhi-gang,DENG Xiao-heng,LIU An-feng

DOI: https://doi.org/10.3969/j.issn.1000-1220.2007.10.011

2007-01-01

Abstract:In grid environments,trust mechanisms are effective methods which can solve security problems of grid services.Identity trust cannot replace behavior trust.The paper studies behavior trust relations among grid services which are organized in the P2P pattern,presents a behavior trust model,and studies the application of fuzzy sets theory in the behavior trust model.The paper solves trust metric,trust transfer,trust combination and trust decision making in the proposed behavior trust model.Simulations and result analyses show that the model is reasonable,effective and practical.

Gui Xiaolin,Xie Bing,Li Yinan,Qian Depei

DOI: https://doi.org/10.1109/SCC.2004.1358053

2004-01-01

Abstract:For protecting Grid resources and Grid applications, a behaviors-based trust model is introduced here. The behaviors and trusts dynamically judge the secure levels of Grid entities through the their history and actuality of behaviors. In this paper, the trust relationships among users, resources and applications are discussed, a new trust model based on behavior tracks is proposed by improving the components of reputation in traditional trust mode, and then an simple experimentation is given in our experimental grid using this model.

Jie Jiang,Dongxian Shi,Deren Chen

DOI: https://doi.org/10.1109/icss.2010.56

2010-01-01

Abstract:In e-service environments, the delegation relationship is rarely considered as one of important factors of trust models. Most of work on delegation relationship focused on the permission of delegatee, delegation depth, delegation constrain and so on. They ignored the potential hazards brought from blind delegation, so easily to form the collusion attack. This paper defines the concept of delegation trustworthiness firstly, and then proposes a method for calculating trustworthiness based on the delegation relationship. The method enables the involved delegator and delegatee to be responsible for their actual behavior in delegation process. The delegate targets can choose a reliable trust entity according to the value of trustworthiness. Finally, a P2P simulation platform is used for experiments, and the simulation results presented verify the validity of the trustworthiness calculation.

Wenjuan Li,Lingdi Ping,Xuezeng Pan

DOI: https://doi.org/10.1109/iceie.2010.5559829

2010-01-01

Abstract:Security and interoperability is the biggest challenge to promote cloud computing currently. Trust has proved to be one of the most important and effective alternative means to construct security in distributed systems. In order to efficiently and safely construct entities' trust relationship in cloud and cross-clouds environment, this paper proposed a novel cloud trust model and a new cloud security framework. The propose trust model is domain-based. It divides one cloud provider's resource nodes into the same trust domain. It designs different trust strategies for different roles. Trust recommendation is treated as one type of cloud services just like computation or storage. Based on the proposed trust model, it introduced a novel cloud security framework with an independent trust management module. Using the proposed security model, it introduced some trust-based security mechanisms. Results of simulation experiments show that the proposed security model can achieve high transaction success rate with high trust accuracy.

Xl Gui,B Xie,Yn Li,Dp Qian

DOI: https://doi.org/10.1007/978-3-540-30207-0_60

2004-01-01

Abstract:Computational Grids need support the distributed high performance computing with security and reliability. While the fact is when malicious users apply computational resources or illegally modify their secure levels, they can get system-level data or outputs belong to other applications by running cock-horse, even more they can destroy the whole system. For solving these security problems in Grids, a Grid security model with users behaviors and trusts is introduced. And by improving the components of reputation in traditional trust [1], [2] model, a new trust model with mathematical description is presented, and the grid security infrastructure with this trust model is described.

GUI Jin-song,CHEN Zhi-gang,DENG Xiao-heng,LIU An-feng

DOI: https://doi.org/10.3321/j.issn:1002-8331.2007.02.007

2007-01-01

Computer Engineering and Applications Journal

Abstract:In grid environments,trust mechanisms are effective methods which can solve security problems of grid services.The paper studies behavior trust relations among grid services which are organized in the P2P pattern,presents a behavior trust model,and studies the application of D-S evidence theory and improved evidence conflict resolution policies in the behavior trust model.The paper solves trust metric,trust transfer and trust combination in the proposed behavior trust model.Simulations and result analyses show that the model is reasonable,effective and practical.

Changsong Ding,Yi Fu,Zhigang Hu,Peng Xiao

DOI: https://doi.org/10.1109/ICIS.2009.169

2009-01-01

Abstract:With the converging of grid computing and Web service, grid has extended its territory from traditional computing grid to service-oriented grid, which is aiming to realize coordinated resource sharing and problem solving through service selection and composition. Therefore, selecting credible services for applications becomes a key issue in grid environment. Current research on trust inherits the conception of trust from P2P network which is coarse-grained and subjective to satisfy the requirements in grid environment. In this paper, a novel trust model considering userpsilas QoS constraints is proposed. Two new concepts, namely trustworthiness of service and satisfactoriness of service, are introduced into the proposed trust model, which are used to describe the resourcespsila capabilities and userspsila satisfaction respectively. The proposed trust model applies Bayesian Network to evaluate servicespsila trustworthiness that takes into account userspsila multiple QoS metrics. Simulative results show that the establishment of trust is more efficient. Also, when using the proposed trust model for service selection, experimental results indicate that it outperforms other models in terms of query success rate and userpsilas satisfaction.

Tiezhu Zhao,Shoubin Dong

DOI: https://doi.org/10.1109/ChinaGrid.2010.49

2010-01-01

Abstract:Grid security is a major requirement in grid computing. Trust management is considered as an effective approach to enhance grid security. This paper introduces the trust into the multi-domain grid and qualifies grid trust as the relationship between grid resource providers and grid consumers. In order to provide more flexible and scalable protection for grid resources and services in multi-domain grid, this paper puts forward a novel trust model in multi-domain grid environment. As an application of our trust model, this trust model is originally introduced into grid security framework as an important component of security framework. By analyzing the case study, it is easy to see that our trust aware security model can meet the security requirement of multi-domain grid environment and has the characters of better security, scalability and flexibility.

Kai Wei,Shaohua Tang

DOI: https://doi.org/10.1109/CIS.2009.63

2009-01-01

Abstract:Facing the enlarging scale of Grid and its increasing number of users, the Grid Service Providers (GSPs) need to evaluate and manage the trust of all users effectively. A D-S-theory-based multi-level trust evaluation model is proposed in this paper to solve the problem. In accord with the architecture for Grid, this model makes the result more reasonable and accurate, restrains the attacks such as Whitwash, and provides better protection for the GSP.

Xudong Ni,Junzhou Luo

DOI: https://doi.org/10.1109/waina.2008.162

2009-01-01

International Journal of Web and Grid Services

Abstract:Grid computing enables coordinated resource sharing in dynamic, distinct Virtual Organisations (VOs), which consist of different grid entities from traditional organisations. Recently, the main solution of grid security is applying trust as an important factor in grid computing to realise cooperation between unknown entities, especially for VOs. However, most of the research work inherits the concept of trust from Peer-to-Peer (P2P) networks and does not accurately satisfy the requirements in a grid environment. In this paper, we present a clustering analysis and agent-based trust model that introduces VO trust relationships into traditional grid entities, with which we can more effectively and dynamically share grid resources. We also propose a clustering analysis method to evaluate grid entities' trust in VOs and a weighted path to compute the transitivity of trust. In addition, two kinds of agents are introduced to the trust evaluation process to collaborate on and accomplish trust computation between VOs. The VO agent is a resident agent that stays in a VO which initiates search agent to collect information. A search agent is a mobile agent and is usually dispatched to many VO nodes. The simulation result shows that our model improves the overall performance of grid systems.

Luo Zhen,Li Zhishu,Cai Biao

DOI: https://doi.org/10.1109/iccsit.2010.5563587

2010-01-01

Abstract:During the procedure of resource discovery in Grid, a requester (consumer) may be offered several resources (providers) which identities have been verified to submit his task. How to make decision on selecting providers to complete his job reliably is an emergency. Establishing trust system is an alternative to respond the challenge. For the sake of future works in computational Grid are to refine the existing models, to define and to develop additional components, so define the trust model infrastructure for grid security module is necessity. This paper analyzes the fundamental trust requirements, proposes a trust signaling prototype and developments of our simulating trust mould which with we proposed computational model and signaling model for Grid security module is discussed at the end.

Junzhou Luo,Xudong Ni,Jianming Yong

DOI: https://doi.org/10.1016/j.ins.2009.01.039

IF: 8.1

2009-01-01

Information Sciences

Abstract:The purpose of grid computing is to enable coordinated resource sharing and support cooperative work between different domains in dynamic grid environments. In order to protect each participant’s privilege and security, a secure and efficient access control is essential. This paper presents a new approach of access mechanism based on trust relationships across domains. A new calculation method of trust in grid is proposed and the difference between intro-domain trust and inter-domain trust is analyzed. In addition, a novel access control framework combined with trust degree is given from this proposal. It is shown to be adaptive for both intro-domain and inter-domain conditions. Hence, a prototype system based on the proposed model is introduced; furthermore, it has been shown as a dynamic and fine-granularity access control method through performance analyses and has also been demonstrated as a suitable system for grid environments.

LI Ming-Chu,YANG Bin,ZHONG Wei,TIAN Lin-Lin,JIANG He,HU Hong-Gang

DOI: https://doi.org/10.3724/SP.J.1016.2009.02187

2009-01-01

Chinese Journal of Computers

Abstract:There is a problem of static status in the existing authorization systems of grids that don’t provide feedback mechanism to feedback the use of permission by users. When a user or a service with creditability at the past would become unlikelihood,the authorization systems could not find this status in time to adjust the user’s permission,so that it is possible for malicious users to destroy the grid systems. Thus,building feedback mechanism in authorization to adjust users’ roles by their behavior dynamically is necessary to the security of grid systems. In this paper,we analyze the characteristics of the existing authorization systems and trust models in grid,and point out their shortcomings. This paper proposes a new dynamic authorization model based on feedback mechanism to solve static state of mechanisms. This model improves the authorization system for CAS,and adds trust degree computing mechanism and feedback mechanism to CAS. This paper proposes a new trust model with two layers based on behavior in the trust degree computing mechanism to distinguish important services and common services by using service weight,so it effectively protects important services in grid from the attack of malicious nodes;This paper also use a new method to account trust degrees between domains to solve the problem of dishonesty feedback. By using two-layer trust model based on behavior to get the changes of trust degrees,the feedback mechanism can adjust users’ roles by users’ behavior. In this paper,a series of simulation experiments are designed such as validating the characteristic of new model,controlling to malicious nodes. These experiments validate the sensitivity,astringency,validity and rationality with behavior in the two-layer trust model based on these behaviors.

Yiyu Yu,Junhua Tang,Liming Hao,Sisi Dai,Yue Wu

DOI: https://doi.org/10.1109/glocom.2008.ecp.411

2009-01-01

Journal of Computer Applications

Abstract:In this paper, we propose a trust model for the open Grid market. Our trust model emphasizes the importance of both direct trust and indirect trust/reputation when evaluating the trustworthiness of a Grid service provider. Since many factors contribute to the direct and indirect trust, we propose a novel method based on multiple attribute decision making (MADM) theory to determine the objective weights of both direct and indirect trust. The simulation results demonstrate that our trust model reflects the trustworthiness of a service provider more accurately than the weighted feedback model and eBay trust model, and thus improves user satisfaction in the open Grid environment.

Liu Sifeng,Jia Jinyuan

DOI: https://doi.org/10.3969/j.issn.1000-386X.2007.02.061

2007-01-01

Abstract:Trust has become an important factor of security in grid computing,generally,it is fuzzy and varies temporally and spatially.This paper firstly studied the fuzzy,dynamic and complex natures of trust in grid computing,then,proposed a good solution,dynamic VOs trust domain,to grid security based on fuzzy logic theory,and finally designed a trust management architecture of grid security by incorporating a novel trust model,which is capable of capturing various types of trust relationships that exist in a Grid system and providing mechanisms for trust evaluation.