LIN Chuang,WANG Yuan-zhuo,TIAN Li-qin

DOI: https://doi.org/10.3969/j.issn.1009-6868.2008.01.003

2008-01-01

Abstract:While the information network's basic and global effect is gradually becoming more and more significant, traditional network theories, especially the network security theory, are not good enough to support the network's development. Supplying systematic and trustworthy services is the trend of the network study. In this paper, the trustworthy network is a kind of network whose behaviors and results can be predicted and managed by users. The trustworthy network has three components, namely, network service provider, network transmission and end user. The model, architecture, manageability and survival problem of the trustworthy network are discussed here to give guidance in solving scientific issues met in the research of trustworthy network.

guoming lu,lemin li,jianming liao,yujie hao,janping li

DOI: https://doi.org/10.1142/9789812799524_0243

2008-01-01

Abstract:Over the last two decades, the Internet has transformed the life of people around the world. However, there are aspects of its design, based on decisions made in the 1970's that severely limit its security, availability, and manageability. Trusted network is the promising technology to address these problems. In this paper, we first review trusted computing, and then we study essential properties of trusted network, at last outline the key challenges in constructing trusted networks.

Wen Li,Lingdi Ping,Kuijun Lu,Xiaoping Chen

DOI: https://doi.org/10.1109/ICIE.2009.33

2009-01-01

Abstract:As traditional network security cannot meet the security requirements, the international research shows that network security is on the way to Trustworthy Internet and that the trustworthy issue becomes a hot topic in the future Internet. Trust evaluation of users' behavior is an important part of Trustworthy Internet and a rational trust model plays a key role in the evaluation. This paper concludes many principles of the trust model by analyzing existing trust models and proposes a novel trust model including both the direct and indirect trust. In our model, the direct trust is more trustworthy and is weighted more with the more and more interactions and the indirect evaluation becomes less and less important. The subjective factor is considered to make the direct trust obey the principle of "rise-lowly, decline-quickly". Furthermore, recommenders' credibility is taken into account in the indirect trust evaluation, which can avoid the denigration and make indirect trust more objective. We also consider the process of referral of the credibility to gain more information to evaluate the indirect trust effectively. Credibility evaluation is the basis of the filtering of low credibility and the improvement of trust evaluation. Finally, several experiments are shown to illustrate the properties of the model. © 2009 IEEE.

WANG Sheng,YU Hong-fang,XU Du

DOI: https://doi.org/10.3969/j.issn.1009-6868.2008.01.008

2008-01-01

Abstract:The Internet plays increasingly important roles in everyone's life, but the existence of a mismatch between the basic architectural idea beneath the Internet and the emerging requirements for it is also becoming more and more obvious. Although the Internet community came up with a consensus that the future network should be trustworthy, the concept of networks and the ways leading us to a trustworthy network are not yet clear. This research insists that the security, controllability, manageability, and survivability should be basic properties of a trustworthy network. The key ideas and techniques involved in these properties are studied, and recent developments and progresses are surveyed. At the same time, the technical trends and challenges are briefly discussed.

Xue-hai Peng,Chuang Lin

DOI: https://doi.org/10.1109/DASC.2006.20

2006-01-01

Abstract:Existing isolated and add-on secure systems are rarely robust under attack, misoperation and internal faults. Secure communication only offers little protection if one ore more components are compromised, and are not sufficient for holistic and systemic security. This paper proposes the concept of trustworthy networks, which makes advances along these traditional researches on network security in combination. We outline the key challenges in constructing trustworthy networks, and define three properties, namely security, survivability and controllability. Consulting human interactions, the abstract architecture for trustworthy networks is proposed, depicting protocols layers, topology structure, entities and components, and protocol steps

ZHANG Min,LUO Guang-chun

DOI: https://doi.org/10.3969/j.issn.1001-0548.2007.06.012

2007-01-01

Abstract:The application security problem of Internet is far from being completely solved. In this paper, some basic concepts and critical issues in trustworthy computer network are first introduced. Then an architecture of trustworthy network, and host Identity Protocol as end system identity, is proposed to make sure communicate trustworthy.

谭良,徐志伟

DOI: https://doi.org/10.3969/j.issn.1002-137x.2008.10.003

2008-01-01

Computer Science

Abstract:The issue of the transitive trusted chain is the foundation for trusted computing.This paper surveys the technologies and the theories of the transitive trusted chain,including the technology projects of the transitive trusted chain,the technologies of the trust for measurement,the theories of the transitive trusted chain and the trust for measurement.Some fields are worthy to be explored are pointed out including some key technologies,such as the static trust for measurement and the dynamic trust for measurement,and some foundation theories,such as the level model of the trusted chain,the trust loss model and the theory of the dynamic trust for measurement for software,and so on.

Chuang Lin,Xue-Hai Peng

DOI: https://doi.org/10.1007/s11390-006-0732-2

IF: 1.871

2006-01-01

Journal of Computer Science and Technology

Abstract:In this paper, the architecture of trustworthy and controllable networks is discussed to meet arising application requirements. After reviewing the lessons and experiences of success and failure in the Internet and summarizing related work, we analyze the basic targets of providing trustworthiness and controllability. Then, the anticipant architecture is introduced. Based on the resulting design, several trustworthy and controllable mechanisms are also discussed.

Tiange SI,Duo LIU,Yiqi DAI

DOI: https://doi.org/10.3321/j.issn:1000-0054.2007.07.034

2007-01-01

Abstract:To deal with worsening network security problems, a trusted computer system model for network applications was developed based on the transparence computing paradigm. The model effectively controls security problems within the computer by using transparence computing technology. Problems among computers inside a network can be controlled by using a star topology with the monitor in the center of the model which watches and controls communications among the system entities. The monitor can filter data transfers and dynamically isolate physical connections among host computers, between host computers and servers, as well as between host computers and the outside network. Analyses show that this model effectively solves network security problems and guarantees local area network safety.

Wu Jianping,Bi Jun

2020-01-01

Abstract:The ongoing research on secure and trustworthy issues in next generation Internet technology is still insufficient. China has achieved some progress in the field of the trusted next generation Internet. Under the support of the National High

Wei Ou,Xiaofeng Wang,Wenbao Han,Yongjun Wang

DOI: https://doi.org/10.1109/iccit.2009.144

2009-01-01

Abstract:With the growth of network in size and complexity, the isolated security systems are facing many challenges and they can not meet users’ needs. As a new type of network, trusted network can make up for security defects of traditional network, change from passive recovery to active attack and end vicious network behaviors from head. Researching trusted network model is popular nowadays. Based on BLP model, considering securities of network, a trusted network model is proposed in this paper. Related definitions of this model are given and security properties of this model are defined. Security policies and rules of restricting and analyzing behaviors are presented.

Huilin Wang,Xin Kang,Tieyan Li,Zhongding Lei,Cheng-Kang Chu,Haiguang Wang

DOI: https://doi.org/10.48550/arXiv.2212.01618

2022-12-03

Abstract:With the development of Information and Communication Technologies, trust has been applied more and more in various scenarios. At the same time, different organizations have published a series of trust frameworks to support the implementation of trust. There are also academic paper discussing about these trust standards, however, most of them only focus on a specific application. Unlike existing works, this paper provides an overview of all current available trust standards related to communication networks and future digital world from several main organizations. To be specific, this paper summarizes and organizes all these trust standards into three layers: trust foundation, trust elements, and trust applications. We then analysis these trust standards and discuss their contribution in a systematic way. We discuss the motivations behind each current in forced standards, analyzes their frameworks and solutions, and presents their role and impact on communication works and future digital world. Finally, we give our suggestions on the trust work that needs to be standardized in future.

Information Theory,Cryptography and Security

FENG Dengguo,LIU Jingbin,QIN Yu,FENG Wei,Wei FENG,Yu QIN,Jingbin LIU,Dengguo FENG

DOI: https://doi.org/10.1360/ssi-2020-0096

2020-08-01

Scientia Sinica Informationis

Abstract:Trusted computing is based on a hardware security mechanism establishing a trusted computing environment and comprehensively enhances the system and network trust from the architectural perspective. With the development of information technology and continuous emergence of new application scenarios, security threats in the cyberspace are becoming increasingly serious; hence, trusted computing is actively researched in both academia and industry to find solutions against such treats. This paper summarizes the development process of trusted computing theory from the perspective of innovation and development. The study centers around one of the authors research results in trusted computing over the past 20 years. It proposes a trusted computing technology architecture that covers two method foundations, three trust cores, and four key technologies. Furthermore, the paper summarizes important research problems in mobile trusted computing, quantum-resistant trusted computing, trusted Internet of Things (IoT), trusted cloud, and trusted blockchain, elaborating on the integration and development of trusted computing in these fields. In mobile trusted computing, the design and implementation of a trusted execution environment architecture with software/hardware co-design is the focus of research. Another two important research issues in mobile trusted computing are the runtime security isolation and protection of the mobile operating systems kernel and trusted execution environment-based mobile application security protection. Due to the characteristics of embedded environments and limitation of resources, the construction of lightweight trusted roots, efficient and secure software attestation, practical secure code update mechanism, and swarm device attestation are important issues for further research in trusted IoT. In new scenarios such as quantum-resistant trusted computing, trusted cloud, and trusted blockchain, trusted computing is also constantly expanding its application boundaries and playing an increasingly important role. Finally, this paper looks ahead and discusses the development trends in trusted computing.

Fujun Feng,Chuang Lin,Junshan Li

DOI: https://doi.org/10.1109/NSWCTC.2009.405

2009-01-01

Abstract:Trustworthy network is the inevitable trend in the development of high trusted computing and Internet. It is beyond the traditional information security including confidentiality, integrity and availability, but on the survivability and controllability. Trustworthiness of users on identity and behaviors is very important for trustworthy network, which can be realized by access control technology. Firstly, we discuss the security requirements of access control in trustworthy network. Then we propose a Trust and Context based Access Control (TCAC) model, and describe the core, hierarchical and constrained TCAC in detail. Finally, a trust evaluation mechanism is presented.

Fan Yan,Yang Jian-Wen,Cheng Lin

DOI: https://doi.org/10.1109/icmtma.2015.77

2015-06-01

Abstract:The rapid development of computer network system brings both a great convenience and new security threats for users. Network security problem generally includes network system security and data security. Specifically, it refers to the reliability of network system, confidentiality, integrity and availability of data information in the system. Network security problem exists through all the layers of the computer network, and the network security objective is to maintain the confidentiality, authenticity, integrity, dependability, availability and audit-ability of the network. This paper introduces the network security technologies mainly in detail, including authentication, data encryption technology, firewall technology, intrusion detection system (IDS), antivirus technology and virtual private network (VPN). Network security problem is related to every network user, so we should put a high value upon network security, try to prevent hostile attacks and ensure the network security.

袁坚,王钺

DOI: https://doi.org/10.3969/j.issn.1673-5692.2008.06.001

2008-01-01

Abstract:The development of application technologies and theories in network engineering is first briefly reviewed.The dependability of networked systems as a boarder security conception is further introduced,which will redound to the better understanding of potential requirements of network applications.For future networkcentre operations,conducting theoretical and experimental research on the dependable networked systems has become an urgent need.We show that there are still a few big challenges ahead,as presented in 2006 released NRC report,Network Science,which was supported by the US army.

阎浩,张燕,严筱永

DOI: https://doi.org/10.3969/j.issn.1006-2475.2010.01.037

2010-01-01

Abstract:The traditional campus network system uses firewall and some access control policies to ensure its security,the network of this model just can prevent the danger from external,but can not effectively guard against the internal hidden security flaws,therefore,improving the internal security is an important link for secirity of the whole campus network.This paper analyzes the principle and characteristic of trusted network,applies the trusted network into the campus network,puts forward a new campus network system based on the authentication technology,at the same time,also describes its structure and elements,and gives the network topology diagram,finally analyzes the priciple of security mechanism and the specific methods for achieving this.

Jian Wang,Yanheng Liu,Yu Jiao

DOI: https://doi.org/10.1016/j.comcom.2010.02.034

IF: 5.047

2010-01-01

Computer Communications

Abstract:Trusted computing technology is expected to guarantee security for network and terminal in future communication environment. In this work, we introduce the concept of trusted attribute to build a novel framework for hierarchical trusted access and feasible remediation. The categorization of trusted attribute is justified primarily in terms of the point in the boot cycle of a system at which the respective attributes are measured. The concept of trusted attribute is extended to the notion of a ''trusted grade'' that is granted by a new added module so-called trusted level division function. Also we give a reasonable example of dividing trusted grades. We discuss the promising applications of our presented framework and the access procedure of terminal. The simulations show that by the proposed framework, not only the security and reliability of network can be ensured, but also the flexibility of terminal to access network is improved. And that the presented framework can provide necessary supports for interoperability of different equipment manufacturers. It also can be concluded that the presented remediation framework is easy to be deployed, by which the convenient and reliable remediation services are able to be offered to those terminals without achieving the security standards of local network.

WU Jian-ping,BI Jun

DOI: https://doi.org/10.3969/j.issn.1009-6868.2008.01.002

2008-01-01

Abstract:Currently, the research on the security and credibility issues of the Next Generation Internet (NGI) is still insufficient. China has made some progress in the trustworthy NGI area. Institutes including Tsinghua University completed the National 863 High-tech Project, Research on key technologies of trustworthy next generation Internet and application demonstration, which focuses on the security and credibility issues of the current Internet. On this basis of source address validation technology, the project designed and implemented prototype systems of trustworthy Internet infrastructures, security services, and typical applications. The trustworthy NGI is expected to provide support for building of trustworthy computer network applications, trustworthy telecom network applications, and trustworthy IPTV network applications.

Gong Jie-zhong,Chen Gong-liang,Li Lin-sen,Li Jian-hua

DOI: https://doi.org/10.3969/j.issn.1674-9456.2011.10.001

2011-01-01

Abstract:According to the past research of networks,trust was used to be treated as a part of security,and all discussion about trust were limited by security.But in fact,they are independent from each other.This paper presents the difference and relations between them by the analysis to the Internet of Things,and emphasizes the importance of the trust model.Finally,the application of RFID in libraries is described as an instance,in order to illustrate that the trust model for basic data is a guarantee for the future of the Internet of Things.