Results 1 -
4 of
4
A trust and reputation model based on Bayesian network for web services
- In Proc. IEEE International Conference on Web Services
, 2010
"... A trust and reputation model based on bayesian network for web services ..."
Abstract
-
Cited by 10 (0 self)
- Add to MetaCart
(Show Context)
A trust and reputation model based on bayesian network for web services
Othmane, “An End-to-End Security Auditing Approach for Service Oriented Architecture
- In 31st IEEE Symposium on Reliable Distributed Systems (SRDS
, 2012
"... Abstract—Service-Oriented Architecture (SOA) is becoming a major paradigm for distributed application development in the recent explosion of Internet services and cloud computing. However, SOA introduces new security challenges not present in the single-hop client-server architectures due to the inv ..."
Abstract
-
Cited by 2 (1 self)
- Add to MetaCart
(Show Context)
Abstract—Service-Oriented Architecture (SOA) is becoming a major paradigm for distributed application development in the recent explosion of Internet services and cloud computing. However, SOA introduces new security challenges not present in the single-hop client-server architectures due to the involvement of multiple service providers in a service request. The interactions of independent service domains in SOA could violate service policies or SLAs. In addition, users in SOA systems have no control on what happens in the chain of service invocations. Although the establishment of trust across all involved partners is required as a prerequisite to ensure secure interactions, still a new end-to-end security auditing mechanism is needed to verify the actual service invocations and its conformance to the expected service orchestration. In this paper, we provide an efficient solution for end-to-end security auditing in SOA. The proposed security architecture introduces two new components called taint analysis and trust broker in addition to taking advantages of WS-Security and WS-Trust standards. The interaction of these components maintains session auditing and dynamic trust among services. This solution is transparent to the services, which allows auditing of legacy services without modification. Moreover, we have implemented a prototype of the proposed approach and verified its effectiveness in a LAN setting and the Amazon EC2 cloud computing infrastructure. Keywords-Service Oriented Architecture; security auditing; taint analysis; trust;
A Survey Study on Reputation-based Trust Mechanisms in Service-Oriented Computing
"... ABSTRACT – The Reputation-Based Trust mechanism (RBT) helps a service assess the trustworthiness of offered services, based on the feedback obtained from their users. A key challenge to apply the RBT is to prevent the cheating behavior of users when they provide recommendations-- they might give unf ..."
Abstract
-
Cited by 1 (0 self)
- Add to MetaCart
(Show Context)
ABSTRACT – The Reputation-Based Trust mechanism (RBT) helps a service assess the trustworthiness of offered services, based on the feedback obtained from their users. A key challenge to apply the RBT is to prevent the cheating behavior of users when they provide recommendations-- they might give unfair ratings to benefit themselves. This survey describes the research communities that are making efforts to solve the problems of the RBT in Service-Oriented Computing (SOC) domain. A summary of findings is then discussed to position the trends and directions of future studies. The survey can be used as a reference guide in a hope to make trust-based service systems more reliable and scalable.
