%0 Journal Article %1 Shm_Tal_2005 %A Shmatikov, Vitaly %A Talcott, Carolyn %D 2005 %I IOS Press %J Journal of Computer Security %K event license management misuse reputation resource trust violation %N 1 %P 167-190 %T Reputation-Based Trust Management %U http://iospress.metapress.com/content/x0aah8gchyxeexqv %V 13 %X We propose a formal model for reputation-based trust management. In contrast to credential-based trust management, in our framework an agent's reputation serves as the basis for trust. For example, an access control policy may consider the agent's reputation when deciding whether to offer him a license for accessing a protected resource. The underlying semantic model is an event semantics inspired by the actor model, and assumes that each agent has only partial knowledge of the events that have occurred. Restrictions on agents' behavior are formalized as licenses, with "good" and "bad" behavior interpreted as, respectively, license fulfillment and violation. An agent's reputation comprises four kinds of evidence: completely fulfilled licenses, ongoing licenses without violations or misuses, licenses with violated obligations, and misused licenses. This approach enables precise formal modeling of scenarios involving reputations, such as financial transactions based on credit histories and information sharing between untrusted agents.

@article{Shm_Tal_2005, abstract = {We propose a formal model for reputation-based trust management. In contrast to credential-based trust management, in our framework an agent's reputation serves as the basis for trust. For example, an access control policy may consider the agent's reputation when deciding whether to offer him a license for accessing a protected resource. The underlying semantic model is an event semantics inspired by the actor model, and assumes that each agent has only partial knowledge of the events that have occurred. Restrictions on agents' behavior are formalized as licenses, with "good" and "bad" behavior interpreted as, respectively, license fulfillment and violation. An agent's reputation comprises four kinds of evidence: completely fulfilled licenses, ongoing licenses without violations or misuses, licenses with violated obligations, and misused licenses. This approach enables precise formal modeling of scenarios involving reputations, such as financial transactions based on credit histories and information sharing between untrusted agents.}, added-at = {2008-04-14T13:09:34.000+0200}, author = {Shmatikov, Vitaly and Talcott, Carolyn}, biburl = {https://www.bibsonomy.org/bibtex/246fcffc277d04526f645e5dbb34a4e07/dawinci}, interhash = {835ef0b0b5e6335d481490b63f096f12}, intrahash = {46fcffc277d04526f645e5dbb34a4e07}, journal = {Journal of Computer Security}, keywords = {event license management misuse reputation resource trust violation}, month = {January}, number = 1, pages = {167-190}, publisher = {IOS Press}, timestamp = {2008-04-14T13:09:35.000+0200}, title = {Reputation-Based Trust Management}, url = {http://iospress.metapress.com/content/x0aah8gchyxeexqv}, volume = 13, year = 2005 }