Modification of the reputation and trust model in the tasks of information security of grid systems for resistance to the threat of "malicious host groups"

Abstract

In Grid-systems, the key idea is the joint use of resources, therefore there is a need for mutual trust between users and resource providers. In small grid systems, all participants are in a relationship of complete trust. For example, in the Ukrainian Academic Grid segment, all participants belong to the National Academy of Sciences of Ukraine, and on this basis there is complete trust. But in larger Grid-systems, participants may often not be directly connected to each other, and there is a risk that one of the participants will turn out to be unscrupulous and malicious. Trust mechanisms are designed to reduce these risks. The main purpose of security mechanisms is to provide protection against malicious users and groups of persons. Traditional security methods usually protect resources from malicious influences by restricting access to authorized users. However, in most cases there is a need to protect the system and its components from those who provide resources and services within heterogeneous computing systems. Thus, there are a large number of problems in the field of security that cannot be solved within the framework of traditional approaches. Information providers can, for example, commit fraud by providing false and unreliable information, and traditional security mechanisms are unable to protect against this type of threat. On the other hand, systems of reputation and trust can provide protection against these risks. The distinction between these two approaches to information security was first described by Rasmussen and Jansson (1996), who used the term hard security to refer to traditional mechanisms such as authentication and access control, and the term soft security to refer to what they called public control mechanisms. in general, exemplified by reputation and trust systems.

Keywords: reputation and trust models, Grid-systems, the threat of "malicious host groups".

References:
1. Foster I., Kesselman C., Tuecke S. The Anatomy of the Grid: Enabling Scalable Virtual Organizations // International Journal of Supercomputing Applications, 15(3), 2001. – p. 200-222
2. Castelfranchi C., Falcone R., Sadighi B., Tain Y.-H. Guest Editorial. Applied Artificial Intelligence, 14(9), 2000, Taylor & Frances,.
3. Waidner M.. Ercim News, Special Theme: Information Security. No 49, 2002.
4. Nixon P., Terzis S. First International Conference on Trust Management // Lecture Notes in Computer Science, vol. 2692, Springer, 2003.
5. Jensen C.D., Poslad S., Dimitrakos T. Second International Conference on Trust Management // Lecture Notes in Computer Science, vol. 2995, Springer,
6. Hermann P., Issarny V., Shue S. Third International Conference on Trust Management // Lecture Notes in Computer Science, vol. 3477, Springer, 2005..
7. Grandison T., Sloman M. A Survey of Trust in Internet Applications // IEEE Communications Survey and Tutorials, 3, 2000.
8. McKnight D.H., Chervany N.L. The Meaning of Trust // Technical Report MISRC Working Paper Series 96-04, University of Minnesota. Management Information Systems Research Center, 1996.
9. Gambetta D. Can We Trust Trust? In D. Gambetta (editor). Trust: Making and Breaking Cooperative Relations. Department of Sociology, Univ. of Oxford, 1988.
10. Josang A., Ismail R., Boyd C. A Survey of Trust and Reputation Systems for Online Service Provision // Decision Support Systems, 43(2), 2007. – p. 618-644,.
11. Rasmusson L., Janssen S. Simulated Social Control for Secure Internet Commerce // In C. Meadows. Proceedings of the 1996 New Security ParadigmsWorkshop. ACM.
12. CoreGrid. D.ia.03 survey material on trust and security. Technical Report D.IA.03, Core Grid, October 2005. http://www.coregrid.net/mambo/images/stories /IntegrationActivities/TrustandSecurity/d.ia.03.pdf
13. Abdul-Rahman A., Hailes S. Supporting trust in virtual communities // In HICSS ’00: Proceedings of the 33rd Hawaii International Conference on System Sciences-Volume 6, page 6007, Washington, DC, USA, 2000. IEEE Computer Society.
14. Kerschbaum F., et al. A trust-based reputation service for virtual organization formation. In Proceedings of the 4th International Conference on Trust Management, vol. 3986 of Lecture Notes in Computer Science, pp. 193–205. Springer, 2006.
15. Luke T.W.T., Jennings N.R., Rogers, Luck M. A Hierarchical Bayesian Trust Model based on Reputation and Group Behaviour // 6th European Workshop on Multi-Agent Systems, 18th-19th December, 2008, Bath, UK.
16. Arenas A.E., Aziz B., Silaghi G.C. Reputation Management in Grid-Based Virtual Organisations // Proc. International Conference on Security and Cryptography (SECRYPT 2008), Porto, Portugal, 26-29 Jul 2008, INSTICC.
17. Menasce D.A., Casalicchio E. Quality of service aspects and metrics in Grid computing // In: Proc. 2004 Computer Measurement Group Conference, Las Vegas, USA, 2004.
18. Hong-Linh T., Samborski R., Fahringer T. Towards a Framework for Monitoring and Analyzing QoS Metrics of Grid Services // In: Proc. Second IEEE Int Conf on e-Science and Grid Computing (e-Science'06), 2006.
19. Al-Ali R., von Laszewski G., Amin K., Hategan M., Rana O., Walker D., Zaluzec N. QoS Support for High-Performance Scientific Grid Applications // In: Proc. IEEE International Symposium on Cluster Computing and the Grid 2004. (CCGrid 2004). – p. 134–143.