Trust Management Systems: Reference Architecture and Personalization

dc.contributor.authorRashad, Hisham S. M.en
dc.contributor.committeechairEltoweissy, Mohamed Youssefen
dc.contributor.committeememberAbbott, A. Lynnen
dc.contributor.committeememberMidkiff, Scott F.en
dc.contributor.committeememberXuan, Jianhuaen
dc.contributor.committeememberAbdel-Hamid, Aymanen
dc.contributor.committeememberLu, Chang-Tienen
dc.contributor.departmentElectrical and Computer Engineeringen
dc.date.accessioned2019-03-15T06:00:39Zen
dc.date.available2019-03-15T06:00:39Zen
dc.date.issued2017-09-20en
dc.description.abstractTrust is the cornerstone of success in any relationship between two or more parties. Generally, we do not socialize, seek advice, consult, cooperate, buy or sell goods and services from/to others unless we establish some level of mutual trust between interacting parties. When e-commerce was merging infancy, the concept of trusting an entity in a virtual world was a huge obstacle. Gradually, increasingly-sophisticated, largely generic reputation scoring and management systems were embedded into the evolving marketplaces. Current technologies to include cloud computing, social networking, and mobile applications, coupled with the explosion in storage capacity and processing power, are evolving large-scale global marketplaces for a wide variety of resources and services, such as Amazon.com, BitTorrent, WebEx and Skype. In such marketplaces, user entities, or users for short; namely, consumers, providers and brokers, are largely autonomous with vastly diverse requirements, capabilities and trust profiles. Users' requirements may include service quality levels, cost, ease of use, etc. Users' capabilities may include assets owned or outsourced. Trustors' profiles may include what is promised and commitments to keep these promises. In such a large-scale heterogeneous marketplace, the trustworthy interactions and transactions in services and resources constitute a challenging endeavor. Currently, solving such issues generally adopts a "one-size fits all" trust models and systems. Such approach is limiting due to variations in technology, conflicts between users' requirements and/or conflicts between user requirements and service outcomes. Additionally, this approach may result in service providers being overwhelmed by adding new resources to satisfy all possible requirements, while having no information or guarantees about the level of trust they gain in the network. Accordingly, we hypothesize the need for personalizable customizable Trust Management Systems (TMSs) for the robustness and wide-scale adoption of large-scale marketplaces for resources and services. Most contemporary TMSs suffer from the following drawbacks: • Oblivious to diversities in trustors' requirements, • Primarily utilize feedback and direct or indirect experience as the only form of credentials and trust computations, • Trust computation methodologies are generally hardcoded and not reconfigurable, • Trust management operations, which we identify as monitoring, data management, analysis, expectation management, and decision making, are tightly coupled. Such coupling impedes customizability and personalization, and • Do not consider context in trust computations, where trust perspectives may vary from a context to another. Given these drawbacks and the large scale of the global marketplace of resources and services, a reference architecture for trust management systems is needed, which can incorporate current systems and may be used in guidance and development of a wide spectrum of trust management systems ranging from un-personalized to fully personalized systems. Up to our knowledge, no TMS reference architecture exists in the literature. In this dissertation, we propose a new Reference Architecture for Trust Management (RATM). The proposed reference architecture applies separation of concern among trust management operations; namely, decision expectation, analytics, data management and monitoring. RATM defines trust management operations through five reconfigurable components which collectively can be used to implement a wide spectrum of trust management systems ranging from generic to highly personalized systems. We used RATM for trust personalization, where we propose a Personalized Trust Management System (PTMS) based on RATM. We evaluated PTMS's scalability and demonstrated its effectiveness, efficiency and resilience by contrasting against a Generic Trust Management System (GTMS). We used two case studies for our evaluations; namely, BitTorrent and a video conferencing application. Intellectual Merit In this work, we propose RATM, a reference architecture for trust management systems that can be used to implement a wide variety of trust management systems ranging from generic systems (un-personalized) to highly personalized systems. We assume service-based environment where consumers, brokers and service providers are interacting and transacting in services and resources to satisfying their own trust requirements. We used RATM to implement a personalized trust management system (TMS). The main contributions of this work are as follows: • Proposing RATM for the guidance and development of a wide spectrum of TMSs ranging from un-personalized to fully personalized systems, and • Utilizing our RATM to propose and implement a personalized, scalable TMS with varying trust computation models. Broader Impact RATM provides reference architecture for trust management which can be used to develop and evaluate a wide spectrum of TMSs. Personalization, in general, paves the road for reaching high levels of satisfaction, where interacting parties' requirements are individually considered and thus consumers are served the best suited service(s). Hence, we claim that PTMS would largely enhance large-scale heterogeneous systems offering services and resources. This could lead to more cooperation, more transactions, more satisfaction, less malicious behavior and lower costs.en
dc.description.abstractgeneralTrust is the cornerstone of success in any relationship between two or more persons. Generally, we do not socialize, seek advice, consult, cooperate, buy or sell goods and services from/to others unless we establish some level of mutual trust between interacting parties. When ecommerce was firstly used, the concept of trusting a service delivered by someone who is not physically in the same place was a huge obstacle. Gradually, more sophisticated, largely generic reputation scoring and management systems were used into the new internet marketplaces. A reputation scoring and management system is a system which collects feedback from different users about service providers in a certain marketplace on the internet and uses them to anticipate future behavior of these providers. Current computer technologies to include cloud computing, social networking, and mobile applications, coupled with the explosion in computer and mobile devises’ storage capacity and processing power, are evolving large-scale global marketplaces offering a wide variety of resources and services to consumers across the globe. Examples include Amazon.com, BitTorrent, WebEx and Skype. In such marketplaces, consumers, providers and brokers, are largely autonomous with vastly diverse requirements, capabilities and trust profiles. By autonomous we mean acting in accordance with one's moral duty rather than one's desires. Users’ requirements may include service quality levels, cost, ease of use, etc. Users’ capabilities may include assets owned or leased from others. Trustors’ profiles may include what is promised and commitments to keep these promises. In such a large-scale marketplace, the trustworthy interactions and transactions in services and resources constitute a challenging endeavor. By trustworthy interaction we mean transactions which deliver results that are accepted by all parties. Currently, solving such issues of trust generally adopts a “one-size fits all” trust models and systems. By trust models and systems we mean computer programs which perform the reputation scoring and management. i.e. select a single service which can serve all requirements. Such approach is limiting due to variations in technology, conflicts between users’ requirements and/or conflicts between user requirements and service outcomes. Additionally, this approach may result in service providers being overwhelmed by adding new resources to satisfy all possible requirements, while having no information or guarantees about the level of trust they gain in the eye of their consumers. Accordingly, we hypothesize the need for personalizable customizable Trust Management Systems (TMSs) for the robustness and wide-scale adoption of large-scale marketplaces for resources and services. In other words, we assume the need for a trust management system which can select services satisfying transaction parties’ requirements. Most contemporary TMSs suffer from the following drawbacks: • Select one size fits all service, • Utilize one and only one type of data for calculating the score used for anticipating the future behavior of a party, • Utilize one and only one method to calculate the score value used for anticipating the future behavior of a party, • Trust scoring calculation method does cannot be reprogrammed, • Trust scoring calculation method does not consider the context in which the data was collected. Given these drawbacks and the large scale of the global marketplace of resources and services, a reference architecture for trust management systems is needed, which can incorporate current systems and may be used in guidance and development of a wide spectrum of trust management systems ranging from un-personalized to fully personalized systems. Up to our knowledge, no TMS reference architecture exists in the literature. In this dissertation, we propose a new Reference Architecture for Trust Management (RATM), which overcomes the drawbacks of current systems. It proposes evaluating trust by number of flexible operations namely, decision expectation, analytics, data management and monitoring. These operations collectively can be used to implement a wide spectrum of trust management systems ranging from generic to highly personalized systems. We used RATM for trust personalization, where we propose a Personalized Trust Management System (PTMS) based on RATM. We evaluated PTMS’s ability to sustain the increasing number of users and demonstrated its effectiveness, efficiency and its ability to resist attacks. We achieved that by contrasting experimentation results against that of a Generic Trust Management System (GTMS). We used two case studies for our evaluations; namely, BitTorrent and a video conferencing application.en
dc.description.degreePHDen
dc.format.mediumETDen
dc.identifier.othervt_gsexam:12606en
dc.identifier.urihttp://hdl.handle.net/10919/88457en
dc.publisherVirginia Techen
dc.rightsIn Copyrighten
dc.rights.urihttp://rightsstatements.org/vocab/InC/1.0/en
dc.subjectTrust Managementen
dc.subjectReputation Managementen
dc.subjectTrust Personalizationen
dc.subjectTrust Management Reference Architectureen
dc.subjectTrust-driven Servicesen
dc.subjectHuman Inspired Trust Managementen
dc.titleTrust Management Systems: Reference Architecture and Personalizationen
dc.typeDissertationen
thesis.degree.disciplineComputer Engineeringen
thesis.degree.grantorVirginia Polytechnic Institute and State Universityen
thesis.degree.leveldoctoralen
thesis.degree.namePHDen

Files

Original bundle
Now showing 1 - 1 of 1
Loading...
Thumbnail Image
Name:
Rashad_HS_D_2017.pdf
Size:
7.89 MB
Format:
Adobe Portable Document Format