Abstract
Distributed information systems are increasing in prevalence and complexity as we see an increase in the number of both information consumers and information providers. Applications often need to integrate information from several different information providers. Current approaches for securing this process of integration do not scale well to handle complex trust relationships between consumer applications and providers. Trust mediation is a technique we introduce to address this problem by incorporating a model for representing trust into a framework for retrieving information in a distributed system. Our model for representing trust uses a type system by which data from a source is labeled with a trust type based on qualities of the data itself or the information source(s) providing the data. With this model we develop algorithms to perform static analysis of data queries to infer how the result of the data query can be trusted. We describe an enhanced mediation framework using this inference technique that enables the mediator to govern the flow of information to match intended trust policies in large distributed information systems, even when information may originate from many heterogeneous sources.
The original version of this chapter was revised: The copyright line was incorrect. This has been corrected. The Erratum to this chapter is available at DOI: 10.1007/978-0-387-35691-4_52
Chapter PDF
Similar content being viewed by others
References
P. Devanbu, The ultimate reuse nightmare: honey, I got the wrong DLL,” in Proc. of the 5th Symposium on Software Reusability (SSR ‘89), 1999, ACM pp. 178–180.
J. Biskup, U. Flegel, and Y. Karabulut, “Secure mediation: requirements and design,” in Proc. Int’l Working Conf. on Database Security.: DBSec 1999, Kluwer pp. 127–40.
S. Dawson, S. Qian, and P. Samarati, “Providing security and interoperation of heterogeneous systems,” Distributed and Parallel Databases, vol. 8, pp. 119–45, 2000.
Y. Karabulut, “Credential management for secure mediators,” presented at 11th GI-Workshop Grundlagen von Datenbanken, Thüringen, Germany, 1999.
K. S. Candan, S. Jajodia, and V. S. Subrahmanian, “Secure mediated databases,” in the 12th Int’l Conf. on Data Engineering, IEEE Computer Society 1996, pp. 28–37.
S. Dawson, S. Qian, and P. Samarati, “Secure interoperation of heterogeneous systems: a mediator-based approach,” in the IFIP 14th Int’l Conf. on Information Security, 1998.
J. Biskup and Y. Karabulut, “A hybrid PKI model with an application for secure mediation,” in Proc. of 16h Annual IFIP WG11.3 Working Conference on Data and Application Security, July 2002.
F. Naumann, U. Leser, and J. C. Freytag, “Quality-driven integration of heterogeneous information systems,” in Proc. of the 2511 Int’l Conf. on VLDB, Morgan Kaufmann, 1999.
S. Garfinkel, PGP: pretty good privacy. O’Reilly, and Associates, 1995.
M. Blaze, J. Feigenbaum, and J. Lacy, “Decentralized trust management,” in IEEE Symposium on Security and Privacy, IEEE Computer Society, 1996.
R. Domenig and K. R. Dittrich, “An overview and classification of mediated query systems,” SIGMOD Record, vol. 28 no. 3, pp. 63–72, 1999.
A. Kini and J. Choobineh, “Trust in electronic commerce: definition and theoretical considerations,” in 31” Hawaii Intl Conf. on System Sciences, IEEE Computer Soc., 1998.
B. Toone, “Inference rules for trust mediation,” Dept. of Comp. Sci., Univ. of Calif. Davis, http://wwwcsif.cs.ucdavis.edu/—toone/research/trust/inference.html, 2002.
M. Kroening, “Java meets Prolog for advisors, analysts and agents,” PC AI, vol. 10, pp. 27–31, 1996.
J. Knight, et. al., “The willow survivability architecture,” in Proceedings of the Information Survivability Workshop, IEEE Computer Society, 2001.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2003 IFIP International Federation for Information Processing
About this paper
Cite this paper
Toone, B., Gertz, M., Devanbu, P. (2003). Trust Mediation for Distributed Information Systems. In: Gritzalis, D., De Capitani di Vimercati, S., Samarati, P., Katsikas, S. (eds) Security and Privacy in the Age of Uncertainty. SEC 2003. IFIP — The International Federation for Information Processing, vol 122. Springer, Boston, MA. https://doi.org/10.1007/978-0-387-35691-4_1
Download citation
DOI: https://doi.org/10.1007/978-0-387-35691-4_1
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4757-6489-5
Online ISBN: 978-0-387-35691-4
eBook Packages: Springer Book Archive