slide1 n.
Download
Skip this Video
Loading SlideShow in 5 Seconds..
Open Reputation Systems PowerPoint Presentation
Download Presentation
Open Reputation Systems

Loading in 2 Seconds...

play fullscreen
1 / 11

Open Reputation Systems - PowerPoint PPT Presentation


  • 100 Views
  • Uploaded on

Open Reputation Systems. Reputation Systems. ENISA paper – a security analysis of reputation systems http://enisarep.notlong.com Use-cases Seller reputation Peer-to-peer Key management Anti-spam/IP reputation. Typical security vulnerabilities need to be addressed:.

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about 'Open Reputation Systems' - lilith


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
reputation systems
Reputation Systems
  • ENISA paper – a security analysis of reputation systems

http://enisarep.notlong.com

  • Use-cases
    • Seller reputation
    • Peer-to-peer
    • Key management
    • Anti-spam/IP reputation
typical security vulnerabilities need to be addressed
Typical security vulnerabilities need to be addressed:
  • Collusion – voters agree to target a victim
  • Denial of reputation – campaigns against an individual
  • Whitewashing (cancelling a bad reputation)
  • Sybil attacks (creating multiple identities to vote – e.g. Ebay 1 cent items voted on by seller)
oasis orms
OASIS - ORMS
  • Develop scenarios for reputation management
    • Reputation of individuals, business partners, services processes, possibly even data
  • Develop reference/standard model
    • Flexible reputation data model
    • Framework and protocol/s for exchanging and porting reputation data
    • Evaluation algorithms for mapping reputation to risk / risk levels
    • Support for privacy, multiple identities, identity resolution
reputation is an aggregation of opinions about an assertion
Reputation is an aggregation of opinions about an assertion

Assertion – Bob is a bad husband

Assertion – Bob is a good laptop seller

slide9

The anatomy of reputation – personal view

Assertion – Bob is a good laptop seller

reputation thoughts
Reputation Thoughts
  • Reputation votes should be separated from the algorithm used to compute it
    • Mean score
    • 2nd order reputation
    • Reputation Context

=> Same vote set can be interpreted differently

  • If reputation is an aggregated opinion about an assertion – why not integrate with SAML?
reputation thoughts1
Reputation Thoughts
  • Model must allow for so-called 2nd order reputations (scores which take into account the reputation of the voter)
  • Rating context should be taken into account – time/date, authentication method/token etc...