A Computational Dynamic Trust Model for User Authorization

(1)

A Computational Dynamic Trust Model for User Authorization

M Nandini1_,2 _{Shabaaz shaik}2_{, K Rama Krishniah}3_{,D Sarath Babu}4

1_{M.Tech Student, Dept of CSE, R K College of Engineering, Krishna-}₅₂₁₄₅₆_{,A. P., India}

2_{Assistant Professor, Dept of CSE, R K College of Engineering, Krishna-}₅₂₁₄₅₆_{,A. P., India}

3_{Professor & Principal,}_{Dept of CSE,R K College of Engineering, Krishna-}₅₂₁₄₅₆_{,A. P., India}

4_{Assistant Professor, Dept of CSE, N V R College of Engineering, Krishna-}₅₂₂₂₀₁_{,A. P., India}

Abstract: Development of authorization mechanisms for secure information access by a big community of users in an unlock environment is a major trouble in the ever-growing Internet globe. In this paper we intend a computational dynamic trust model for user authorization, deep-rooted in findings from social science. Similar to most existing computational trust models, this model distinguishes trusting belief in honesty from that in competence in dissimilar contexts and accounts for subjectivity in the evaluation of a meticulous trustee by different trusters. Simulation studies were conducted to evaluate the performance of the proposed integrity belief model with supplementary trust models from the literature for diverse user behavior patterns. Experiments clarify that the proposed model achieves superior performance than other models mostly in predicting the performance of unbalanced users.

Keywords: Authorization, human factors, security, trust

INTRODUCTION

On a daily basis growing prosperity of information existing online has made protected information retrieve mechanisms in an essential part of information systems at present. The conventional examine efforts for user authorization mechanisms in environments where a possible user’s authorization set is not predefined, mostly focus on role-based access control (RBAC), which divides the authorization progression into the role-permission and user-role assignment. RBAC in recent systems uses digital characteristics as facts about a user to contribution access to resources the user is permitted

to. On the other hand, holding data does notas a

consequence certify a user’s high-quality

performance. For example, when a credit card corporation is deciding whether to concern a credit card to an personality, it does not only involve confirmation such as shared protection number and home address, but also checks the credit attain, instead of the confidence about the candidate, created based on earlier activities. Such belief, which we call dynamic trusting belief, can be used to compute the chance that a user will not perform injurious procedures. In this application, we recommend a computational dynamic trust model for user

authorization. Mechanisms for building

unquestioning trust using the first-hand (direct experience) as well as second-hand information (recommendation and reputation) are included into

the representation. The hand-outs of the

representation to computational trust writing are: • The model is deep-rooted in conclusion from social science, i.e. it provides computerized trust executive that mimics unquestioning behaviors in the social order, bringing trust calculation for the digital world earlier to the assessment of trust in the real world.

•Contrasting other trust models in the writing, the planned model financial statement for unusual types of trust. Exclusively, it distinguishes trusting confidence in reliability from that in proficiency.

(2)

integrity trust can depend on whether the service outsources requests to entrusted parties.

SYSTEM ARCHITECTURE

Fig-1: Architecture for the trust model

1. The DFD is also called as bubble chart. It is a

simple graphical formalism that can be used to represent a system in terms of input data to the system, various processing carried out on this data, and the output data is generated by this system.

2. The data flow diagram (DFD) is one of the most

important modeling tools. It is used to model the system components. These components are the system process, the data used by the process, an external entity that interacts with the system and the information flows in the system.

3. DFD shows how the information moves through

the system and how it is modified by a series of transformations. It is a graphical technique that depicts information flow and the transformations that are applied as data moves from input to output.

4. DFD is also known as bubble chart. A DFD may

be used to represent a system at any level of abstraction. DFD may be partitioned into levels that represent increasing information flow and functional detail.

User

Bank a/c details

End Process Check

Unauthorized User

YES NO

Apply for credit card

Trust View User Details Add trust

SYSTEM ANALYSIS

Existing System: The everyday increasing wealth of information available online has made secure information access mechanisms an indispensable part of information systems today. The mainstream research efforts for user authorization mechanisms in environments where a potential user’s permission set is not predefined, mostly focus on role-based access control (RBAC), which divides the authorization process into the role-permission and user-role assignment. RBAC in modern systems uses digital identity as evidence about a user to grant access to

resources the user is entitled problems are: Holding

evidence does not necessarily certify a user’s good behavior.

(3)

RELATED WORK

McKnight’s Trust Model: The social trust model, which guides the design of the computational model in this paper, was proposed by McKnight et al. after surveying more than 60 papers across a wide range of disciplines. It has been validated via empirical study .This model defines five conceptual trust types: trusting behavior, trusting intention, trusting belief, institution-based trust, and disposition to trust. Trusting behavior is an action that increases a thruster's risk or makes the thruster vulnerable to the trustee. Trusting intention indicates that a thruster is willing to engage in trusting behaviors with the trustee. A trusting intention implies a trust decision and leads to a trusting behavior. Two subtypes of

trusting intention are: Willingness to depend: the

volitional preparedness to make oneself vulnerable to

the trustee.Subjective probability of depending: the

likelihood that a thruster will depend on a trustee. Trusting belief is a thruster's subjective belief in the fact that a trustee has attributes beneficial to the thruster. The following are the four attributes used

most often Competence: a trustee has the ability or

expertise to perform certain tasks. Benevolence: a

trustee cares about a thruster's interests. Integrity: a

trustee is honest and keeps commitments.

Predictability: a trustee's actions are sufficiently consistent. Trust intention and trusting belief are situation and trustee specific. Institution-based trust is situation specific. Disposition to trust is independent of situation and trustee. Trusting belief positively relates to trusting intention, which in turn results in the trusting behavior. Institution- based trust positively affects trusting belief and trusting intention. Structural assurance is more related to trusting intention while situational normality affects both. Disposition to trust positively influences institution-based trust, trusting belief and trusting intention. Faith in humanity impacts trusting belief. Trusting stance influences trusting intention.

Computational Trust Models

The problem of establishing and maintaining dynamic trust has attracted many research efforts. One of the first attempts trying to formalize trust in computer science was made by Marsh. The model introduced the concepts widely used by other researchers such as context and situational trust. Sabater and Sierra propose a reputation model called the Regret system for gregarious societies. The authors assume that a principal owns a set of sociograms describing the social relations in the environment along individual, social and ontological dimensions. The performance highly depends on the underlying sociograms, although how to build sociograms is not discussed. Nagarajan et all. propose a security model for trusted platform based services based on evaluation of past evidence with an

exponential time decay function. The model evaluates trust separately for each property of each component of a platform, similar to the consideration of competence trust in our proposed model. Although these approaches integrate context into trust computation, their application is limited to specific domains different from the one considered in our work.

Overview of the Trust Model

The trust model we propose in this paper distinguishes integrity trust from competence trust. Competence trust is the trusting belief in a trustee's ability or expertise to perform certain tasks in a specific situation. Integrity trust is the belief that a trustee is honest and acts in favor of the thruster. Integrity and benevolence in social trust models are combined together. Predictability is attached to a competence or integrity belief as a secondary measure.

The elements of the model environment are include

two main types of actors, namely thrusters and

trustees, a database of trust information, and different contexts, which depend on the concerns of a thruster and the competence of a trustee. For the online auction site example in section 1, let us assume that buyer B needs to decide whether to authorize seller S

to charge his credit card for an item I (authorize

access to his credit card/contact information). The elements of the model in this case are:

1) Thrusters are the buyers registered to the auction site.

2) Trustees are the sellers registered to the auction site.

3) The context states how important for B the

shipping,

Context and Trusting Belief

Context: Trust is environment-specific . Both thrusters' concern and trustees' behavior vary from one situation to another. These situations are called contexts. A thruster can specify the minimum trusting belief needed for a specific context. Direct experience information is maintained for each individual context to hasten belief updating. In this model, a thruster has one integrity trust per trustee in all contexts. If a trustee disappoints a thruster, the misbehavior lowers the thruster's integrity belief in him. For integrity trust, contexts do not need to be distinguished. Competence trust is context-dependent. The fact that Bob is an excellent professor does not support to trust him as a chief. A representation is devised to identify the competence type and level needed in a context.

(4)

higher the value, the more a thruster believes in a

trustee. Predictability is a positive real number. It

characterizes the goodness of belief formed. The smaller the predictability or uncertainty, the more confident a thruster is about the associated belief value. Both the variability of a trustee's behaviors and lack of observations negatively impact the

goodness of belief formed. iNumber in competence

belief records the number of observations accumulated. Trusting beliefs can be classified into initial and continuous trust. Initial trust is the belief

established before a thruster t1 interacts with a

trustee u1. Continuous trust is the belief after t1 has had appropriate direct experience with u1.

Belief Information and Reputation

 Aggregation Methods 1. Competence Belief

Belief about a trustee's competence is context specific. A trustee's competence changes relatively slowly with time. Therefore, competence ratings assigned to her are viewed as samples drawn from a distribution with a steady mean and variance. Competence belief formation is formulated as a parameter estimation problem. Statistic methods are applied on the rating sequence to estimate the steady mean and variance, which are used as the belief value about the trustee's competence and the associated predictability. In this model, we assume the existence of a reputation server that acts properly on behalf of thrusters. It is assumed that thrusters are honest in providing information. The attacks discussed in do not exist. Thrusters are subjective and utilize different evaluation criteria. Reputation aggregation methods shall eliminate the effect of subjectivity and output a result close to the trusting belief the reputation requester would have obtained if she had directly interacted with the trustee.

2. Integrity Belief

Integrity may change fast with time. Furthermore, it possesses a meaningful trend. Evaluation of integrity belief is based on two assumptions: 1) We assume integrity of a trustee is consistent in all contexts.2) Integrity belief may vary largely with time. An example is a user behaving well until he reaches a high trust value and then starts committing fraud. We used mean as an estimator for competence belief as it is relatively steady with time. For integrity belief, this assumption is excluded. When behavior patterns are present, the mean is no more a good estimator. The similarity between a rating sequence and a time series inspires us to adopt the method of double exponential smoothing to predict the next rating based on a previous rating sequence.

IMPLEMENTATION

McKnight’s Trust Model: The social trust model, which guides the design of the computational model in this paper, was proposed by McKnight et al. after surveying more than 60 papers across a wide range of disciplines. It has been validated via empirical study. This model defines five conceptual trust types: trusting behavior, trusting intention, trusting belief, institution-based trust, and disposition to trust. Trusting behavior is an action that increases a thruster's risk or makes the thruster vulnerable to the trustee. Trusting intention indicates that a thruster is willing to engage in trusting behaviors with the trustee. A trusting intention implies a trust decision and leads to a trusting behavior. Two subtypes of

trusting intention are: Willingness to depend: the

volitional preparedness to make oneself vulnerable to

the trustee,Subjective probability of depending.

Computational Trust Models: The problem of establishing and maintaining dynamic trust has attracted many research efforts. One of the first attempts trying to formalize trust in computer science was made by Marsh. The model introduced the concepts widely used by other researchers such as context and situational trust. Many existing reputation models and security mechanisms rely on a social network structure . Propose an approach to extract reputation from the social network topology that encodes reputation information. Walter et al. propose a dynamic trust model for social networks, based on the concept of feedback centrality. The model, which enables computing trust between two disconnected nodes in the network through their neighbor nodes, is suitable for application to recommender systems. Lang proposes a trust model for access control in P2P networks, based on the assumption of transitivity of trust in social networks, where a simple mathematical model based on fuzzy set membership is used to calculate the trustworthiness of each node in a trust graph symbolizing interactions between network nodes.

Context and Trusting Belief:

(5)

Belief information and reputation Aggregation methods:

Belief about a trustee's competence is context specific. A trustee's competence changes relatively slowly with time. Therefore, competence ratings assigned to her are viewed as samples drawn from a distribution with a steady mean and variance. Competence belief formation is formulated as a parameter estimation problem. Statistic methods are applied on the rating sequence to estimate the steady mean and variance, which are used as the belief value about the trustee's competence and the associated predictability.

Input Design

The input design is the link between the information system and the user. It comprises the developing specification and procedures for data preparation and those steps are necessary to put transaction data in to a usable form for processing can be achieved by inspecting the computer to read data from a written or printed document or it can occur by having people keying the data directly into the system. The design of input focuses on controlling the amount of input required, controlling the errors, avoiding delay, avoiding extra steps and keeping the process simple.

Objectives: Input Design is the process of converting a user-oriented description of the input into a computer-based system. This design is important to avoid errors in the data input process and show the correct direction to the management for getting correct information from the computerized system. It is achieved by creating user-friendly screens for the data entry to handle large volume of data. The goal of designing input is to make data entry easier and to be free from errors. The data entry screen is designed in such a way that all the data manipulates can be performed. It also provides record viewing facilities. When the data is entered it will check for its validity. Data can be entered with the help of screens. Appropriate messages are provided as when needed so that the user will not be in maize of instant. Thus the objective of input design is to create an input layout that is easy to follow.

Output Design: A quality output is one, which meets the requirements of the end user and presents the information clearly. In any system results of processing are communicated to the users and to other system through outputs. In output design it is determined how the information is to be displaced for immediate need and also the hard copy output. It is the most important and direct source information to the user. Efficient and intelligent output design improves the system’s relationship to help user decision-making. Designing computer output should proceed in an organized, well thought out manner; the right output must be developed while ensuring that each output element is designed so that people will find the system can use easily and effectively.

When analysis design computer output, they should Identify the specific output that is needed to meet the

requirements..Select methods for presenting

information..Create document, report, or other formats that contain information produced by the system.

The output form of an information system should accomplish one or more of the following objectives. Convey information about past activities, current status or projections of the Future. Signal important events, opportunities, problems, or warnings. Trigger an action. Confirm an action.

CONCLUSION

In this paper we accessible a dynamic computational trust model for user authorization. This model is deep-rooted in findings from social science, and is not limited to trusting belief as most computational methods are. We presented a representation of context and functions that narrate different contexts, enabling building of trusting belief by means of cross-context information. The planned dynamic trust model enables robotic trust supervision that mimics trusting behaviors in the social order, such as selecting a corporate co-worker, forming a combination, or choosing negotiation protocols or strategies in e-commerce. The formalization of trust helps in conniving algorithms to decide dependable resources in peer-to-peer systems, developing secure protocols for ad hoc networks and detecting illusory agents in a essential community. Experiments in a simulated trust environment illustrate that the projected integrity trust model performs superior than other key trust models in predicting the performance of users whose events alter based on definite patterns in excess of point in time.

REFERENCES

[1] M.Armbrust,A.Fox,R.Griffith,A.D.Joseph,R.K

atz,A. Konwinski, G. Lee, D. Patterson, A. Rabkin, I. Stoica, and M. Zaharia, ‘‘A View of Cloud Computing,’’ Commun. ACM,vol. 53, no. 4, pp. 49-58, Apr. 2010.

[2] H. Biggar, ‘‘Experiencing Data

De-Duplication: Improving Efficiency and Reducing Capacity Requirements,’’ Enterprise Strategy Grp., Milford, MA, USA, White Paper, Feb. 2007.

[3]

C.Liu,Y.Lu,C.Shi,G.Lu,D.Du,andD.-S.Wang,‘‘ADMAD:Application-Driven Metadata Aware De-Deduplication Archival Storage Systems,’’ in Proc. 5th IEEE Int’l Workshop SNAPI I/Os,2008, pp. 29-35.

[4] A. Katiyar and J. Weissman, ‘‘ViDeDup: An

(6)

[5] Y.Tan,H.Jiang,D.Feng,L.Tian,Z.Yan,andG.Zh

ou,‘‘SAM:ASemantic-Aware Multi-Tiered

Source De-Duplication FrameWorkfor Cloud Backup,’’ in Proc. 39th ICPP, 2010, pp. 614-623.

[6] BackupPC,2011.[Online].Available:http://bac

kuppc.sourceforge.net/

[7] A. Muthitacharoen, B. Chen, and D. Mazieres,

‘‘A LowBandwidth Network File System,’’ in Proc. 18th ACM SOSP,2001, pp. 174-187.

[8] EMC Avamar, 2011. [Online]. Available:

http://www.emc.com/avamar

[9] S. Kannan, A. Gavrilovska, and K. Schwan,

‘‘Cloud4HomeV Enhancing Data Services

with @Home Clouds,’’ in Proc. 31st_ICDCS,

2011, pp. 539-548.

[10] Maximizing Data Efficiency: Benefits of

Global DeduplicationNEC, Irving, TX, USA, NEC White Paper, 2009.

[11] D. Meister and A. Brinkmann, ‘‘Multi-Level

Comparison of Data Deduplication in a Backup Scenario,’’ in Proc.2ndAnnu.Int’l SYSTOR, 2009, pp. 1-8.

[12] D. Bhagwat, K. Eshghi, D.D. Long, and M.

Lillibridge, ‘‘Extreme Binning: Scalable, Parallel Deduplication for Chunk Based File Backup,’’ HP Lab., Palo Alto, CA, USA, Tech. Rep. HPL-200910R2, Sept. 2009.

[13] K. Eshghi, ‘‘A Framework for Analyzing and

Improving Content Based Chunking

Algorithms,’’ HP Laboratories, Palo Alto, CA, USA, Tech. Rep. HPL-2005-30 (R.1), 2005.

[14] B. Zhu, K. Li, and H. Patterson, ‘‘Avoiding

the Disk Bottleneck in the Data Domain

Deduplication File System,’’ in Proc. 6th

USENIX Conf. FAST, Feb. 2008, pp. 269-282.

[15] M. Lillibridge, K. Eshghi, D. Bhagwat, V.

Deolalikar, G. Trezise and P. Camble, ‘‘Sparse Indexing: Large Scale, Inline Deduplication Using Sampling and Locality,’’ in Proc. 7th USENIX Conf. FAST, 2009, pp. 111-123.

[16] P. Anderson and L. Zhang, ‘‘Fast and Secure

Laptop Backups With Encrypted De-Duplication,’’ in Proc. 24th Int’l Conf. LISA, 2010, pp. 29-40.