CUPPENS Frédéric¹, CUPPENS-BOULAHIA Nora¹, THOMAS Julien¹

Communication dans une conférence à comité de lecture

ICISS : Fourth International Conference on Information Systems Security, Lecture Notes in Computer Science, 16-20 december 2008, Jntu, Hyderabad, India, 2008, pp. 71-85, ISBN 978-3-540-89861-0

2008

In the literature, reputation systems are used to evaluate other entities behavior and have many applications such as, for instance, the detection malicious entities. The associated models are based on mathematic formulae, in order to formaly define elements such as the reputation evaluation and evolution and the reputation propagation between peers. Current proposals describe the behaviors of their models by examples, with few (if not no) formal analyses. In this article, we state the basic security properties such systems require and we show that current systems may not satisfy them on specific scenarios, which can be used by malicious entities to take advantage of the system. We also present a new reputation scheme, designed to satisfy these properties, and we compare it with existing research works.

1 : RSM - Dépt. Réseaux, Sécurité et Multimédia (Institut Télécom-Télécom Bretagne)

5721