Formalising dynamic trust negotiations in decentralised collaborative e-health systems

Ajayi, O., Sinnott, R.O. and Stell, A. (2007) Formalising dynamic trust negotiations in decentralised collaborative e-health systems. In: The Second International Conference on Availability, Reliability and Security 2007 (ARES 2007), Vienna, Austria, 10-13 Apr 2007, pp. 3-10. ISBN 0769527752 (doi:10.1109/ARES.2007.91)

[img]
Preview
Text
oluwa3553.pdf

492kB

Abstract

Access control in decentralised collaborative systems present huge challenges especially where many autonomous entities including organizations, humans, software agents from different security domains seek to access and share resources in a secure and controlled way. Automated trust negotiation (ATN) is one approach that has been proposed for trust discovery and realisation, which enables entities viz. Strangers to access resources across autonomous boundaries through iterative exchange of credentials. Various negotiation strategies have been proposed to protect credential disclosure during trust negotiations. However in some domains such as e-health, not all entities are willing to negotiate credentials or disclose access policies directly to strangers regardless of negotiation strategies and instead prefer to negotiate and disclose sensitive information only to strangers within what we refer to as a circle of trust. In this paper, we introduce a formal model to describe how locally trusted intermediary parties can provide multiple negotiation and delegations hops to protect credentials and access policies. We propose a dynamic trust negotiations (DTN) model that not only protects sensitive information from disclosure but also reduces semantic issues that exist with credentials in decentralized systems. This work is currently being explored and implemented within the e-health domain: specifically in the MRC-funded Virtual Organisation for Trials of Epidemiological Studies (VOTES) project.

Item Type:Conference Proceedings
Status:Published
Refereed:Yes
Glasgow Author(s) Enlighten ID:Sinnott, Professor Richard and Ajayi, Mr Oluwafemi
Authors: Ajayi, O., Sinnott, R.O., and Stell, A.
Subjects:Q Science > QA Mathematics > QA75 Electronic computers. Computer science
College/School:University Services > IT Services > E-Science
Publisher:IEEE Computer Society
ISBN:0769527752
Copyright Holders:Copyright © 2007 IEEE
First Published:First published in The Second International Conference on Availability, Reliability and Security 2007 (ARES 2007)
Publisher Policy:Reproduced in accordance with the copyright policy of the publisher.

University Staff: Request a correction | Enlighten Editors: Update this record