{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2022,3,29]],"date-time":"2022-03-29T18:05:43Z","timestamp":1648577143049},"reference-count":22,"publisher":"IGI Global","issue":"1","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2014,1]]},"abstract":"<jats:p>A Multi-Organization Environment is composed of several players that depend on each other for resources and services. In order to manage the security of the exchange process the authors introduce the concept of trust. The authors show how adding this aspect of the cooperative work. In particular, the authors provide a framework where the concepts of trust requirement and trust evaluation play important roles for defining trust vectors. These vectors evaluate a set of requirements, under some conditions, and provide a degree of confidence. In the authors' framework they consider two different types of vectors. On the one hand a vector that relates a user to an organization and on the other hand a vector that links two organizations. Different simulations are presented in this paper in order to show this approach. Moreover, the authors show how these vectors are evaluated and shared among the different organizations. Finally, the authors propose a possible architecture to explain how to integrate their trust module in MOE in order to enhance the security.<\/jats:p>","DOI":"10.4018\/ijsse.2014010101","type":"journal-article","created":{"date-parts":[[2014,6,17]],"date-time":"2014-06-17T10:03:29Z","timestamp":1402999409000},"page":"1-18","source":"Crossref","is-referenced-by-count":0,"title":["Validation of a Trust Approach in Multi-Organization Environments"],"prefix":"10.4018","volume":"5","author":[{"given":"Khalifa","family":"Toumi","sequence":"first","affiliation":[{"name":"TELECOM & Management SudParis, Evry, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ana","family":"Cavalli","sequence":"additional","affiliation":[{"name":"C\u00e9sar Andr\u00e9s, Universidad Complutense de Madrid, Madrid, Spain"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"C\u00e9sar","family":"Andr\u00e9s","sequence":"additional","affiliation":[{"name":"TELECOM & Management SudPAris, Evry, France"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"2432","reference":[{"key":"ijsse.2014010101-0","doi-asserted-by":"publisher","DOI":"10.1016\/j.camwa.2010.02.009"},{"key":"ijsse.2014010101-1","doi-asserted-by":"crossref","unstructured":"Armando, A., Arsac, W., Avanesov, T., Barletta, M., Calvi, A., & Cappai, A. \u2026 Vigan\u00f2, L. (2012). The AVANTSSAR platform for the automated validation of trust and security of service-oriented architectures. In Proceedings of the 18th Int. Conf. Tools and Algorithms for the Construction and Analysis of Systems (TACAS\u201912) (LNCS 7214, pp. 267\u2013282).","DOI":"10.1007\/978-3-642-28756-5_19"},{"key":"ijsse.2014010101-2","doi-asserted-by":"crossref","unstructured":"Baina, A., Deswarte, Y., Kalam, A. E., & Kaaniche, M. (2008). Access control for cooperative systems: A comparative analysis. In Proceedings of the International Conference on Risks and Security of Internet and Systems (CRiSIS\u201908). IEEE Computer Society.","DOI":"10.1109\/CRISIS.2008.4757460"},{"key":"ijsse.2014010101-3","unstructured":"Chakraborty, S., & Ray, I. (2006). Trust-BAC: Integrating trust relationships into the RBAC model for access control in open systems. In Proceedings of the ACM Symposium on Access Control Models And Technologies (SACMAT\u201906). ACM."},{"key":"ijsse.2014010101-4","doi-asserted-by":"crossref","unstructured":"Costa, G., Issarny, V., Martinelli, F., Matteucci, I., & Saadi, R. (2011). Security and trust. In Proceedings of the 11th Int. School on Formal Methods for the Design of Computer, Communication and Software Systems, (SFM\u201911), (LNCS 6659, pp. 393\u2013416).","DOI":"10.1007\/978-3-642-21455-4_12"},{"key":"ijsse.2014010101-5","doi-asserted-by":"crossref","unstructured":"Cuppens, F., Cuppens-Boulahia, N., & Coma, C. (2006). O2O: Virtual private organizations to manage security policy interoperability. In Proceedings of the International Conference on Information Systems Security (ICISS\u201906). Springer.","DOI":"10.1007\/11961635_7"},{"key":"ijsse.2014010101-6","doi-asserted-by":"publisher","DOI":"10.1007\/s12243-008-0050-5"},{"key":"ijsse.2014010101-7","doi-asserted-by":"crossref","unstructured":"Jiang, T., & Baras, J. (2008). Trust credential distribution in autonomic networks. In Proceedings of the Global Communications Conference (GLOBECOM\u201908). IEEE Computer Society.","DOI":"10.1109\/GLOCOM.2008.ECP.381"},{"key":"ijsse.2014010101-8","doi-asserted-by":"publisher","DOI":"10.1016\/j.dss.2005.05.019"},{"key":"ijsse.2014010101-9","doi-asserted-by":"crossref","unstructured":"Kalam, A. E., Baida, R., Balbiani, P., Benferhat, S., Cuppens, F., & Deswarte, Y. \u2026 Trouessin, G. (2003). Organization based access control. In Proceedings of the International Workshop on Proceedings Policies for Distributed Systems and Networks (POLICY\u201903) (pp. 120\u2013131). IEEE Computer Society.","DOI":"10.1109\/POLICY.2003.1206966"},{"key":"ijsse.2014010101-10","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijcip.2009.08.005"},{"key":"ijsse.2014010101-11","doi-asserted-by":"crossref","unstructured":"Kamel, M., Laborde, R., Benzekri, A., & Barrere, F. (2008). A best practices-oriented approach for establishing trust chains within virtual organizations. In Proceedings of the Enterprise Distributed Object Computing Conference Workshops (EDOCW\u201908). IEEE Computer Society.","DOI":"10.1109\/EDOCW.2008.3"},{"key":"ijsse.2014010101-12","doi-asserted-by":"crossref","unstructured":"Krautsevich, L., Lazouski, A., Martinelli, F., Mori, P., & Yautsiukhin, A. (2010). Usage control, risk and trust. In Proceedings of the 7th International Conference Trust, Privacy and Security in Digital Business (TrustBus\u201910) (pp. 1\u201312). Springer.","DOI":"10.1007\/978-3-642-15152-1_1"},{"key":"ijsse.2014010101-13","unstructured":"Lin, K., Lu, H., Yu, T., & Tai, C. (2005). A reputation and trust management broker framework for web applications. In Proceedings of the International Conference on e-Technology, e-Commerce and e-Services (EEE\u201905) (pp. 262\u2013269). IEEE Computer Society."},{"key":"ijsse.2014010101-14","unstructured":"Mallouli, W., Wehbi, B., de Oca, E. M., & Bourdelles, M. (2012). Online network traffic security inspection using MMT tool. In Proceedings of the International Workshop on System Testing and Validation (STV\u201912)."},{"key":"ijsse.2014010101-15","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2009.05.005"},{"key":"ijsse.2014010101-16","doi-asserted-by":"crossref","unstructured":"Moyano, F., Fern\u00e1ndez-Gago, C., Agudo, I., & Lopez, J. (2012). A task ordering approach for automatic trust establishment. In Proceedings of the 4th Int. Symposium Engineering Secure Software and Systems (ESSoS\u201912) (LNCS 7159, pp. 75\u201388). Springer.","DOI":"10.1007\/978-3-642-28166-2_8"},{"key":"ijsse.2014010101-17","doi-asserted-by":"crossref","unstructured":"Ray, I., & Chakraborty, S. (2004). A vector model of trust for developing trustworthy systems. In Proceedings of the European Symposium on Research in Computer Security (ESORICS\u201904). Springer.","DOI":"10.1007\/978-3-540-30108-0_16"},{"key":"ijsse.2014010101-18","doi-asserted-by":"publisher","DOI":"10.1145\/355112.355122"},{"key":"ijsse.2014010101-19","unstructured":"Site MotOrBAC. (2013). MotOrBAC: An implementation of the OrBAC model. From http:\/\/motorbac.sourceforge.net\/,2007"},{"key":"ijsse.2014010101-20","doi-asserted-by":"crossref","unstructured":"Toumi, K., C\u00e9sar, A., & Cavalli, A. (2012). TRUST-ORBAC: A trust access control model in multi-organization environments. In Proceedings of the International Conference on Information Systems Security (ICISS 2012), Guwahati, India.","DOI":"10.1007\/978-3-642-35130-3_7"},{"key":"ijsse.2014010101-21","doi-asserted-by":"publisher","DOI":"10.1109\/TSC.2010.39"}],"container-title":["International Journal of Secure Software Engineering"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.igi-global.com\/viewtitle.aspx?TitleId=109578","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2018,11,20]],"date-time":"2018-11-20T21:38:34Z","timestamp":1542749914000},"score":1,"resource":{"primary":{"URL":"http:\/\/services.igi-global.com\/resolvedoi\/resolve.aspx?doi=10.4018\/ijsse.2014010101"}},"subtitle":[""],"short-title":[],"issued":{"date-parts":[[2014,1]]},"references-count":22,"journal-issue":{"issue":"1"},"URL":"https:\/\/doi.org\/10.4018\/ijsse.2014010101","relation":{},"ISSN":["1947-3036","1947-3044"],"issn-type":[{"value":"1947-3036","type":"print"},{"value":"1947-3044","type":"electronic"}],"subject":[],"published":{"date-parts":[[2014,1]]}}}