Setting trust evaluations with fuzzy logic in MOE

Khalifa Toumi, César Andrés and Ana Cavalli

TELECOM & Management SudParis

Khalifa Toumi STV 12  24/10/2012

Plan Outline

Khalifa Toumi STV 12  24/10/2012 22

Advantages

STV 12  24/10/2012

Context & Motivation

33

users

shared ressources

localressources

admin

userslocal

ressources

users

localressources

MOE concepts

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

Khalifa Toumi

TMSPENSI

UCM

O-grantor O-grantee

Requirements

Access control

Trust management

STV 12  24/10/2012

Context & Motivation

44

users

shared ressources

OrgB

users

shared ressources

Access Control•C

Khalifa Toumi

TMSP

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

ENSI

Contract

interoperability security policy

users

shared ressources

OrgB

users

shared ressources

TMSPENSI

interoperability security policy

O2O

Organization concept:•Rule Org

4 types of rule:PermissionInterdictionObligationRecommendation

Abstraction level•user Role•action Activity•object VIew

Context:•In the office•Urgency

PlanOrBAC model

Khalifa Toumi STV 12  24/10/2012 55

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

OrBAC

Plan Goal: More dynamic and interactive model

Khalifa Toumi STV 12  24/10/2012 66

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

TMSP ENSI

First day

Second day

Third day

edit engineerressource

Evaluation system:Strategies  

What is the influence of these evaluations in the access control of the resources?

TMSP

Context & Motivation Goal: More dynamic and interactive model

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

Khalifa Toumi STV 12  24/10/2012 77

First day

Second day

Third day

edit

engineersressource

ENSI

Context & Motivation Contributions•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

Khalifa Toumi STV 12  24/10/2012 88

OrBAC

Evaluation system(strategies)  

Evaluation of the user behaviors and its influence  on his rights

Evaluation of the organization behaviors and its influence  on its users rights Combination of these two parameters

OrBAC derivatives

99

PlanOur Framework

Khalifa Toumi STV 12  24/10/2012 99

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

Behaviors of  a user

Behaviors of an organization

Our Framework

Yes\No

Interoperabilitysecurity policy

Classification and evaluation

Fuzzysystem Experiences of 

an organization

Experiences of a user

1010

Questions

SECOTS ‘12 24/05/2012

PlanClassification

Khalifa Toumi STV 12  24/10/2012 1010

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

Req_id Subject Organization Situation Period

Situation (Activity, View)

Behavior

edit engineerressource

Periodt0

t2t1 t3t4 t5

T3^T0

^ T^1 T2^ T4

^T4^

=Tn

^

PlanSatisfactory  evaluation

Khalifa Toumi STV 12  24/10/2012 1111

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

Recommendation Strategy

• Recommendationpolicy

• To be evaluated duringthe execution of a behavior.

Modification assessment strategy

• template, properties, etc.•To be evaluate after the execution of a behavior.

Hybrid strategy

PlanFuzzy logic

Khalifa Toumi STV 12  24/10/2012 1212

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

Fuzzier Defuzzier

Inference

RulesInputs

Outputs

A Fuzzy logic System

Linguisticvariables

It is tolerant of imprecisedata.(uncertainty and multi valued logic)

Expert experience

PlanFuzzy logic

Khalifa Toumi STV 12  24/10/2012 1313

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

RulesIF delay & semantic rules are respected THEN  good behavior for an engineer.

A satisfactoryevaluation

Experience of the user and organizations

PlanExperience of a user

Khalifa Toumi STV 12  24/10/2012 1414

Ensi

Rule 1

Rule 2

TMSP

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

•The evaluation depends on the past evaluations of all the behaviors of the user related to the same situation.•The influence of an evaluation of any event will decrease with the flow of time•weighted average

PlanExperience of an organization

Khalifa Toumi STV 12  24/10/2012 1515

TMSP

Rule 2

Rule 3

Rule 1

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

ENSI

•It depends on the experience evaluation of all users of the organization ENSI related to the same situation s at this period.•respects the first and the second rules of the user to organization experience description•weighted average

1616

Questions

SECOTS ‘12 24/05/2012

PlanImplementation

Khalifa Toumi STV 12  24/10/2012 1616

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

Inetroperability security policy Trust Policy

Log file

•Specify a trust policy•Simulation of the evaluation behaviors.•Implementation of the two

experience algorithms.

1717

Questions

SECOTS ‘12 24/05/2012

Plan Implementation

Khalifa Toumi STV 12  24/10/2012 1717

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

Configuration file

punishement Restriction rewards

Trust Policy

1818

Questions

SECOTS ‘12 24/05/2012

Plan Conclusion

Khalifa Toumi STV 12  24/10/2012 1818

Satisfactory system

Trust in MOE: parameters and evaluation

Analyze of different simulations

The integration of trust concept with OrBAC model

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

1919

Questions

SECOTS ‘12 24/05/2012

Plan Futur work

Khalifa Toumi STV 12  24/10/2012 1919

Integration of the trust model with XACML framework(Xena?)

Reputation parameter

More simulations to analyze the behaviors of entities (usersand organizations) and to compare with other works.

Integration of our trust framework into MOTOrBAC tool

•Context and Motivation•Trust in Multi‐Organization Environments (MOE)•Fuzzy logic in our  framework•Implementation•Perspectives

2020

Questions

SECOTS ‘12 24/05/2012

Plan

Khalifa Toumi STV 12  24/10/2012 2020