PeerTrust: Resilient Reputation and Trust Management

Overview

The continued advances in distributed service-oriented computing and global communications have created a strong technology push for online information sharing and business transactions among enterprises, organizations, and individuals. While these communities offer enormous opportunities, they also present potential threats and risks due to a lack of trust. Reputation systems provide a way for building trust through social control by harnessing the community knowledge in the form of feedback. Although feedback-based reputation systems help community participants decide who to trust and encourage trustworthy behavior, they also introduce vulnerabilities due to potential manipulations by dishonest or malicious players. Therefore, building an effective and resilient reputation system remains a big challenge for the wide deployment of service-oriented computing.

We propose a decentralized and dependable reputation based trust supporting framework called PeerTrust, focusing on models and techniques for resilient reputation management against feedback aggregation related vulnerabilities, especially feedback sparsity with potential feedback manipulation, feedback oscillation, and loss of feedback privacy. First, we develop a core reputation model with important trust parameters and a coherent trust metric for quantifying and comparing the trustworthiness of participants. We develop decentralized strategies for implementing the trust model in an efficient and secure manner. Second, we develop techniques countering potential vulnerabilities associated with feedback aggregation, among which the most notable ones are a similarity inference scheme to counter feedback sparsity with potential feedback manipulations, and a novel metric based on Proportional, Integral, and Derivative (PID) model to effectively handle strategic oscillating behavior of participants. Third but not the least, we develop privacy-conscious trust management models and techniques to address the leaking of feedback privacy - a serious concern in any decentralized reputation management system. We develop a set of novel probabilistic decentralized privacy-preserving computation protocols for important primitive operations (such as max, min, and topk). We show how feedback aggregation can be divided into individual operations that utilize above primitive protocols through an example reputation algorithm based on kNN classification. We perform experimental evaluations for each of the schemes we proposed and show the feasibility, effectiveness, and cost of our approach. The PeerTrust framework presents an important step forward with respect to developing attack-resilient reputation trust systems.

Collaborators

  • Mustaque Ahamad (Georgia Tech)
  • Ling Liu (Georgia Tech)
  • Mudhakar Srivatsa (Georgia Tech)

    Publications

  • L. Xiong, L. Liu, M. Ahamad. Countering Feedback Sparsity and Manipulation in Reputation Systems. In 3rd IEEE Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom), November, 2007.

  • M. Srivatsa, L. Xiong, L. Liu. TrustGuard: Countering Vulnerabilities in Reputation Management for Decentralized Networks. In 14th World Wide Web Conference (WWW 2005), Japan, May, 2005.

  • M. Srivatsa, L. Xiong, L. Liu. ExchangeGuard: A Distributed Protocol for Electronic Fair-Exchange. In 19th IEEE International Parallel & Distributed Processing Symposium (IPDPS 2005), Denver, April, 2005

  • L. Xiong, L. Liu. Reputation and Trust in Mobile Commerce. Book chapter in Advances in Security and Payment Methods for Mobile Commerce, ISBN 1591403456, Idea Group, November, 2004

  • L. Xiong, L. Liu. PeerTrust: Supporting Reputation-Based Trust in Peer-to-Peer Communities. IEEE Transactions on Knowledge and Data Engineering (TKDE), Special Issue on Peer-to-Peer Based Data Management, 16(7), July, 2004

  • L. Xiong, L. Liu. A Reputation-Based Trust Model for Peer-to-Peer eCommerce Communities. In IEEE Conference on Electronic Commerce (CEC'03), Newport Beach, June, 2003

  • L. Xiong, L. Liu. A Reputation-Based Trust Model for Peer-to-Peer eCommerce Communities (Extended Abstract). In Fourth ACM Conference on Electronic Commerce (EC'03), San Diego, June, 2003

  • L. Xiong, L. Liu. Building Trust in Decentralized Peer-to-Peer Electronic Communities. In Fifth International Conference on Electronic Commerce Research (ICECR-5), Montreal, Canada, October, 2002

    Acknowledgement

    This research was previously supported by NSF ITR grant and is currently supported by Emory College faculty startup fund.

    Any opinions, findings, and conclusions or recommendations expressed in the project material are those of the authors and do not necessarily reflect the views of the sponsors.

    Last updated: 1/28/2008