MobileTrust: Secure Knowledge Integration in VANETs

Vehicular Ad hoc NETworks (VANET) are becoming popular due to the emergence of the Internet of Things and ambient intelligence applications. In such networks, secure resource sharing functionality is accomplished by incorporating trust schemes. Current solutions adopt peer-to-peer technologies that can cover the large operational area. However, these systems fail to capture some inherent properties of VANETs, such as fast and ephemeral interaction, making robust trust evaluation of crowdsourcing challenging. In this article, we propose MobileTrust—a hybrid trust-based system for secure resource sharing in VANETs. The proposal is a breakthrough in centralized trust computing that utilizes cloud and upcoming 5G technologies to provide robust trust establishment with global scalability. The ad hoc communication is energy-efficient and protects the system against threats that are not countered by the current settings. To evaluate its performance and effectiveness, MobileTrust is modelled in the SUMO simulator and tested on the traffic features of the small-size German city of Eichstatt. Similar schemes are implemented in the same platform to provide a fair comparison. Moreover, MobileTrust is deployed on a typical embedded system platform and applied on a real smart car installation for monitoring traffic and road-state parameters of an urban application. The proposed system is developed under the EU-founded THREAT-ARREST project, to provide security, privacy, and trust in an intelligent and energy-aware transportation scenario, bringing closer the vision of sustainable circular economy

Data centric trust evaluation and prediction framework for IOT

© 2017 ITU. Application of trust principals in internet of things (IoT) has allowed to provide more trustworthy services among the corresponding stakeholders. The most common method of assessing trust in IoT applications is to estimate trust level of the end entities (entity-centric) relative to the trustor. In these systems, trust level of the data is assumed to be the same as the trust level of the data source. However, most of the IoT based systems are data centric and operate in dynamic environments, which need immediate actions without waiting for a trust report from end entities. We address this challenge by extending our previous proposals on trust establishment for entities based on their reputation, experience and knowledge, to trust estimation of data items [1-3]. First, we present a hybrid trust framework for evaluating both data trust and entity trust, which will be enhanced as a standardization for future data driven society. The modules including data trust metric extraction, data trust aggregation, evaluation and prediction are elaborated inside the proposed framework. Finally, a possible design model is described to implement the proposed ideas

Making sense of tragedy: the ‘reputational’ antecedents of a hospital disaster

This article explores the workings of Reputational Dialogues (RD) (as a form of organizational discourse); within the setting of a UK NHS hospital that has encountered disaster. The disaster in question took place at the Bristol Royal Infirmary (BRI), circa 1984-1995; and is thought to have incurred the deaths of 34 ‘special heart babies’. The article explores patterns of RD utilization associated with the tragedy. Transcripts from the hearings of an inquiry into the disaster are used to access these patterns– if within specific limits and constraints that are discussed in the article. The article seeks to comment on the workings of RDs within the BRI disaster setting and considers, tentatively, how these dialogues may have helped to institutionalize dominant and (counter-cultural beliefs) about the BRI and its reputation as a provider of cardiovascular care to young children. Overall, the article contributes to organization theory by beginning the process of observing the institutionalization of RD and its by-products, as organizational phenomena

Characterizing Key Stakeholders in an Online Black-Hat Marketplace

Over the past few years, many black-hat marketplaces have emerged that facilitate access to reputation manipulation services such as fake Facebook likes, fraudulent search engine optimization (SEO), or bogus Amazon reviews. In order to deploy effective technical and legal countermeasures, it is important to understand how these black-hat marketplaces operate, shedding light on the services they offer, who is selling, who is buying, what are they buying, who is more successful, why are they successful, etc. Toward this goal, in this paper, we present a detailed micro-economic analysis of a popular online black-hat marketplace, namely, SEOClerks.com. As the site provides non-anonymized transaction information, we set to analyze selling and buying behavior of individual users, propose a strategy to identify key users, and study their tactics as compared to other (non-key) users. We find that key users: (1) are mostly located in Asian countries, (2) are focused more on selling black-hat SEO services, (3) tend to list more lower priced services, and (4) sometimes buy services from other sellers and then sell at higher prices. Finally, we discuss the implications of our analysis with respect to devising effective economic and legal intervention strategies against marketplace operators and key users.Comment: 12th IEEE/APWG Symposium on Electronic Crime Research (eCrime 2017

Auditor changes and tendering: UK interview evidence

Competitive pressures in the audit market have led to aggressive fee renegotiation and tendering by companies. This paper reviews microeconomic tender theory and finds it to be of limited value in the audit context. Content analysis of semi-structured interviews conducted with the finance directors of 12 UK listed companies which had recently tendered and/or changed auditor are used to investigate the tender/change process. Contrary to popular belief, fee levels do not necessarily dominate the decision to change auditors, rather changes within the client company, audit staffing, and auditor's professionalism and competency issues dominate. Nor is the selection of a tender "winner" generally based solely on price, as predicted by tender theory and as would be expected when the consequences of audit failure do not fall on the directors. However, consistent with economic theory, the winning bid appears frequently to be too low, resulting in attempts by auditors to subsequently increase fees and resentment by the finance director. Directors generally appear to view the audit tender as relating to not only the attest function per se, but to a larger package of services concerning the financial reporting function. The relative importance of price versus non-price competition in auditor choice is found to vary across companies. Auditor choice is influenced strongly by both economic and behavioural factors, in particular, by directors' assessment of the quality of non-attest services and the expected quality of working relationships, in addition to price and audit quality

Customer-oriented risk assessment in Network Utilities

For companies that distribute services such as telecommunications, water, energy, gas, etc., quality perceived by the customers has a strong impact on the fulfillment of financial goals, positively increasing the demand and negatively increasing the risk of customer churn (loss of customers). Failures by these companies may cause customer affection in a massive way, augmenting the intention to leave the company. Therefore, maintenance performance and specifically service reliability has a strong influence on financial goals. This paper proposes a methodology to evaluate the contribution of the maintenance department in economic terms, based on service unreliability by network failures. The developed methodology aims to provide an analysis of failures to facilitate decision making about maintenance (preventive/predictive and corrective) costs versus negative impacts in end-customer invoicing based on the probability of losing customers. Survival analysis of recurrent failures with the General Renewal Process distribution is used for this novel purpose with the intention to be applied as a standard procedure to calculate the expected maintenance financial impact, for a given period of time. Also, geographical areas of coverage are distinguished, enabling the comparison of different technical or management alternatives. Two case studies in a telecommunications services company are presented in order to illustrate the applicability of the methodology