Mobile Lightweight Wireless Systems. Second International ICST Conference, MOBILIGHT 2010, Barcelona, Spain, May 10-12, 2010, Revised Selected Papers

Research Article

Trust Management in Monitoring Financial Critical Information Infrastructures

Download394 downloads
  • @INPROCEEDINGS{10.1007/978-3-642-16644-0_37,
        author={Giorgia Lodi and Roberto Baldoni and Hisain Elshaafi and Barry Mulcahy and Gy\o{}rgy Csert\^{a}n and L\^{a}szl\^{o} G\o{}nczy},
        title={Trust Management in Monitoring Financial Critical Information Infrastructures},
        proceedings={Mobile Lightweight Wireless Systems. Second International ICST Conference, MOBILIGHT 2010, Barcelona, Spain, May 10-12, 2010, Revised Selected Papers},
        proceedings_a={MOBILIGHT},
        year={2012},
        month={10},
        keywords={Financial critical infrastructures collaborative environment trust reputation monitoring trust metrics},
        doi={10.1007/978-3-642-16644-0_37}
    }
    
  • Giorgia Lodi
    Roberto Baldoni
    Hisain Elshaafi
    Barry Mulcahy
    György Csertán
    László Gönczy
    Year: 2012
    Trust Management in Monitoring Financial Critical Information Infrastructures
    MOBILIGHT
    Springer
    DOI: 10.1007/978-3-642-16644-0_37
Giorgia Lodi1,*, Roberto Baldoni1,*, Hisain Elshaafi2,*, Barry Mulcahy2,*, György Csertán3,*, László Gönczy3,*
  • 1: University of Rome La Sapienza
  • 2: Waterford Institute of Technology
  • 3: OptXware Research&Development Ltd
*Contact email: lodi@dis.uniroma1.it, baldoni@dis.uniroma1.it, helshaafi@tssg.org, bmulcahy@tssg.org, csertan@optxware.com, gonczy@optxware.com

Abstract

The success of Internet-based attacks and frauds targeting financial institutions highlights their inadequacy when facing such threats in isolation. Financial players need to coordinate their efforts by sharing and correlating suspicious activities occurring at multiple, geographically distributed sites. CoMiFin, an European project, is developing a collaborative security framework, on top of the Internet, centered on the Semantic Room abstraction. This abstraction allows financial institutions to share and process high volumes of events concerning massive threats (e.g., Distributed Denial of Service) in a private and secure way. Due to the sensitive nature of the information flowing in Semantic Rooms, and the privacy and security requirements then required, mechanisms ensuring mutual trust among Semantic Room members (potentially competitive financial players) must be provided. This paper focuses on the design and preliminary implementation of a trust management architecture that can be configured with trust and reputation policies and deployed in Semantic Rooms.