A Trust-Based Usage Control Scheme for Resource Sharing

As peer-to-peer (P2P) networks lack any centralized authority, security issues for sharing resource usage control become outstanding. The emerging hardware-based trusted computing (TC) technologies vouch to provide root of trust upon which secure applications can be developed. So a scheme of usage control for resource sharing using TC technologies in P2P networks is introduced in this paper. We advance a TRS-UCON model with the properties of decision continuity and attribute mutability to control the information flow in single or both peers and the sharing resource usage by evaluating the trust degree and policies. An architecture for policy enforcement is proposed to illustrate how TC technologies are applied to usage control. The value of trust degree is a result of comprehensive evaluation according both the integrity of subject/object and the conditions of system and user, such as user reputation and resource access history. So we can trust a remote peer by this way not only authenticated boot but also runtime security without knowing the redundant information of the peer. And the client peer of the resource sharing system can be active to choose the trustable resource supplier and also be the focus of security enhancement contrary to the traditional ways that only emphasize the security of server with resource on it.