Trust, Privacy, and Security in Digital Business

Sincerely welcome to the proceedings of the 2nd International Conference on Trust, Privacy, would be and Security in Digital Business, held in Copenhagen, Denmark, from August 22nd till 26th, 2005. This conference was the successor to the successful TrustBus 2004 conference, held in 2004 in conjunction with the DEXA conferences in Zaragoza. It was our goal that this event would be a forum to bring together researchers from academia and commercial developers from industry to discuss the state of the art of technology for establishing trust, privacy, and security in digital business. We thank the attendees for coming to Copenhagen to participate and debate the new emerging advances in this area. The workshop program consisted of one invited talk and 11 regular technical paper sessions. The invited talk and keynote speech was delivered by Hannes Federrath from the Chair for Management of Information Security at the University of Regensburg, Germany, on "Privacy Enhanced Technology, Methods - Markets - Misuse". A paper covering his talk is also contained in this book. The regular paper sessions covered a broad range of topics, from access control issues to electronic auctioning, from trust and protocols to smart cards. The conference attracted over 100 submissions of which the Program Committee accepted 32 papers for presentation and inclusion in the conference proceedings. The authors of the accepted papers come from 16 different countries. The proceedings contain the revised versions of all accepted papers.

Inhalt

Invited Talk.- Privacy Enhanced Technologies: Methods - Markets - Misuse.- Digital Business.- Sec-Shield: Security Preserved Distributed Knowledge Management Between Autonomous Domains.- Protection Mechanisms Against Phishing Attacks.- Dropout-Tolerant TTP-Free Mental Poker.- A Self-healing Mechanism for an Intrusion Tolerance System.- Protecting Online Rating Systems from Unfair Ratings.- Anonymous Payment in a Fair E-Commerce Protocol with Verifiable TTP.- Designing Secure E-Tendering Systems.- Mobile/Wireless Services.- A Multilateral Secure Payment System for Wireless LAN Hotspots.- Secure Group Communications over Combined Wired and Wireless Networks.- A Privacy Enhancement Mechanism for Location Based Service Architectures Using Transaction Pseudonyms.- Making Money with Mobile Qualified Electronic Signatures.- Certificate Revocation/Index Search.- Efficient Certificate Revocation System Implementation: Huffman Merkle Hash Tree (HuffMHT).- Secure Index Search for Groups.- Trust.- Provision of Secure Policy Enforcement Between Small and Medium Governmental Organizations.- Maximizing Utility of Mobile Agent Based E-Commerce Applications with Trust Enhanced Security.- The Fuzzy and Dynamic Nature of Trust.- Towards an Ontology of Trust.- Digital Signature.- An Improved Group Signature Scheme.- Efficient Member Revocation in Group Signature Schemes.- Conditional Digital Signatures.- A Mediated Proxy Signature Scheme with Fast Revocation for Electronic Transactions.- Privacy.- Privacy Enforcement for IT Governance in Enterprises: Doing It for Real.- An Adaptive Privacy Management System for Data Repositories.- Privacy Preserving Data Mining Services on the Web.- Reading Your Keystroke: Whose Mail Is It?.- E-Auctions.- A Novel Construction of Two-Party Private Bidding Protocols from Yao's Millionaires Problem.- An Improved Double Auction Protocol Against False Bids.- An Investigation of Dispute Resolution Mechanisms on Power and Trust: A Domain Study of Online Trust in e-Auctions.- Smart Cards/Authentication.- A Secure Fingerprint Authentication System on an Untrusted Computing Environment.- Security Enhancement for Password Authentication Schemes with Smart Cards.- Securing Operating System Services Based on Smart Cards.