Keywords

1 Introduction

The concept of trust management was proposed by Blaze in 1996 [1]. It aimed to solve the security problems in Internet applications and provided a security policy framework adapted to open and dynamic network application systems. In electronic commerce (e-commerce), a variety of electronic transactions (e-transactions) are implemented in a loosely coupled network environment. In most cases, both sides of the e-transaction do not know each other, neither of them is willing to be cheated, and this makes trust management a very challenging and critical issue.

In e-transaction, the dynamic trust status of a seller always plays a decisive role in real-time e-transaction systems, and more factors (such as trades’ turnover, trust decline, and goods types) should be considered to precisely reflect the latest trust status of each seller. Furthermore, a better incentive mechanism should be studied to better reflect the evolution of trust values. In trust evolution, positive events and negative events play completely different roles. So, not only incentive rules but also punishment rules should be included in the incentive mechanism. Further, the incentive scale and the penalty scale should vary from event to event and from domain to domain. The most important is that trust establishment is a long and incremental process. Even if a “good” service provider behaves very well, it takes an enough long time for him to obtain a high reputation value.

To solve the problems discussed above, a trust management model for e-commerce applications was proposed in this paper. The new model was composed of a centralized trust management architecture and a trust calculation method. In the new architecture, events were divided into two categories and rules were predefined to determine which formula to use and what arguments to use according to the events occurred during the e-transaction. By first introducing the concepts of trades’ turnover and trust decline, based on formulae, a new trust calculation method was proposed. The used formulae were designed to adapt to different application domains by revising corresponding arguments. Simulation results show that the proposed model addresses the long and incremental characteristics of trust establishment process.

The rest of this paper was organized as follows. In Sect. 2, we presented the rule-based and event-driven trust management architecture. In Sect. 3, the formula-based trust computation method was proposed. Some empirical study results were illustrated in Sect. 4. In Sect. 5, we concluded our work.

2 Trust Management Architecture

Centralized trust management architecture (like eBay) for e-commerce applications was proposed in this section (Fig. 1). The trust management server was responsible for the storage and management of all trust data and other related information. System clients (buyers or sellers) reported the rating of the other side of the transaction to the trust management server after every transaction.

Fig. 1
figure 1

Trust management architecture

Full size image

We assumed the centralized trust management server was independent of any system client. This makes it feasible to apply the unified evaluation approach to the same domain of applications. In addition, it ensures that the trust computation could be completed on relatively complete trust data, which is difficult in a decentralized architecture. Certainly, the centralized architecture is vulnerable to a single point failure due to the scale expansion problem, which is less risky in the decentralized environment.

In Fig. 1, all clients’ requests were sent to the user interface module, which would distribute the requests to the trust initialization module, the trust query module, the trust calculation, and updating module or the client management module according to the feature of each request. The trust initialization module was in charge of the allocation of an ignorance trust value (e.g., 0.1) to each new comer. The final trust value of each new comer depended on its subsequent behavior performance. The trust query module mainly responded the trust requests by querying the trust database. The trust calculation and updating module afresh calculated and updates the trust value of a client as long as a new valid rating of that client was produced. When positive cases or negative cases happened, the incentive or punishment rules could be used to reward or punish a client during the trust calculation process. The incentive scale and penalizing scale were also predefined as variable parameters.

3 Trust Evaluation Method

In this section, a formula-based trust calculation method was proposed. In the new trust calculation method, the concepts of trades’ turnover and trust decline were first introduced into trust management to depict the dynamic feature of trust status.

In different domains, there may be different policies for trust evaluation. The used formulae could be applied into different domains by setting different arguments. In addition, in the case of penalty, the decrement was determined by arguments, which were selected according to the nature of negative events.

Definition 1

Let \( T_{i}^{x} \) denote the trust value of target service provider x at current time period \( t_{i} \), \( R_{i + 1}^{x} \) be the rating of x at time period \( t_{i + 1} \), and \( \Updelta = R_{i + 1}^{x} - T_{i}^{x} \). The trust value of x at time period \( t_{i + 1} \) was defined in Eq. (1).

$$ T_{i + 1}^{x} = \left\{ {\begin{array}{*{20}l} {\hbox{min} \left( {1, T_{i}^{x} + \lambda_{ + } \cdot\theta \cdot\Updelta } \right) \quad {\text{if}}\; \Updelta \ge 0} \hfill \\ {\hbox{max} \left( {0, T_{i}^{x} + \lambda_{ - } \cdot\theta \cdot\Updelta } \right)\quad {\text{if}}\; \Updelta < 0} \hfill \\ \end{array} } \right. $$
(1)

where \( 0 \le \theta < 1 \) was the impact factor function determining the impact of recent change (i.e., \( \Updelta \)) on trust calculation, and \( {\lambda }_{ + } \le 1 \) (or \( {\lambda }_{ - } \ge 1 \)) factor determining the incentive (penalty) scale of trust change. From the arguments, we can see that the penalty scale is no less than the incentive scale. That is, the improvement of trust value is more difficult than the drop of it.

Formula (1) yielded a value in the range of [0, 1]. To obtain the trust value in period \( t_{i + 1} \), the trust value in period \( t_{i} \) and the latest rating value were used.

We assumed that in time period \( t_{i} \) the service provider x received such valid rating values as \( R_{{i_{1} }}^{x} ,R_{{i_{2} }}^{x} , \ldots ,R_{{i_{m} }}^{x} \) and the corresponding transaction prices as \( P_{{i_{1} }}^{x} ,P_{{i_{2} }}^{x} , \ldots ,P_{{i_{m} }}^{x} \), and then the ultimate rating \( R_{i}^{x} \) of x in period \( t_{{^{i} }} \) could be obtained as Eq. (2).

$$ R_{i}^{x} = \sum\nolimits_{j = 1}^{m} {\left( {R_{{i_{j} }}^{x} \cdot P_{{i_{j} }}^{x} /\sum\nolimits_{k = 1}^{m} {P_{{i_{k} }}^{x} } } \right)} $$
(2)

That is, we used the rating value and the corresponding trades’ turnover of each transaction to calculate the ultimate trades rating in every time period. In this way, we first considered price feature in trust calculation to promote the accuracy of trust evaluation system.

According to trust principles, the impact factor function should be a decreasing function whose decrement is decreasing. There may be more than one function to depict the feature, and we just selected a simple one of them.

The impact factor function was defined as follows.

Definition 2

If the current trust value was \( T_{i}^{x} \), the impact factor function was defined in Eq. (3).

$$ \theta \left( {T_{i}^{x} } \right) = C/(T_{i}^{x} + C)^{2} $$
(3)

where \( C > 0 \) is a constant parameter affecting the curve shape of function \( \theta \).

Based on the same principles, we selected a decreasing function whose decrement was increasing as our trust decline function, which was defined as Eq. (4).

Definition 3

If a service provider got no valid rating values after time period \( t_{i} \), the trust value decline function was defined as Eq. (4).

$$ T\left( t \right) = T\left( {t - 1} \right) - (t - t_{i} )/D $$
(4)

where t stands for time, and D is a constant parameter.

From the above discussion, we can see that, when \( \Updelta \ge 0 \), according to formulae (1)–(3), there would be an increment in the trust calculation, namely \( T_{i + 1}^{x} \ge T_{i}^{x} \). In this case, we set \( {\lambda }_{ + } = 0.9 \). Thus, the increment would be \( {\lambda }_{ + } \cdot \theta (T_{i}^{x} ) \cdot \Updelta \). When \( \Updelta < 0 \), there would be a decrement in the trust calculation. By definition, we set \( {\lambda }_{ - } = 1 \). As \( {\lambda }_{ + } \le {\lambda }_{ - } \), assuming the same \( \left| \Updelta \right| \) and \( T_{i}^{x} \), the decrement \( {\lambda }_{ - } \cdot {\theta }(T_{i}^{x} ) \cdot \left| \Updelta \right| \) was no less than the increment \( {\lambda }_{ + } \cdot \theta (T_{i}^{x} ) \cdot \Updelta \). This indicates that it is not easier to improve the trust value than to worsen it. Therefore, generally it takes longer time to reach a high-level trust value (e.g., 0.98) than to drop from a high level to a low level. The value of \( {\lambda }_{ + } \) (or \( {\lambda }_{ - } \)) was determined by the predefined rules in different applications. In addition, if a severely negative event happened, \( {\lambda }_{ - } \) would be applied for decrement cases. This also results a harder trust improvement process.

4 Simulation and Application

To further study the properties of our proposed approaches, a set of empirical studies were conducted in this section, and the results were illustrated and analyzed. For trust computation, the formulae discussed in Sect. 3 were adopted.

4.1 A Simulation

In this section, we compared the trust establishment process of several service providers with different system entry periods and different trust levels, and we aimed to compare their reputation levels delivered by the proposed model. We studied the trust establish process of new service providers and the trust accumulating process of old service providers. To avoid the whitewashing behaviors, the initial trust value was set to \( T_{0} = 0.1 \), an ignorance initial value. We assumed that there were 5 service providers and they were marked as S 1, S 2, S 3, S 4, and S 5. In each time round, S 1 got a static rating of 0.95. S 2 got a static rating of 0.9 in the former 149 rounds, and at round 150 it got a rating of 0.2 due to an extremely negative case, and then, its ratings stayed at 0.6. S 3 got a static rating of 0.8 in the former 100 rounds, but at the following rounds, its trust value decayed based on the formula (4) due to lacking of valid ratings, while S 4 and S 5 attended at round 150 and got their static ratings of 0.95 and 0.7.

The simulation curve with above 5 service providers is shown in Fig. 2, and Fig. 3 shows the same simulation curve with a rating deviation of \( \left| {\varepsilon } \right| \le 0.1 \). In the above figures, we obtained the curves by setting the arguments \( {\lambda }_{ + } = 0.9 \), \( {\lambda }_{ - } = 2 \), and \( C = 20 \).

Fig. 2
figure 2

Simulation curves

Full size image
Fig. 3
figure 3

Simulation curves with R deviation \( \left| \varepsilon \right| \le 0.1 \)

Full size image

From the simulation curves, we can see that the trust curves could depict the dynamic trust status of every service provider, that is, the service providers with the same trust values have the same trust levels. Obviously, our trust model could accurately depict the trust changes in different situations.

4.2 Performance Discussion

Compared with trust evaluation method in the literature [24], the proposed trust evaluation method could differentiate positive events and negative events by set scale control factors \( \lambda_{ + } \) and \( \lambda_{ - } \), and further the scale control factors could vary from domain to domain by setting different parameters. Compared with the trust management model in the literature [57], the new trust model introduced such factors as trades’ turnover, incentive scale, penalty scale, and trust decline into trust evaluation process and could more precisely depict the trust establishment process. Compared with the scheme in the literature [810], the new trust model selected a simple function with variables to avoid the hyperbolic tangent transformation and so greatly improved the efficiency of trust evolution. By setting different variable parameters, the proposed trust evaluation method could be applied into different fields. Furthermore, the new trust model implemented the long-term and incremental trust establishment process and could solve the open trust problems discussed above.

In the new trust model, due to the implement of the long-term and incremental process of trust establishment and accumulation process, the trust value of each client precisely depicted its trust status. That is, the service providers with the same trust value must have the same trust reputation level, and vice versa. And so in the new trust model, we do not need to differentiate the clients with the same trust values and the above trust issues has been completely solved.

5 Conclusions and Future Work

In this paper, a trust management architecture and a trust evaluation method were proposed. The new trust model has some advances in the following aspects. The features of the new model are critically important to a trust management service authority with a large pool of system clients.

  1. 1.

    It is incentive to good service providers with good service quality for a long service period.

  2. 2.

    It is incentive to new service providers.

  3. 3.

    It penalizes service providers with poor service quality.

  4. 4.

    For service providers who are not active, their trust values will decay in a special way, until eventually into zero or a valid rating is obtained.

All these properties aim to provide clearer information to service clients and prevent some service providers from cheating clients after obtaining a good reputation rank.

For future work, more impact factors (e.g., the varieties and properties of different goods) will be studied in trust management model. The distributed trust management architecture for e-commerce applications will also be studied. In addition, in order to better ensure the fairness of the trust model, the trust status of service clients (buyers) will be further studied in e-commerce applications.