Trust in Computer Systems and the Cloud


Book Description

Learn to analyze and measure risk by exploring the nature of trust and its application to cybersecurity Trust in Computer Systems and the Cloud delivers an insightful and practical new take on what it means to trust in the context of computer and network security and the impact on the emerging field of Confidential Computing. Author Mike Bursell’s experience, ranging from Chief Security Architect at Red Hat to CEO at a Confidential Computing start-up grounds the reader in fundamental concepts of trust and related ideas before discussing the more sophisticated applications of these concepts to various areas in computing. The book demonstrates in the importance of understanding and quantifying risk and draws on the social and computer sciences to explain hardware and software security, complex systems, and open source communities. It takes a detailed look at the impact of Confidential Computing on security, trust and risk and also describes the emerging concept of trust domains, which provide an alternative to standard layered security. Foundational definitions of trust from sociology and other social sciences, how they evolved, and what modern concepts of trust mean to computer professionals A comprehensive examination of the importance of systems, from open-source communities to HSMs, TPMs, and Confidential Computing with TEEs. A thorough exploration of trust domains, including explorations of communities of practice, the centralization of control and policies, and monitoring Perfect for security architects at the CISSP level or higher, Trust in Computer Systems and the Cloud is also an indispensable addition to the libraries of system architects, security system engineers, and master’s students in software architecture and security.




System Trust


Book Description

Frequently enabled by digitalization, great transformations are taking place in socio-technical systems such as energy, telecommunications, and mobility. These transformations indicate widespread shifts in societal infrastructure systems, rearranging relations between governments, industries, NGOs, and consumers. In this context, the question of trust in systems – as introduced by sociologists Luhmann, Coleman and Giddens – acquires new urgency, as yet uncommented upon in trust research, or socio-technical systems debates. Focusing on the energy sector, Patrick Sumpf analyzes the meanings of system and trust to develop a framework for both theoretical and empirical research, which is synthesized into an “Architecture of Trust” in systems.




Liars and Outliers


Book Description

In today's hyper-connected society, understanding the mechanisms of trust is crucial. Issues of trust are critical to solving problems as diverse as corporate responsibility, global warming, and the political system. In this insightful and entertaining book, Schneier weaves together ideas from across the social and biological sciences to explain how society induces trust. He shows the unique role of trust in facilitating and stabilizing human society. He discusses why and how trust has evolved, why it works the way it does, and the ways the information society is changing everything.




Trust in Society


Book Description

Trust plays a pervasive role in social affairs, even sustaining acts of cooperation among strangers who have no control over each other's actions. But the full importance of trust is rarely acknowledged until it begins to break down, threatening the stability of social relationships once taken for granted. Trust in Society uses the tools of experimental psychology, sociology, political science, and economics to shed light on the many functions trust performs in social and political life. The authors discuss different ways of conceptualizing trust and investigate the empirical effects of trust in a variety of social settings, from the local and personal to the national and institutional. Drawing on experimental findings, this book examines how people decide whom to trust, and how a person proves his own trustworthiness to others. Placing trust in a person can be seen as a strategic act, a moral response, or even an expression of social solidarity. People often assume that strangers are trustworthy on the basis of crude social affinities, such as a shared race, religion, or hometown. Likewise, new immigrants are often able to draw heavily upon the trust of prior arrivals—frequently kin—to obtain work and start-up capital. Trust in Society explains how trust is fostered among members of voluntary associations—such as soccer clubs, choirs, and church groups—and asks whether this trust spills over into other civic activities of wider benefit to society. The book also scrutinizes the relationship between trust and formal regulatory institutions, such as the law, that either substitute for trust when it is absent, or protect people from the worst consequences of trust when it is misplaced. Moreover, psychological research reveals how compliance with the law depends more on public trust in the motives of the police and courts than on fear of punishment. The contributors to this volume demonstrate the growing analytical sophistication of trust research and its wide-ranging explanatory power. In the interests of analytical rigor, the social sciences all too often assume that people act as atomistic individuals without regard to the interests of others. Trust in Society demonstrates how we can think rigorously and analytically about the many aspects of social life that cannot be explained in those terms. A Volume in the Russell Sage Foundation Series on Trust!--




Trust in the system


Book Description

Based on extensive observations, interviews, and archival research, this book provides an in-depth insight into one of the most crucial forms of regulation around medical research: Research Ethics Committees. Every month, groups of people from all over the United Kingdom decide what kind of research should be carried out on patients within the National Health Service. These groups – Research Ethics Committees (RECs) – made up of doctors, nurses, researchers, and members of the general public – help shape the future of medicine, and play a crucial role in the regulation of a wide range of research from social science to epidemiology, vaccine and drugs trials, and surgery. In providing one of the first empirical examinations of this kind of regulation, this book highlights how, despite the trappings of a modern regulatory system, REC decision making revolves around outdated aspects of social life. Hedgecoe argues that an accurate understanding of this kind of regulation requires an acceptance of the inherently social nature of the processes involved. In placing trust at the centre of ethics decision making, this book challenges the impersonal, de-socialised, and mechanical models of REC decision making that dominate mainstream accounts, and documents the subtle, messy, and complex way in which these bodies decide what kind of research should take place.




Trust


Book Description

This book is written around the central message that collectivist societies produce security, but destroy trust. In collectivist societies, people are connected through networks of strong personal ties where the behavior of all agents is constantly monitored and controlled. As a result, individuals in collectivist networks are assured that others will abide by social norms, and gain a sense of security erroneously thought of as “trust.” However, this book argues that this security is not truly trust, based on beliefs regarding the integrity of others, but assurance, based on the system of mutual control within the network. In collectivist societies, security is assured insofar as people stay within the network, but people do not trust in the benevolence of human nature. On the one hand, transaction costs are reduced within collectivist networks, as once accepted into a network the risk of being maltreated is minimized. However, joining the network requires individuals to pay opportunity cost, that is, they pay a cost by forgoing potentially superior opportunities outside the security of the network. In this era of globalization, people from traditionally collectivistic societies face the challenge of learning how to free themselves from the security of such collectivistic networks in order to explore the opportunities open to them elsewhere. This book presents research investigating how the minds of individuals are shaped by the conflict between maintaining security inside closed networks of strong ties, and venturing outside of the network to seek out new opportunities.




Re-Engaging in Trust


Book Description

The U.S. healthcare system exists in a trust crisis. Without trust, the United States Healthcare system is doomed to mediocrity. Although healthcare is the most personal of interactions, the U.S. healthcare system is grounded in a business model based on a win-lose paradigm. Unfortunately, recent events both in society at large and within the healthcare industry have created negative trust resets(TM) that has only magnified the problem. Healthcare is unique in that it personally impacts every individual in the United States; whether being employed in the industry, an influencer such as media or government or a utilizer of healthcare services. If we are to address the challenges of access, cost and quality of healthcare we have to do more than alter payment and organizational models. We have to address the elephant in the room; trust. It will require a conscious behavior change by each stakeholder to improve trust across the system.




System Trust


Book Description

Frequently enabled by digitalization, great transformations are taking place in socio-technical systems such as energy, telecommunications, and mobility. These transformations indicate widespread shifts in societal infrastructure systems, rearranging relations between governments, industries, NGOs, and consumers. In this context, the question of trust in systems – as introduced by sociologists Luhmann, Coleman and Giddens – acquires new urgency, as yet uncommented upon in trust research, or socio-technical systems debates. Focusing on the energy sector, Patrick Sumpf analyzes the meanings of system and trust to develop a framework for both theoretical and empirical research, which is synthesized into an “Architecture of Trust” in systems.




Operating System Security


Book Description

"Operating systems provide the fundamental mechanisms for securing computer processing. Since the 1960s, operating systems designers have explored how to build"secure" operating systems - operating systems whose mechanisms protect the system against a motivated adversary. Recently, the importance of ensuring such security has become a mainstream issue for all operating systems. In this book, we examine past research that outlines the requirements for a secure operating system and research that implements example systems that aim for such requirements. For system designs that aimed to satisfy these requirements,we see that the complexity of software systems often results in implementation challenges that we are still exploring to this day. However, if a system design does not aim for achieving the secure operating system requirements, then its security features fail to protect the system in a myriad of ways. We also study systems that have been retro-fit with secure operating system features after an initial deployment. In all cases, the conflict between function on one hand and security on the other leads to difficult choices and the potential for unwise compromises. From this book, we hope that systems designers and implementers will learn the requirements for operating systems that effectively enforce security and will better understand how to manage the balance between function and security."--BOOK JACKET.




Trust in Technology: A Socio-Technical Perspective


Book Description

Computer systems can only deliver benefits if functionality, users and usability are central to their design and deployment. This book encapsulates work done in the DIRC project (Interdisciplinary Research Collaboration in Dependability), bringing together a range of disciplinary approaches - computer science, sociology and software engineering - to produce a socio-technical systems perspective on the issues surrounding trust in technology in complex settings.