Author(s)- David A. Wallace and Margaret Hedstrom, 2009.ppt

1、Author(s): David A. Wallace and Margaret Hedstrom, 2009License: Unless otherwise noted, this material is made available under the terms of the Creative Commons Attribution Noncommercial Share Alike 3.0 License: http:/creativecommons.org/licenses/by-nc-sa/3.0/,We have reviewed this material in accord

2、ance with U.S. Copyright Law and have tried to maximize your ability to use, share, and adapt it. The citation key on the following slide provides information about how you may share and adapt this material.Copyright holders of content included in this material should contact open.michiganumich.edu

3、with any questions, corrections, or clarification regarding the use of content.For more information about how to cite these materials visit http:/open.umich.edu/education/about/terms-of-use.,SI 655 Management of Electronic Records,Week 03 February 2, 2009 Trust in Records and Recordkeeping Systems,O

4、utline,Bantin review essay - debates and reflections/positions Trust electronic commerce technical needs traceability limitations Authenticity MacNeil Lynch integrity digital signature issues Trust and Authenticity risk assessment trusted repositories user behavior and authenticity,Bantin review ess

5、ay,Debates/Issues Defining the “record” Identification & appraisal Documentation (Metadata) for authenticity and reliability Electronic recordkeeping systems Preservation / current use Physical custody / access Role on IT development / environment Interpretations / positions Reflections,Trust,Where

6、does lack of trust come from? Motivation to deceive Lack of demonstrated competence Lack of track record Absence of accountability Absence of “proof” Lack of familiarity (with the source, process or technology),Questions,Does digital information need to be held to a higher standard for authenticity

7、and integrity than printed information? Which information?Why? Why Not?,Trust in Electronic Commerce (Steinauer et al.),Reducing risk Transfer of risk Reduction of liability Trustworthy processes Traceability Intermediaries and Trusted Third Parties Endorsements Formal Testing and Certification Lega

8、l Underpinnings and Remedies,Technical Needs,Secure the system against unauthorized use Identification and Authentication Password protection Smart cards Biometrics Access controls Audit trails & Transaction data (Integrity) Confidentiality Government interest,Traceability,Physical goods (is what I

9、received what I ordered?) Digital goods (is what I received unaltered) Source/Supplier (did it come from where I expected it to) Recipient (did I send it to who I intended),Limitations of technical controls for records and recordkeeping systems,Dependencies Legal requirements (access to encrypted in

10、formation) Long term maintenance requires changing the objects Long term maintenance of the technical infrastructure,Authenticity (Documentary form - MacNeil),Intrinsic Elements (identity) Name of author Name of originator Chronological date Name of place of origin Name(s) of the addressee(s) Names(

11、s) of recipients,Extrinsic Elements(integrity) Presentation features Electronic signatures Time and date stamps Annotations,Contexts: juridical-administrative; provenancial; procedural; documentary; technological,Authenticity (Lynch) 1,Philosophical/social constructs (people) Technological construct

12、s (code) Authenticity IntegrityNeed to connect the two,Authenticity (Lynch) 2,Object + collection of assertions Assertions Internal External Object (Has it changed?) Assertions (Are they correct?),Tests for Authenticity,Forensics Diplomatics Intellectual Analysis of Consistency and Plausibility Eval

13、uation of Truthfulness and Accuracy,Integrity (Lynch),Has not been corrupted in transit In delivery / rendering Over time,Testing for Integrity,Compare to a known “true” copy Check digital signature Establish integrity of the digital signature,Digital Signature Issues,Granularity Bit Page Document O

14、bject Collection of objects Scope Content Signer Role of signer Assertions Management over time,Trust and Authenticity,What should technology do? What should people do?,Risk Assessment,Motivation to deceive Lack of demonstrated competence Lack of track record Absence of accountability Absence of “pr

15、oof” Lack of familiarity (with the source, process or technology),Trusted Repositories,Goals Reducing risk Transfer of risk Reduction of liability Trustworthy processes Traceability Intermediaries and Trusted Third Parties Endorsements Formal Testing and Certification,What is a “Trusted” Repository?

16、,Trusted “third party” based on Competence Disinterest in deceit External Certification Examples: Digital Notary Service See: http:/ G-Mail OCLC Digital Archive Service See: http:/www.oclc.org/digitalarchive/default.htm,Attributes of Trusted Repositories,Compliance with OAIS Reference Model Administ

17、rative responsibility Organizational viability Financial sustainability Technological and procedural suitability System Security Procedural accountability,User behavior and authenticity,CAMiLEON Project http:/www.si.umich.edu/CAMILEON/Users apply complex logic to reason about the probability of authenticity Appearance/presentation Role and background of author The function of an application to support the task Technological environment Trusted Institutions,