ENISA Position Papers represent expert opinionon topics ENISA considers to be importantemerging risks or key security components. Theyare produced as the result of discussion among agroup of experts who were selected for theirknowledge in the area. The content was collectedvia wiki, mailing list and telephone conferencesand edited by ENISA.This paper aims to provide a useful introductionto security issues affecting Reputation-basedSystems by identifying a number of possiblethreats and attacks, highlighting the securityrequirements that should be fulfilled by thesesystems and providing recommendations foraction and best practices to reduce the securityrisks to users.Examples are given from a number of providersthroughout the paper. These should be taken asexamples only and there is no intention to singleout a specific provider for criticism or praise.The examples provided are not necessarily thosemost representative or important, nor is the aimof this paper to conduct any kind of marketsurvey, as there might be other providers whichare not mentioned here and nonetheless areequally or more representative of the market.
This paper is aimed at providers, designers,research and standardisation communities,government policy-makers and businesses.
ENISA Position Paper No.2
Reputation-based Systems: a security analysis