Sex offender risk assessment and management in Ireland

This research examined sex offender risk assessment and management in Ireland. It focused on the statutory agencies with primary responsibility (Garda Síochána and the Probation Service). The goal was to document the historical, contextual and current systems, in addition to identifying areas of concern/improvements. The research was a mixed-methods approach. Eight studies were conducted. This incorporated documentary reviews of four Commission to Inquire Reports, qualitative interviews/focus groups with Garda staff, Probation Service staff, statutory agencies, community stakeholders, various Non-Governmental Organisations (NGOs) and sex offenders. Quantitative questionnaires were also administered to Garda staff. In all over 70 interviews were conducted and questionnaires were forwarded to 270 Garda members. The overall findings are: •Sex offender management in Ireland has become formal only since 2001. Knowledge, skills and expertise is in its infancy and is still evolving. •Mixed reviews and questions regarding fitness for purpose of currently used risk assessments tools were noted. •The Sex Offender Act 2001 requires additional elements to ensure safe sex offender monitoring and public protection. A judicial review of the Sex Offender Act 2001 was recommended by many respondents. •Interagency working under SORAM was hugely welcomed. The sharing of information has been welcomed by managing agencies as the key benefit to improving sex offender management. •Respondents reported that in practice, sex offender management in Ireland is fragmented and unevenly implemented. The research concluded that an independent National Sex Offender Authority should be established as an oversight and regulatory body for policy, strategy and direction in sex offender management. Further areas of research were also highlighted: ongoing evaluation and audits of the joint agency process and systems in place; recidivism studies tracking the risk assessment ratings and subsequent offending; and an evaluation of the current status of sex offender housing in Ireland.

Subterfuge-safe trust management for delegation of permissions in open environments

Open environments involve distributed entities interacting with each other in an open manner. Many distributed entities are unknown to each other but need to collaborate and share resources in a secure fashion. Usually resource owners alone decide who is trusted to access their resources. Since resource owners in open environments do not have a complete picture of all trusted entities, trust management frameworks are used to ensure that only authorized entities will access requested resources. Every trust management system has limitations, and the limitations can be exploited by malicious entities. One vulnerability is due to the lack of globally unique interpretation for permission specifications. This limitation means that a malicious entity which receives a permission in one domain may misuse the permission in another domain via some deceptive but apparently authorized route; this malicious behaviour is called subterfuge. This thesis develops a secure approach, Subterfuge Safe Trust Management (SSTM), that prevents subterfuge by malicious entities. SSTM employs the Subterfuge Safe Authorization Language (SSAL) which uses the idea of a local permission with a globally unique interpretation (localPermission) to resolve the misinterpretation of permissions. We model and implement SSAL with an ontology-based approach, SSALO, which provides a generic representation for knowledge related to the SSAL-based security policy. SSALO enables integration of heterogeneous security policies which is useful for secure cooperation among principals in open environments where each principal may have a different security policy with different implementation. The other advantage of an ontology-based approach is the Open World Assumption, whereby reasoning over an existing security policy is easily extended to include further security policies that might be discovered in an open distributed environment. We add two extra SSAL rules to support dynamic coalition formation and secure cooperation among coalitions. Secure federation of cloud computing platforms and secure federation of XMPP servers are presented as case studies of SSTM. The results show that SSTM provides robust accountability for the use of permissions in federation. It is also shown that SSAL is a suitable policy language to express the subterfuge-safe policy statements due to its well-defined semantics, ease of use, and integrability.