ETSI GS PDL 015 V1.1.1 (2023-01)

GROUP SPECIFICATION
Permissioned Distributed Ledger (PDL);
Reputation management
Disclaimer
The present document has been produced and approved by the Permissioned Distributed Ledger (PDL) ETSI Industry
Specification Group (ISG) and represents the views of those members who participated in this ISG.
It does not necessarily represent the views of the entire ETSI membership.

2 ETSI GS PDL 015 V1.1.1 (2023-01)

Reference
DGS/PDL-0015_Reputation
Keywords
algorithm, keyword, PDL
ETSI
650 Route des Lucioles
F-06921 Sophia Antipolis Cedex - FRANCE

Tel.: +33 4 92 94 42 00  Fax: +33 4 93 65 47 16

Siret N° 348 623 562 00017 - APE 7112B
Association à but non lucratif enregistrée à la
Sous-Préfecture de Grasse (06) N° w061004871

Important notice
The present document can be downloaded from:
http://www.etsi.org/standards-search
The present document may be made available in electronic versions and/or in print. The content of any electronic and/or
print versions of the present document shall not be modified without the prior written authorization of ETSI. In case of any
existing or perceived difference in contents between such versions and/or in print, the prevailing version of an ETSI
deliverable is the one made publicly available in PDF format at www.etsi.org/deliver.
Users of the present document should be aware that the document may be subject to revision or change of status.
Information on the current status of this and other ETSI documents is available at
https://portal.etsi.org/TB/ETSIDeliverableStatus.aspx
If you find errors in the present document, please send your comment to one of the following services:
https://portal.etsi.org/People/CommiteeSupportStaff.aspx
If you find a security vulnerability in the present document, please report it through our
Coordinated Vulnerability Disclosure Program:
https://www.etsi.org/standards/coordinated-vulnerability-disclosure
Notice of disclaimer & limitation of liability
The information provided in the present deliverable is directed solely to professionals who have the appropriate degree of
experience to understand and interpret its content in accordance with generally accepted engineering or
other professional standard and applicable regulations.
No recommendation as to products and services or vendors is made or should be implied.
No representation or warranty is made that this deliverable is technically accurate or sufficient or conforms to any law
rule and/or regulation and further, no representation or warranty is made of merchantability or fitness
and/or governmental
for any particular purpose or against infringement of intellectual property rights.
In no event shall ETSI be held liable for loss of profits or any other incidental or consequential damages.

Any software contained in this deliverable is provided "AS IS" with no warranties, express or implied, including but not
limited to, the warranties of merchantability, fitness for a particular purpose and non-infringement of intellectual property
rights and ETSI shall not be held liable in any event for any damages whatsoever (including, without limitation, damages
for loss of profits, business interruption, loss of information, or any other pecuniary loss) arising out of or related to the use
of or inability to use the software.
Copyright Notification
No part may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and
microfilm except as authorized by written permission of ETSI.
The content of the PDF version shall not be modified without the written authorization of ETSI.
The copyright and the foregoing restriction extend to reproduction in all media.

© ETSI 2023.
All rights reserved.
ETSI
3 ETSI GS PDL 015 V1.1.1 (2023-01)

Contents
Intellectual Property Rights . 5
Foreword . 5
Modal verbs terminology . 5
Executive summary . 5
Introduction . 6
1 Scope . 7
2 References . 7
2.1 Normative references . 7
2.2 Informative references . 7
3 Definition of terms, symbols and abbreviations . 8
3.1 Terms . 8
3.2 Symbols . 8
3.3 Abbreviations . 8
4 Definition of Reputation . 8
4.1 Introduction . 8
4.2 Etymology . 9
4.2.1 Definition of Reputation . 9
4.2.2 Branding and Reputation . 9
4.3 The value of reputation . 9
4.4 Assignment of reputation to objects in a PDL platform . 10
4.4.1 Assignment of Reputation to a PDL node . 10
4.4.1.1 Service Level related reputation . 10
4.4.1.2 Trustworthiness related reputation . 10
4.4.1.3 Commercial reputation . 10
4.4.2 Assignment of Reputation to entities . 11
4.4.3 The significance of reputation of objects . 11
4.5 Disengagement of Reputation from Commercial/Monetary value . 11
4.5.1 Representation of reputation as a metric . 11
4.5.2 Binary Reputation vs. Score-based reputation . 11
4.5.3 Normalized reputation score/Metric . 12
5 Use of Reputation . 12
5.1 Reputation as an indicator of performance metrics . 12
5.1.1 Types of Quantifiable and Verifiable Reputation . 12
5.1.2 Service Quality Reputation . 12
5.1.3 Trustworthiness Reputation . 14
5.1.4 Commercial Reputation . 15
5.1.5 Discussion of SLS and SLA . 15
5.1.6 Discussion of objective and subjective scores . 16
6 Reputation Management. 17
6.1 Introduction to Reputation Management . 17
6.2 Reputation management over time . 17
6.2.1 Introduction. 17
6.2.2 Everlasting cumulative reputation . 17
6.2.3 Time dependent reputation . 17
6.2.3.1 General discussion and introduction . 17
6.2.3.2 Logarithmic decay . 18
6.2.3.3 Linear decay . 18
7 Compliance . 19
ETSI
4 ETSI GS PDL 015 V1.1.1 (2023-01)
7.1 GDPR Compliance . 19
Annex A (normative): Example of criteria for calculating reputation . 20
History . 23

ETSI
5 ETSI GS PDL 015 V1.1.1 (2023-01)
Intellectual Property Rights
Essential patents
IPRs essential or potentially essential to normative deliverables may have been declared to ETSI. The declarations
pertaining to these essential IPRs, if any, are publicly available for ETSI members and non-members, and can be
found in ETSI SR 000 314: "Intellectual Property Rights (IPRs); Essential, or potentially Essential, IPRs notified to
ETSI in respect of ETSI standards", which is available from the ETSI Secretariat. Latest updates are available on the
ETSI Web server (https://ipr.etsi.org/).
Pursuant to the ETSI Directives including the ETSI IPR Policy, no investigation regarding the essentiality of IPRs,
including IPR searches, has been carried out by ETSI. No guarantee can be given as to the existence of other IPRs not
referenced in ETSI SR 000 314 (or the updates on the ETSI Web server) which are, or may be, or may become,
essential to the present document.
Trademarks
The present document may include trademarks and/or tradenames which are asserted and/or registered by their owners.
ETSI claims no ownership of these except for any which are indicated as being the property of ETSI, and conveys no
right to use or reproduce any trademark and/or tradename. Mention of those trademarks in the present document does
not constitute an endorsement by ETSI of products, services or organizations associated with those trademarks.
DECT™, PLUGTESTS™, UMTS™ and the ETSI logo are trademarks of ETSI registered for the benefit of its

Members. 3GPP™ and LTE™ are trademarks of ETSI registered for the benefit of its Members and of the 3GPP
Organizational Partners. oneM2M™ logo is a trademark of ETSI registered for the benefit of its Members and of the ®
oneM2M Partners. GSM and the GSM logo are trademarks registered and owned by the GSM Association.
Foreword
This Group Specification (GS) has been produced by ETSI Industry Specification Group (ISG) Permissioned
Distributed Ledger (PDL).
Modal verbs terminology
In the present document "shall", "shall not", "should", "should not", "may", "need not", "will", "will not", "can" and
"cannot" are to be interpreted as described in clause 3.2 of the ETSI Drafting Rules (Verbal forms for the expression of
provisions).
"must" and "must not" are NOT allowed in ETSI deliverables except when used in direct citation.
Executive summary
The present document discusses the use and application of reputation in PDL. The aspects of reputation discussed
include:
a) The meaning of reputation.
b) Representation of reputation and the use of a normalized score.
c) Types of reputation with specific focus on:
i) Reputation based on technical performance and adherence to service level commitments.
ii) Reputation based on behaviour and conformance with standards and regulations.
d) The use of reputation when conducting PDL related activities.
ETSI
6 ETSI GS PDL 015 V1.1.1 (2023-01)
The present document also defines methods for deriving reputation based on heuristics and measurement of
performance levels.
Introduction
The present document discusses the use and applicability of reputation in PDL. The main content is broken down to
four clauses as described herewith:
a) Clause 4 defines the term and discusses the different types of reputation with respect to technology and ETSI
deliverables. Focus is given to assignment of reputation to objects of different types and methods of
presentation.
b) Clause 5 defines the use of reputation with focus on indicators such as:
i) Quality of Service, indicating a score based on performance of service against defined targets.
ii) Trustworthiness, indicating the involvement of the object in fraudulent activities.
iii) Commercial reliability or stability indicating the object's solidity when it comes to financial matters.
iv) This clause also discusses objective scores, based on measurable attributes, and subjective scores based
on perception and unmeasurable attributes.
c) Clause 6 discusses and defines the mathematical formulas used for calculating reputation based on actual
performance with focus on the duration historical events have effect on current reputation score. Such as
everlasting, linear decay and logarithmic decay.
d) Clause 7 discusses GDPR aspects of reputation and the way to ensure compliance with such requirements.
The present document is a Group Specification and as such each of the clauses includes requirements (mandatory,
recommended, optional) that need to be fulfilled for an ETSI compliant PDL reputation to be defined and managed.

ETSI
7 ETSI GS PDL 015 V1.1.1 (2023-01)
1 Scope
The present document discusses and specifies:
a) The meaning of reputation.
b) Representation of reputation and the use of a normalized score.
c) Types of reputation with specific focus on:
i) Reputation based on technical performance and adherence to service level commitments.
ii) Reputation based on behaviour and conformance with standards and regulations.
d) The use of reputation when conducting PDL related activities.
2 References
2.1 Normative references
References are either specific (identified by date of publication and/or edition number or version number) or
non-specific. For specific references, only the cited version applies. For non-specific references, the latest version of the
referenced document (including any amendments) applies.
Referenced documents which are not found to be publicly available in the expected location might be found at
https://docbox.etsi.org/Reference/.
NOTE: While any hyperlinks included in this clause were valid at the time of publication, ETSI cannot guarantee
their long term validity.
The following referenced documents are necessary for the application of the present document.
Not applicable.
2.2 Informative references
References are either specific (identified by date of publication and/or edition number or version number) or
non-specific. For specific references, only the cited version applies. For non-specific references, the latest version of the
referenced document (including any amendments) applies.
NOTE: While any hyperlinks included in this clause were valid at the time of publication, ETSI cannot guarantee
their long term validity.
The following referenced documents are not necessary for the application of the present document but they assist the
user with regard to a particular subject area.
[i.1] Cambridge Dictionary definition of the term "reputation".
NOTE: Available at https://dictionary.cambridge.org/dictionary/english/reputation.
[i.2] Merriam-Webster Dictionary definition of the term "reputation".
NOTE: Available at https://www.merriam-webster.com/dictionary/reputation.
[i.3] "Reputation and its risks", Robert G. Eccles, Scott C. Newquist, and Roland Schatz, Harvard
Business review, February 2007.
NOTE: Available at https://hbr.org/search?search_type=search-all&term=reputation+and+its+risks.
[i.4] Recommendation ITU-T G.107 (June 2015): "The E-model: a computational model for use in
transmission planning".
ETSI
8 ETSI GS PDL 015 V1.1.1 (2023-01)
3 Definition of terms, symbols and abbreviations
3.1 Terms
For the purposes of the present document, the following terms apply:
object: device, an entity or a functionality that can be identified and defined
3.2 Symbols
Void.
3.3 Abbreviations
For the purposes of the present document, the following abbreviations apply:
API Application Programming Interface
CA Certification Authority
D&B Dun & Bradstreet ™
CIBIL Credit Information Bureau (India) Limited
CQE Conversational Quality Estimation
DLT Distributed Ledger Technology
ETSI European Telecommunications Standards Institute
EWMA Exponential Weighted Moving Average
GDPR General Data Protection Regulation
GoB Good or Better
ISG Industry Specification Group
ITU International Telecommunication Union
MOS Mean Opinion Score
PDL Permissioned Distributed Ledger
PoW Poor or Worse
SLA Service Level Agreement
SLS Service Level Specifications
SP Service Provider
VoIP Voice over IP
WMA Weighted Moving Average
ZKP Zero Knowledge Proof
4 Definition of Reputation
4.1 Introduction
In most PDL ecosystems quantifiable and verifiable reputation represents significant economic and operational value to
the ecosystem participants/members or their delegates. While in human interactions a person would have more trust in
another person or an entity with higher reputation, when it comes to digital systems such trust needs to be represented in
a manner readable and usable by a machine so an algorithm of some sort can use such representation when making
reputation-related decisions. Such decisions may include selection of vendors (where the algorithm may prefer a vendor
with higher reputation or may consider reputation as one of multiple weighted factors such as price, delivery timelines,
SLA, etc.). Reputation may be presented as a single metric but may also represent different metrics. E.g. an object may
be assessed by its SLA reputation, financial stability reputation and trustworthiness reputation where each may have a
certain effect on the final score calculated by an algorithm.
ETSI
9 ETSI GS PDL 015 V1.1.1 (2023-01)
Certain entities offer reputation scores of various types. Banks typically define credit scores to their customers. Other
companies provide scores to entities such as commercia companies and even countries. One of the main drawbacks of
scores issued by such entities is the lack of transparency into the algorithms used to derive the score, and uncertainty
about the motives or trustworthiness of the issuer of such scores.
PDL-based reputation scores offer a way to overcome both the issue of transparency and the uncertainty related to trust.
PDL based algorithms are transparent and trust is embedded in PDL.
4.2 Etymology
4.2.1 Definition of Reputation
The Cambridge Dictionary defines reputation as "the opinion that people in general have about someone or something,
or how much respect or admiration someone or something receives, based on past behaviour or character" [i.1].
The Meriam-Webster dictionary [i.2] gives the term Reputation three similar meanings with slightly different contexts:
a) overall quality or character as seen or judged by people in general;
b) recognition by other people of some characteristic or ability;
c) a place in public esteem or regard: good name.
Combining both sources reputation can be described as: Judgement of the behaviour of an object (object A) by another
object (object B) which may affect decisions made by object B with regards to object A.
4.2.2 Branding and Reputation
Discussion of the difference between Reputation and Branding. A brand may have a reputation, meaning reputation is
one of the attributes describing a brand. It is not uncommon that companies re-brand themselves and as a result their
reputation may or may not follow to the new brand. e.g. an ill-repute brand may re-brand itself in an attempt to get rid
of its poor reputation and start off with a clean slate. Another example could be two brands that merge into one and
choose to retain the brand that has the better reputation. It is also not uncommon to see a company offering different
brands in different geographies based on the reputation such brands have established in said geographies.
4.3 The value of reputation
In most PDL ecosystems quantifiable and verifiable reputation represents significant economic and operational value to
the ecosystem participants/members or their delegates. The present document defines how ETSI ISG PDL manages a
quantifiable and verifiable reputation framework.
[O1] The reputation of an ETSI ISG PDL entity MAY reflect:
a) The quality of its products and services.
b) Its trustworthiness as business/operational entity.
c) Its level of engagement in the PDL operations.
d) Additional factors not listed above.
There may be relationships among these different types of reputations, but there are important distinctions that
determine how they are to be derived and used. As an example, an object (such as a node or a user) may be trustworthy
when it comes to fraudulent activities, but perform poorly when it comes to its ability to process data on a timely
manner. As such it will have a low Quality of Service score and a high Trustworthiness score. However – there may be
scenarios where an object's slow performance or communication errors may cause it to appear as if it is injecting errors
on purpose and that may also reduce its Trustworthiness score.
ETSI
10 ETSI GS PDL 015 V1.1.1 (2023-01)
By leveraging the data integrity and time linearization properties of PDLs, it is possible to automate the collection,
organization, and use of certain reputation information. This, in turn, can be used to make the PDL platform operations
more transparent and reward those participants who offer a high-quality service and conduct their business fairly and
according to governance rules.
In the context of a PDL platform the perception or opinion discussed in clause 4.1 is not necessarily held by people but
may rather be held by systems or machines. The past behaviour or character is then measured against specific criteria
and is expressed in comparable and readable numerical terms. The present document discusses both the methods by
which such behaviour and character can be defined and measured, as well as possible ways to represent reputation in a
normalized and comparable format.
The use of reputation as a measurable attribute of an object or an entity that can then determine actions related to such
object or entity is the core value of reputation in a PDL platform.
Robert G. Eccles, Scott C. Newquist, and Roland Schatz discuss reputation in an article in the Harvard Business review
[i.3] stating that "… strong positive reputations attract better people. … perceived as providing more value.
organizations are especially vulnerable to anything that damages their reputations". Leading to a conclusion that a
good reputation may be an indicator of both the ability to perform well as well as the ability to sustain such performance
over time. On the other hand, it also leads to the conclusion that damage to reputation not only indicates that an entity or
object does not perform well, but it may also restrict such object or entity from being included in certain activities.
The resulting conclusion is that reputation offers value to both the objects or entities being measured and the objects or
entities using those measurements in order to take decisions or actions.
4.4 Assignment of reputation to objects in a PDL platform
4.4.1 Assignment of Reputation to a PDL node
4.4.1.1 Service Level related reputation
A PDL node can be assigned a reputation score representing certain Service Level related attributes which measure its
adherence with defined/expected operational behaviour. Examples would be:
a) Uptime of the node.
b) Responsiveness of the node (e.g. time of data processing calculations and sending a response).
c) Additional attributes defined in a service level agreement defined by the governance.
These are discussed in detail in clause 5.1.2 herewith.
4.4.1.2 Trustworthiness related reputation
A PDL node can be assigned a reputation score based on its trustworthiness within the context of PDL consensus
operations and general calculations. Examples would be:
a) Involvement of the node in fraudulent activity.
b) Ability of the node to maintain proper security measures against external fraudulent activity.
These are discussed in detail in clause 5.1.3 herewith.
4.4.1.3 Commercial reputation
A PDL node can be assigned a reputation score representing its payment and financial stability and behaviour. Such
score may be linked to external credit score rating entities.
In the context of PDL payment and financial stability are related to:
a) Cryptographic transactions performed using a blockchain based crypto-currency.
b) Token based fiat transactions where certain details of the transaction are recorded on-chain.
ETSI
11 ETSI GS PDL 015 V1.1.1 (2023-01)
These are discussed in detail in clause 5.1.4 herewith.
4.4.2 Assignment of Reputation to entities
Entities, in the context of a PDL platform, could be node operators, external storage providers, virtual or physical hosts
and others. Such entities may operate one or more device that is involved directly or indirectly in PDL operations.
Assignment of reputation to such entities can be broken down in a similar manner to that of nodes: Service Level
related and Trustworthiness related. The main difference is that entities may operate more than one device and the
reputation of an entity affects all devices/nodes it operates, or all objects included in it.
4.4.3 The significance of reputation of objects
As per the etymological definition of reputation earlier in this clause, reputation may impact the opinion and behaviour
of certain objects towards other objects. As a result, reputation may impact the likelihood of specific objects to be
used/selected for certain tasks. Examples could be:
a) A node with poor trustworthiness reputation may be banned from taking part in certain consensus operations.
b) An entity with poor commercial reputation may be less likely to receive orders from potential customers who
may consider them as a financial risk.
4.5 Disengagement of Reputation from Commercial/Monetary
value
4.5.1 Representation of reputation as a metric
Measuring reputation should preferably yield a score with a numerical value. Even in environments with a binary
behaviour (e.g. "Operational" vs. "Non-operational") a reputation score can be achieved over time by comparing the
number or duration of the binary options thus yielding a score of "290 out of 300 samples were operational". In other
environments, for example temperature-controlled environments, a score can represent the average temperature and the
number of times or duration the temperature exceeded the min/max thresholds.
4.5.2 Binary Reputation vs. Score-based reputation
In a binary reputation scenario, an object can be tagged as "reputable" or "irreputable" and will then be considered for
inclusion in or exclusion from key operations (consensus votes, hash calculations, etc.).
In a score-based reputation scenario an object has a reputation which is somewhere between a minimum and a
maximum value and may then be considered for inclusion or exclusion from key operations based on its score. E.g. in
the case of a platform with, say, 8 nodes and a governance rule stating that a minimum of 5 nodes is required for a vote
to be valid, the governance may select the 5 nodes with the highest reputation score.
Typically, a lower score represents lower reputation, and a higher score represents a higher reputation. However, the
governance has the prerogative to define the opposite. This is useful when the score, as a numerical value, is used for
calculations related to the eligibility of an object to participate in key activities.
[D1] In a Score Based reputation scenario the governance SHOULD define the lower limit and the upper limit of the
reputation score and the meaning of such limits related to the use of the score.
ETSI
12 ETSI GS PDL 015 V1.1.1 (2023-01)
4.5.3 Normalized reputation score/Metric
The examples presented in clause 4.4.1 represent the need for normalization of the metrics representing the score. When
comparing samples of different populations (e.g. 300 samples in one population vs. 500 samples in another) the mere
number of samples does not represent the true behaviour of one population compared to the other. A normalized value,
such as percentage, will be more useful. It is thus recommended that reputation is represented in a normalized manner,
be that percentage, a range between 0 % to 10 %, between 0 % to 1 % or any other convention agreed upon or decided
by the governance.
[D2] Score Based reputation SHOULD use a Normalized Metric.
[R1] In a platform using Score Based reputation all nodes SHALL use the same Normalized Metric.
When defining [D1] a normalized metric, the following factors need to be agreed:
a) The value representing the lowest reputation. That will typically be Zero.
b) The value representing the maximum reputation. That would typically be 1 or a representation of a "Whole
unit" in the respective numerical system (e.g. 100 %).
c) The resolution of details. That will typically be represented by the number of decimal positions to be captured
and calculated. E.g. In
...