Guarding security sensitive content using confined mobile agents

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

Guarding security sensitive content using confined mobile agents

Full text

Pdf (152 KB)

Source

Symposium on Applied Computing archive
Proceedings of the 2007 ACM symposium on Applied computing table of contents

Seoul, Korea

SESSION: Agents, interactions, mobility and systems table of contents

Pages: 48 - 55

Year of Publication: 2007

ISBN:1-59593-480-4

Authors

Guido van 't Noordende	Vrije Universiteit, Amsterdam, The Netherlands
Frances M. T. Brazier	Vrije Universiteit, Amsterdam, The Netherlands
Andrew S. Tanenbaum	Vrije Universiteit, Amsterdam, The Netherlands

Sponsor

SIGAPP: ACM Special Interest Group on Applied Computing

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 13, Downloads (12 Months): 84, Citation Count: 0

Additional Information:

abstract references index terms collaborative colleagues

Tools and Actions:	Request Permissions Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/1244002.1244013 What is a DOI?

ABSTRACT

Mobile code and mobile agents are generally associated with security vulnerabilities, rather than with increased security. This paper describes an approach in which mobile agents are confined, in order to allow content providers to retain control over how their data is exported while allowing agents to search the full content of this data locally. This approach offers increased control and security compared to the traditional client-server technologies commonly used for building distributed systems. We describe a new system, called Mansion, which implements confinement of mobile agents, and describe a number of applications of the confinement model to illustrate its potential.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	S. Vinoski. CORBA: Integrating Diverse Applications Within Distributed Heterogeneous Environments. IEEE Communications Magazine, 14(2), February 1997.
	2	Maarten van Steen , Philip Homburg , Andrew S. Tanenbaum, Globe: A Wide-Area Distributed System, IEEE Concurrency, v.7 n.1, p.70-78, January 1999 [doi>10.1109/4434.749137]
	3	Bogdan C. Popescu , Maarten van Steen , Andrew S. Tanenbaum, A Security Architecture for Object-Based Distributed Systems, Proceedings of the 18th Annual Computer Security Applications Conference, p.161, December 09-13, 2002
	4	IBM. Web Services Security (WS-Security). 2002. http://www-106.ibm.com/developerworks/webservices/library/ws-secure/.
	5	I. Cox; J. Kilian; T. Leighton; T. Shamoon. Secure Spread Spectrum Watermarking for Multimedia. IEEE Transactions on Image Processing vol. 6, no. 12, pages 1673--1687, 1997.
	6	A. M. Eskicioglu; J. Town; E. J. Delp. Security of Digital Entertainment Content from Creation to Consumption. Signal Processing: Image Communication, 18(4), pages 237--262, 2003.
	7	Dejan Milojiči&cacute , Frederick Douglis , Richard Wheeler, Mobility: processes, computers, and agents, ACM Press/Addison-Wesley Publishing Co., New York, NY, 1999
	8	Stephane G. Belmon , Bennet S. Yee, Mobile Agents and Intellectual Property Protection, Proceedings of the Second International Workshop on Mobile Agents, p.172-182, September 01, 1998
	9	Mobile Agents and Security, January 1998
	10	G. J. van 't Noordende; F. M. T. Brazier; A. S. Tanenbaum. Security in a Mobile Agent System. 1st IEEE Symposium on Multi-Agent Security and Survivability, 2004. Philadelphia, PA.
	11	G. J. van 't Noordende; A. Balogh; R. F. H. Hofman; F. M. T. Brazier; A. S. Tanenbaum. A Secure and Portable Jailing System. Technical Report IR-CS-025, Vrije Universiteit, October 2006.
	12	T. Garfinkel. Traps and Pitfalls: Practical Problems in System Call Interception Based Security Tools. Proc. Symposium on Network and Distributed System Security (NDSS), 2003. pp. 163--176.
	13	Alfonso Fuggetta , Gian Pietro Picco , Giovanni Vigna, Understanding Code Mobility, IEEE Transactions on Software Engineering, v.24 n.5, p.342-361, May 1998 [doi>10.1109/32.685258]
	14	Bruce Walker , Gerald Popek , Robert English , Charles Kline , Greg Thiel, The LOCUS distributed operating system, Proceedings of the ninth ACM symposium on Operating systems principles, p.49-70, October 10-13, 1983, Bretton Woods, New Hampshire, United States
	15	Niranjan Suri , Jeffrey Bradshaw , Maggie R. Breedy , Paul T. Groth , Gregory A. Hill , Renia Jeffers, Strong Mobility and Fine-Grained Resource Control in NOMADS, Proceedings of the Second International Symposium on Agent Systems and Applications and Fourth International Symposium on Mobile Agents, p.2-15, September 13-15, 2000
	16	Lorenzo Bettini , Rocco De Nicola, Translating Strong Mobility into Weak Mobility, Proceedings of the 5th International Conference on Mobile Agents, p.182-197, December 02-04, 2001
	17	A. J. Chakravarti; X. Wang; J. O. Hallstrom; G. Baumgartner. Implementation of Strong Mobility for Multi-Threaded Agents in Java. Proc. International Conference on Parallel Processing (ICPP), 2003.
	18	Takahiro Sakamoto , Tatsurou Sekiguchi , Akinori Yonezawa, Bytecode Transformation for Portable Thread Migration in Java, Proceedings of the Second International Symposium on Agent Systems and Applications and Fourth International Symposium on Mobile Agents, p.16-28, September 13-15, 2000
	19	Stefan Fünfrocken, Transparent Migration of Java-Based Mobile Agents, Proceedings of the Second International Workshop on Mobile Agents, p.26-37, September 01, 1998
	20	Walter Binder , Jane G. Hulaas , Alex Villazón, Portable resource control in Java, Proceedings of the 16th ACM SIGPLAN conference on Object oriented programming, systems, languages, and applications, p.139-155, October 14-18, 2001, Tampa Bay, FL, USA
	21	Volker Roth , Ulrich Pinsdorf , Jan Peters, A distributed content-based search engine based on mobile code, Proceedings of the 2005 ACM symposium on Applied computing, March 13-17, 2005, Santa Fe, New Mexico [doi>10.1145/1066677.1066697]
	22	J. E. White. Telescript Technology: Mobile Agents. White paper, General Magic, 1996.
	23	J. Baumann; F. Hohl; M. Strasser; K. Rothermel. Mole - Concepts of a Mobile Agent System. Technical Report, Universität Stuttgart, August 1997.
	24	Neeran M. Karnik , Anand R. Tripathi, Security in the Ajanta mobile agent system, Software—Practice & Experience, v.31 n.4, p.301-329, April 10, 2001 [doi>10.1002/spe.364]
	25	Danny B. Lange , Mitsuru Oshima, Mobile agents with Java: The Aglet API, World Wide Web, v.1 n.3, p.111-121, 1998 [doi>10.1023/A:1019267832048]
	26	Robert S. Gray , David Kotz , George Cybenko , Daniela Rus, D'Agents: Security in a Multiple-Language, Mobile-Agent System, Mobile Agents and Security, p.154-187, January 1998
	27	Holger Peine , Torsten Stolpmann, The Architecture of the Ara Platform for Mobile Agents, Proceedings of the First International Workshop on Mobile Agents, p.50-61, April 07-08, 1997
	28	D. Johansen , R. van Renesse , F. B. Schneider, Operating system support for mobile agents, Proceedings of the Fifth Workshop on Hot Topics in Operating Systems (HotOS-V), p.42, May 04-05, 1995
	29	N. J. E. Wijngaards , B. J. Overeinder , M. van Steen , F. M. T. Brazier, Supporting internet-scale multi-agent systems, Data & Knowledge Engineering, v.41 n.2-3, p.229-245, June 2002 [doi>10.1016/S0169-023X(02)00042-3]
	30	Volker Roth , Mehrdad Jalali-Sohi, Concepts and Architecture of a Security-Centric Mobile Agent Server, Proceedings of the Fifth International Symposium on Autonomous Decentralized Systems, p.435, March 26-28, 2001
	31	Niels Provos, Improving host security with system call policies, Proceedings of the 12th conference on USENIX Security Symposium, p.18-18, August 04-08, 2003, Washington, DC
	32	T. Garfinkel; B. Pfaff; M. Rosenblum. Ostia: A Delegating Architecture for Secure System Call Interposition. Proc. ISOC Network and Distributed System Security Symposium (NDSS), 2004.
	33	Ian Goldberg , David Wagner , Randi Thomas , Eric A. Brewer, A secure environment for untrusted helper applications confining the Wily Hacker, Proceedings of the 6th conference on USENIX Security Symposium, Focusing on Applications of Cryptography, p.1-1, July 22-25, 1996, San Jose, California
	34	K. Jain; R. Sekar. User-Level Infrastructure for System Call Interposition: A Platform for Intrusion detection and Confinement. ISOC Network and Distributed System Security Symposium (NDSS), 2000. pp. 19--34.
	35	T. Shinagawa; K. Kono; T. Masuda. Flexible and Efficient Sandboxing Based on Fine-Grained Protection Domains. ISSS, 2002. pp. 172--184.
	36	David S. Peterson , Matt Bishop , Raju Pandey, A Flexible Containment Mechanism for Executing Untrusted Code, Proceedings of the 11th USENIX Security Symposium, p.207-225, August 05-09, 2002
	37	Walter Binder , Volker Roth, Secure mobile agent systems using Java: where are we heading?, Proceedings of the 2002 ACM symposium on Applied computing, March 11-14, 2002, Madrid, Spain [doi>10.1145/508791.508813]
	38	Godmar Back , Wilson C. Hsieh , Jay Lepreau, Processes in KaffeOS: isolation, resource management, and sharing in java, Proceedings of the 4th conference on Symposium on Operating System Design & Implementation, p.23-23, October 22-25, 2000, San Diego, California