ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Certificates for mobile code security
Full text PdfPdf (544 KB)
Source Symposium on Applied Computing archive
Proceedings of the 2002 ACM symposium on Applied computing table of contents
Madrid, Spain
SESSION: Agents, interactions, mobility and systems table of contents
Pages: 76 - 81  
Year of Publication: 2002
ISBN:1-58113-445-2
Authors
Hock Kim Tan  University of Southampton, Southampton SO17 1BJ, UK
Luc Moreau  University of Southampton, Southampton SO17 1BJ, UK
Sponsor
SIGAPP: ACM Special Interest Group on Applied Computing
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 7,   Downloads (12 Months): 64,   Citation Count: 1
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/508791.508807
What is a DOI?

ABSTRACT

The problem of protecting mobile code from malicious hosts is an important security issue, for which many solutions have been proposed. We describe a method to adapt an existing technique, execution tracing, to enhance its flexibility in deployment for a large scale mobile agent system. This is achieved through the introduction of a trusted third party, the verification server, which undertakes the verification of execution traces on behalf of the platform launching the agent. The server constructs a certificate that testifies to the capability of a particular host platform to undertake the correct execution of a mobile agent. In this sense, the server assumes a role analogous of a Certificate Authority (CA) in a PKI. We briefly discuss the issues associated with such a framework.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Carlisle Adams , Steve Lloyd, Understanding Public-Key Infrastructure: Concepts, Standards, and Deployment Considerations, Macmillan Technical Publishing, 1999
2
Yariv Aridor , Danny B. Lange, Agent design patterns: elements of agent application design, Proceedings of the second international conference on Autonomous agents, p.108-115, May 10-13, 1998, Minneapolis, Minnesota, United States  [doi>10.1145/280765.280784]
 
3
C. Castelfranchi , R. Falcone, Principles of Trust for MAS: Cognitive Anatomy, Social Importance, and Quantification, Proceedings of the 3rd International Conference on Multi Agent Systems, p.72, July 03-07, 1998
 
4
David M. Chess, Security Issues in Mobile Code Systems, Mobile Agents and Security, p.1-14, January 1998
 
5
C. Ellison, B. Frantz, B. Lampson, R. Rivest, B. Thomas, and T. Ylonen. Spki certificate theory. In RFC 2693, September 1999.
6
Hyacinth S. Nwana , Jeff Rosenschein , Tuomas Sandholm , Carles Sierra , Pattie Maes , Rob Guttmann, Agent-mediated electronic commerce: issues, challenges and some viewpoints, Proceedings of the second international conference on Autonomous agents, p.189-196, May 10-13, 1998, Minneapolis, Minnesota, United States  [doi>10.1145/280765.280800]
 
7
William M. Farmer , Joshua D. Guttman , Vipin Swarup, Security for Mobile Agents: Authentication and State Appraisal, Proceedings of the 4th European Symposium on Research in Computer Security: Computer Security, p.118-130, September 25-27, 1996
 
8
Li Gong. Java Security Architecture (JDK1.2). Technical report, Sun Microsystems, March 1998.
 
9
R. H. Guttman, A. G. Moukas, and P. Maes. Agents as mediators in electronic commerce. Electronic Markets, 8(1), May 1998.
 
10
Fritz Hohl, Time Limited Blackbox Security: Protecting Mobile Agents From Malicious Hosts, Mobile Agents and Security, p.92-113, January 1998
11
Yuh-Jong Hu, Some thoughts on agent trust and delegation, Proceedings of the fifth international conference on Autonomous agents, p.489-496, May 2001, Montreal, Quebec, Canada  [doi>10.1145/375735.376424]
 
12
Wayne Jansen. Countermeasures for mobile agent security. In Computer Communications, Special Issue on Advances in Research and Application of Network Security, November 2000.
 
13
Wayne Jansen. A privilege management scheme for mobile agents. In Workshop on Security of Mobile Multi-Agent Systems : Proceedings of the 5th International Conference on Autonomous Agents, June 2001.
 
14
Neeran Mohan Karnik , Anand R. Tripathi, Security in mobile agent systems, 1998
15
Danny B. Lange , Mitsuru Oshima, Seven good reasons for mobile agents, Communications of the ACM, v.42 n.3, p.88-89, March 1999  [doi>10.1145/295685.298136]
16
George C. Necula , Peter Lee, Safe kernel extensions without run-time checking, Proceedings of the second USENIX symposium on Operating systems design and implementation, p.229-243, October 29-November 01, 1996, Seattle, Washington, United States
 
17
Tomas Sander , Christian F. Tschudin, Protecting Mobile Agents Against Malicious Hosts, Mobile Agents and Security, p.44-60, January 1998
 
18
Hock Kim Tan , Luc Moreau, Trust Relationships in a Mobile Agent System, Proceedings of the 5th International Conference on Mobile Agents, p.15-30, December 02-04, 2001
 
19
Giovanni Vigna, Cryptographic Traces for Mobile Agents, Mobile Agents and Security, p.137-153, January 1998
 
20
Dennis M. Volpano , Geoffrey Smith, Language Issues in Mobile Program Security, Mobile Agents and Security, p.25-43, January 1998
 
21
Uwe G. Wilhelm , Sebastian Staamann , Levente Buttyán, Introducing trusted third parties to the mobile agent paradigm, Secure Internet programming: security issues for mobile and distributed objects, Springer-Verlag, London, 2001
 
22
Uwe G. Wilhelm. A Technical Approach to Privacy based on Mobile Agents Protected by Tamper-resistant Hardware. PhD thesis, Ecole Polytechnique Federale de Lausanne, 1999.
 
23
Bennet S. Yee, A sanctuary for mobile agents, Secure Internet programming: security issues for mobile and distributed objects, Springer-Verlag, London, 2001

CITED BY
David Foster , Vijay Varadharajan, Trust-enhanced secure mobile agent-based system design, International Journal of Agent-Oriented Software Engineering, v.1 n.2, p.205-224, July 2007

INDEX TERMS

Primary Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection

Additional Classification:
  C. Computer Systems Organization
  C.1 PROCESSOR ARCHITECTURES
      C.1.3 Other Architecture Styles
          Subjects: Cellular architecture (e.g., mobile)

  I. Computing Methodologies
  I.2 ARTIFICIAL INTELLIGENCE
        I.2.11 Distributed Artificial Intelligence
            Subjects: Intelligent agents


General Terms:
Algorithms, Design, Security, Theory


Keywords:
mobile agent certificates, mobile agent security, mobile agent security framework

Collaborative Colleagues:
Hock Kim Tan: colleagues
Luc Moreau: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player