Farmer, W. M., Guttman, J. D., and Swarup, V. Security for Mobile Agents: Authentication and State Appraisal. 4th European Symposium on Research in Computer Security, pp. 118--130, Rome, Italy, 1996.  Home/Search   Document Details and Download   Summary   Related Articles   Check

....way so that the agent can perform its task without human intervention. However, mobile agent s ability will put the agent platform at risk if an agent becomes malicious. The security threats an agent platform faces from a malicious agent have been discussed in many papers [Chess 98, CHK 95, Farmer 96, Gray 98, Ylitalo 00] In general, a malicious agent may launch the following attacks. Abusing Resources A malicious agent can partially or completely impede one or more computer services, or a mobile agent s access to some resource or services. For example, an executing mobile agent can ....

....is promising because it can spot the tampered host, but such a bad guy hunt process requires querying the whole traces chain, which involves all the hosts an agent had visited. This will cause a tremendous amount of overhead, which usually outweighs the benefit of the security. Farmer et al. Farmer 96] proposed an idea of using state appraisal functions to protect an agent s state. Based on the agent s current state, a host uses a state appraisal function to compute the privilege an agent needs. The state appraisal function is designed in such a way that a damaged agent cannot acquire ....

W. M. Farmer, J. D. Guttman, and V. Swarup, "Security for Mobile Agents: Authentication and State Appraisal", Proceedings of the European Symposium on Research in Computer Security (ESORICS), pages 118-130, September 1996.

....let the agent execute or restrict the execution privileges. Path histories require each host to add a signed entry to the path, indicating its identity and the identity of the next platform to be visited, and to supply the complete path history to the next host. State appraisal State appraisal [5] attempts to ensure that an agent s state has not been tampered with and that the agent will not carry out any illegal actions through a state appraisal function which becomes part of the agent code. The agent author produces the appraisal function which is signed, by the author, together with the ....

William Farmer, Joshua Guttmann, and Vipin Swarup. Security for mobile agents: Authentication and state appraisal. In E. Bertino, H. Kurth, G. Martella, and E. Montolivo, editors, Proceedings of the European Symposium on Research in Computer Security (ESORICS), volume 1146 in LNCS, pages 118--130. Springer-Verlag, Berlin, 1996.

....attempts fall into one of the following broad categories. The first category comprises approaches that do not allow an agent to leave a trusted environment. Solutions to this include using a host infrastructure that is operated by a single party, allowing agents to migrate only to trusted hosts [Farmer et al. 1996], or possibly hosts with a good reputation [Rasmusson and Jansson, 1996] The second category is pragmatic; it consists of solutions to a single part of the malicious host problem. These consist of agents detecting when they have been modified [Vigna, 1997] and proof verification techniques ....

Farmer, W., Guttmann, J., and Swarup, V. (1996). Security for mobile agents: Authentication and state appraisal. In Proceedings of the European Symposium on Research in Computer Security (ESORICS), number 1146 in LNCS, pages 118-130. Springer-Verlag, Berlin.

....of the authority under which the EU is running. Permit based mechanisms determine access rights on the basis of a permit that is associated to the EU. Permits can be statically associated to the EU for its whole lifetime or can be determined dynamically. For example the state appraisal mechanism [34], defines an EU permit on the basis of a state appraisal function that is associated with the migrating EU. The function is evaluated before EU execution passing as parameter the EU current state. The function returns the set of access rights that the EU needs in its current state. Other dynamic ....

Farmer, W., Guttman, J., and Swarup, V. Security for Mobile Agents: Authentication and State Appraisal. In Proc. of the 4 European Symp. on Research in Computer Security (Rome, Italy, Sept. 1996), Springer, Ed., vol. 1146 of LNCS, pp. 118--130.

....and grounding in Java, it could be extended for use in Java based agent systems. State Appraisal defines a security mechanism for protection of mobile agents. The goal of State Appraisal is to ensure that an agent has not been somehow subverted due to alterations of its state information [16]. Both the author and owner of an agent produce appraisal functions that become part of an agent s code. Appraisal functions are used to determine what privileges to grant an agent, based both on conditional factors and whether the identified state invariants hold. An agent whose state violates an ....

William Farmer, Joshua Guttman, Vipin Swarup, Security for Mobile Agents: Authentication and State Appraisal, Proceedings of the Fourth European Symposium on Research in Computer Security (ESORICS '96), September 1996, pp. 118-130.

....issued by the original signer can create a proxy key pair and sign a message if he is quali ed as a proxy signer and or the message is quali ed based on warrant. These quali cations should be checked together with the signature itself in the veri cation stage. 5. 2 Mobile Agent Mobile agents [3], 7] 11] are autonomous software entities that are able to migrate across di erent execution environments through network. The characteristics of mobile agents, mobility and autonomy, make them ideal for electronic commerce applications because permanent connections between customers and ....

W. Farmer, J. Gutmann and V. Swarup, \Security for mobile agents: Authentication and state appraisal", Proc. of the European Symposium on Research in Computer Security (ESORICS), LNCS 1146, Springer-Verlag, pp. 118-130, 1996.

....Kotzanikolaou et al. KKC99] The researches on prevention of agent tampering have been divided into the active and passive ones. Passive prevention has been studied on organization and structure of the system, mobile agent scheme executable in only trusted environment suggested by Farmer et al. [FGS96], and trading agent system implemented among the distributed entities suggested by Merwe and Sholms [MS97] The researches on active prevention have been focused on protecting mobile agent without considering advantages of mobile agent, which is divided into the hardware and software based ....

W. Farmer, J. Gutmann and V. Swarup, \Security for Mobile Agents: Authentication and State Appraisal", Proc. of the European Symposium on Research in Computer Security (ESORICS), LNCS 1146, Springer-Verlag, pp.118130, 1996.

....of secure mobile agent, and moreover we show that the Schnorr based scheme can be used very eciently in multi proxy mobile agent situation. Keywords. Secure mobile agent, strong non designated proxy signature, multi proxy signature. 1 Introduction 1. 1 Mobile Agent Mobile agents [FGS96,KKC99,LM99] are autonomous software entities that are able to migrate across di erent execution environments through network. The characteristics of mobile agents, mobility and autonomy, make them ideal for This work was done when she was with ICU. 2 electronic commerce applications because permanent ....

W. Farmer, J. Gutmann and V. Swarup, \Security for Mobile Agents: Authentication and State Appraisal", Proc. of the European Symposium on Research in Computer Security (ESORICS), LNCS 1146, Springer-Verlag, pp.118-130, 1996.

....our core code security technique in the framework that we are about to describe. This technique is well developed and to date its only criticisms are related to performance and scalability concerns. There are other detection mechanisms available such as forward integrity [22] and state appraisal [3]; execution tracing however o ers the important advantage of being able to detect tampering of any part of the agent as opposed to only speci c portions, as is the case with the former two mechanisms. To improve scalability, execution tracing requires the introduction of additional entities to ....

W. Farmer, J. Guttman, and V. Swarup. Security for mobile agents : Authentication and state appraisal. In European Symposium on Research in Computer Security, number 1146 in LNCS. Springer-Verlag, 1996.

....model. As such, we did not consider the possibility of checking to ensure the execution environment on a site does not attempt to subvert the correct ow of execution of a code component. There have been methods suggested for performing such checks, these include techniques such as state appraisal [5], execution tracing [15] and reference states [6] Any of these methods could be employed in the scenario towards this end, and we note that the use of small, self contained components would most likely increase the e ectiveness of these methods that were originally proposed for checking large ....

W. Farmer et al. Security for Mobile Agents: Authentication and State Appraisal. In Proceedings of the 4th European Symposium on Research in Computer Security (ESORICS '96), September 1996.

....is primarily on protecting the agent platform from malicious agents, rather than the reverse. The last two items, however, on execution traces and computing with encrypted functions, offer some hope for an eventual solution that is effective. State Appraisal The goal of State Appraisal [16] is to ensure that an agent has not been somehow subverted due to alterations of its state information. The success of the technique relies on the extent to which harmful alterations to an agent s state can be predicted, and countermeasures, in the form of appraisal functions, can be prepared in ....

William Farmer, Joshua Guttman, and Vipin Swarup, "Security for Mobile Agents: Authentication and State Appraisal," Proceedings of the 4th European Symposium on Research in Computer Security (ESORICS '96), September 1996, pp.118-130

....needed when applying certificate based solutions for distributed system security. State Appraisal defines a security mechanism for protection of mobile agents. The goal of State Appraisal is to ensure that an agent has not been somehow subverted due to alterations of its state information [Far96]. Both the author and owner of an agent produce appraisal functions that become part of an agent s code. Appraisal functions are used to determine what privileges to grant an agent, based both on conditional factors and whether the identified state invariants hold. An agent whose state violates an ....

William Farmer, Joshua Guttman, Vipin Swarup, "Security for Mobile Agents: Authentication and State Appraisal," Proceedings of the 4th European Symposium on Research in Computer Security (ESORICS '96), September 1996, pp. 118-130.

....signature authentication is assumed to be very efficient. Because of its inherent simplicity and the efficiency of signature verification, discretion based protection addresses the challenge of implicit acquisition very well. As a result, it has been studied as a general protection infrastructure [38, 56] and is implemented in many existing mobile code systems (e.g. Java [58, 47, 46, 48, 7, 49] Telescript [125, 110] Agent Tcl [51] ActiveX [112, 114] etc) At the heart of the discretion approach is the semantics of the signature. What a signature means determines the kind of access rights ....

William M. Farmer, Joshua D. Guttman, and Vipin Swarup. Security for mobile agents: Authentication and state appraisal. In Proceedings of the Fourth European Symposium on Research in Computer Security (ESORICS'96), volume 1146 of Lecture Notes in Computer Science, pages 118--130, Rome, Italy, September 1996. Springer-Verlag.

....provide approaches in this field. Currently four research directions exist: the organizational approach (as in [GenMag96] eliminates the problem by allowing only trustworthy institutions to run mobile agent systems (and does, therefore not allow open systems) the trust reputation approach (see [FaGuSw96] or [RasJan96] allows agents to migrate only to trusted hosts or such with good reputation (but trust reputation are Success Event Sync. Object Event Channel Agent Agent Group Agent Group Other Events Figure 15: Synchronization using the OMG model Host Ag Ag Host Ag Ag ....

W. Farmer, J. Guttmann, V. Swarup. "Security for Mobile Agents: Authentication and State Appraisal", in: Proceedings of the European Symposium on Research in Computer Security (ESORICS), 1996.

....at detecting illegal modification of code, state, and execution flow of a mobile agent. While static code can be easily protected by using digital signatures, state and execution flow are dynamic components and therefore other mechanisms must be devised. For example, the state appraisal mechanism [7] associates a mobile agent with a state appraisal function. When a roaming agent reaches a new execution environment, the appraisal function is evaluated passing as a parameter the agent s current state. The appraisal function checks if some invariants on the agent s state hold (e.g. ....

W.M. Farmer, J.D. Guttman, and V. Swarup. Security for Mobile Agents: Authentication and State Appraisal. In Springer, editor, Proc. of the 4 th European Symp. on Research in Computer Security, volume 1146 of LNCS, pages 118--130, Rome, Italy, September 1996.

No context found.

Farmer, W. M., Guttman, J. D., and Swarup, V. Security for Mobile Agents: Authentication and State Appraisal. 4th European Symposium on Research in Computer Security, pp. 118--130, Rome, Italy, 1996.

No context found.

Farmer, W.M, Guttman, J.D., and Swarup, V. "Security for mobile agents: Authentication and state appraisal". In 4th European Symposium on Research in Computer Security, pages 118--130, Rome, Italy, 1996.

No context found.

Farmer, W.M., Guttman, J.D., Swarup, V.: Security for mobile agents: Authentication and state appraisal. In: Proceedings of the Fourth European Symposium on Research in Computer Security, Rome, Italy (1996) 118--130

No context found.

William M. Farmer, Joshua D. Guttman, and Vipin Swarup. Security for mobile agents: Authentication and state appraisal. In Proceedings of the Fourth European Symposium on Research in Computer Security (ESORICS'96), volume 1146 of Lecture Notes in Computer Science, pages 118--130, Rome, Italy, September 1996. Springer-Verlag.

No context found.

W. M. Farmer, J. D. Guttman, and V. Swarup. Security for mobile agents: Authentication and state appraisal. In Proceedings of the Fourth European Symposium on Research in Computer Security, 1996.

No context found.

W. Farmer, J. Guttman, and V. Swarup. Security for mobile agents: Authentication and state appraisal. In Proc. of the 4th European Symposium on Research in Computer Security (ESORICS '96), pages 118--130, September 1996.

No context found.

W.M. Farmer, J.D. Guttman and Swarp. Security for Mobile Agent: Authentication and State Appraisal. In Proc. of the European Symposium on Research in Computer Security (ESORICS), volume 1146 in LNCS, pages 118--130, 1996.

No context found.

William Farmer, Joshua Guttmann, and Vipin Swarup. Security for mobile agents: Authentication and state appraisal. In E. Bertino, H. Kurth, G. Martella, and E. Montolivo, editors, Proceedings of the European Symposium on Research in Computer Security (ESORICS 96), number 1146 in LNCS, pages 118--130. Springer-Verlag, Berlin, 1996.

No context found.

William Farmer, Joshua Guttmann, and Vipin Swarup. Security for mobile agents: Authentication and state appraisal. In E. Bertino, H. Kurth, G. Martella, and E. Montolivo, editors, Proceedings of the European Symposium on Research in Computer Security (ESORICS 96), number 1146 in LNCS, pages 118--130. Springer-Verlag, Berlin, 1996.

No context found.

W. Farmer, J. Guttman and V. Swarup, "Security for Mobile Agents: Authentication and State Appraisal", in Proceedings of the Fourth European Symposium on Research in Computer Security (ESORICS'96), LNCS 1146, Springer-Verlag, pp. 118-130, Rome, Italy, September 1996.

First 50 documents

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC