Programming Satan’s agents (2001) [6 citations — 3 self]
Abstract:
Mobile agent security is still a young discipline and most naturally, the focus up to the time of writing was on inventing new cryptographic protocols for securing various aspects of mobile agents. However, past experience shows that protocols can be flawed, and flaws in protocols can remain unnoticed for a long period of time. The game of breaking and fixing protocols is a necessary evolutionary process that leads to a better understanding of the underlying problems and ultimately to more robust and secure systems. Although, to the best of our knowledge, little work has been published on breaking protocols for mobile agents, it is inconceivable that the multitude of protocols proposed so far are all flawless. As it turns out, the opposite is true. We identify flaws in protocols proposed by Corradi et al., Karjoth et al., and Karnik et al., including protocols based on secure coprocessors. Additionally, we propose how the protocols can be strengthened against the types of attacks we launch against them. Key words: mobile agent security, breaking security protocols. 1
Citations
| 97 | A Sanctuary for Mobile Agents – Yee - 1999 |
| 71 | Programming satan’s computer – Anderson, Needham - 1995 |
| 70 | Vipin Swarup. Security for Mobile Agents: Issues and Requirements – Farmer, Guttman - 1996 |
| 50 | Protecting the Computation Results of Free-Roaming Agents – Karjoth, Asokan, et al. - 1998 |
| 47 | Security issues in mobile code systems – Chess - 1998 |
| 26 | Tripathi, “Security in the Ajanta mobile agent system – Karnik, R - 2001 |
| 20 | Mutual protection of co-operating agents – Roth - 1999 |
| 8 | Mobile agents protection in the internet environment – Corradi, Montanari, et al. - 1999 |
| 8 | Encrypting Java Archives and its application to mobile agent security – Roth, Conan - 2001 |
| 6 | Secure mobile agent-based merchant brokering in distributed marketplaces – Karjoth - 2000 |
| 6 | Handbook of Applied Cryptography. Discrete Mathematics and its Applications – Menezes, Oorschot, et al. - 1996 |
