Interaction tracing for mobile agent security
Interaction tracing for mobile agent security
This thesis develops a new technique, interaction tracing, to address the security issue of protecting mobile agents from potentially malicious hosts. In this technique, a mobile agent is modeled as a black box whose behaviour can be captured through a trace of its inputs and outputs during the process of execution. Formalization of the activity of creating and verifying traces is detailed for a simple agent programming language using operational semantics. An interaction protocol is developed to enable secure exchange of traces between entities in the system that are responsible for verifying the validity of the traces. This protocol is formally modeled and verified for specific security properties using a finite-state model checker. The protocol is extended to allow for the activity of trace reconciliation, which protects inter-agent communication between mobile agents operating in a multi-agent context. Implementation of this secure protocol in conjunction with the interaction tracing activity is undertaken in a mobile agent framework and is quantitatively evaluated against a non-secure mobile agent system and standard client-server approach. A trust model is introduced in the context of the protocol that allows trust relationships to be formed between the various entities in the system, permitting a more flexible deployment of the protocol.
mobile agent security, mobile code security
TAN, V H K
fa0af9d5-d53f-4e35-a7f6-cdaffe02ac72
April 2004
TAN, V H K
fa0af9d5-d53f-4e35-a7f6-cdaffe02ac72
TAN, V H K
(2004)
Interaction tracing for mobile agent security.
Engineering and Applied Science, Electronics and Computer Science, Doctoral Thesis.
Record type:
Thesis
(Doctoral)
Abstract
This thesis develops a new technique, interaction tracing, to address the security issue of protecting mobile agents from potentially malicious hosts. In this technique, a mobile agent is modeled as a black box whose behaviour can be captured through a trace of its inputs and outputs during the process of execution. Formalization of the activity of creating and verifying traces is detailed for a simple agent programming language using operational semantics. An interaction protocol is developed to enable secure exchange of traces between entities in the system that are responsible for verifying the validity of the traces. This protocol is formally modeled and verified for specific security properties using a finite-state model checker. The protocol is extended to allow for the activity of trace reconciliation, which protects inter-agent communication between mobile agents operating in a multi-agent context. Implementation of this secure protocol in conjunction with the interaction tracing activity is undertaken in a mobile agent framework and is quantitatively evaluated against a non-secure mobile agent system and standard client-server approach. A trust model is introduced in the context of the protocol that allows trust relationships to be formed between the various entities in the system, permitting a more flexible deployment of the protocol.
Other
finalphd.ps
- Other
More information
Published date: April 2004
Keywords:
mobile agent security, mobile code security
Organisations:
Electronics & Computer Science
Identifiers
Local EPrints ID: 259235
URI: http://eprints.soton.ac.uk/id/eprint/259235
PURE UUID: c2c53bc7-2ee3-4219-84ba-82276c23b40f
Catalogue record
Date deposited: 31 Mar 2004
Last modified: 14 Mar 2024 06:22
Export record
Contributors
Author:
V H K TAN
Download statistics
Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.
View more statistics