The University of Southampton
University of Southampton Institutional Repository

Interaction tracing for mobile agent security

Interaction tracing for mobile agent security
Interaction tracing for mobile agent security
This thesis develops a new technique, interaction tracing, to address the security issue of protecting mobile agents from potentially malicious hosts. In this technique, a mobile agent is modeled as a black box whose behaviour can be captured through a trace of its inputs and outputs during the process of execution. Formalization of the activity of creating and verifying traces is detailed for a simple agent programming language using operational semantics. An interaction protocol is developed to enable secure exchange of traces between entities in the system that are responsible for verifying the validity of the traces. This protocol is formally modeled and verified for specific security properties using a finite-state model checker. The protocol is extended to allow for the activity of trace reconciliation, which protects inter-agent communication between mobile agents operating in a multi-agent context. Implementation of this secure protocol in conjunction with the interaction tracing activity is undertaken in a mobile agent framework and is quantitatively evaluated against a non-secure mobile agent system and standard client-server approach. A trust model is introduced in the context of the protocol that allows trust relationships to be formed between the various entities in the system, permitting a more flexible deployment of the protocol.
mobile agent security, mobile code security
TAN, V H K
fa0af9d5-d53f-4e35-a7f6-cdaffe02ac72
TAN, V H K
fa0af9d5-d53f-4e35-a7f6-cdaffe02ac72

TAN, V H K (2004) Interaction tracing for mobile agent security. Engineering and Applied Science, Electronics and Computer Science, Doctoral Thesis.

Record type: Thesis (Doctoral)

Abstract

This thesis develops a new technique, interaction tracing, to address the security issue of protecting mobile agents from potentially malicious hosts. In this technique, a mobile agent is modeled as a black box whose behaviour can be captured through a trace of its inputs and outputs during the process of execution. Formalization of the activity of creating and verifying traces is detailed for a simple agent programming language using operational semantics. An interaction protocol is developed to enable secure exchange of traces between entities in the system that are responsible for verifying the validity of the traces. This protocol is formally modeled and verified for specific security properties using a finite-state model checker. The protocol is extended to allow for the activity of trace reconciliation, which protects inter-agent communication between mobile agents operating in a multi-agent context. Implementation of this secure protocol in conjunction with the interaction tracing activity is undertaken in a mobile agent framework and is quantitatively evaluated against a non-secure mobile agent system and standard client-server approach. A trust model is introduced in the context of the protocol that allows trust relationships to be formed between the various entities in the system, permitting a more flexible deployment of the protocol.

Other
finalphd.ps - Other
Download (2MB)

More information

Published date: April 2004
Keywords: mobile agent security, mobile code security
Organisations: Electronics & Computer Science

Identifiers

Local EPrints ID: 259235
URI: http://eprints.soton.ac.uk/id/eprint/259235
PURE UUID: c2c53bc7-2ee3-4219-84ba-82276c23b40f

Catalogue record

Date deposited: 31 Mar 2004
Last modified: 29 Jan 2020 15:35

Export record

Download statistics

Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.

View more statistics

Atom RSS 1.0 RSS 2.0

Contact ePrints Soton: eprints@soton.ac.uk

ePrints Soton supports OAI 2.0 with a base URL of http://eprints.soton.ac.uk/cgi/oai2

This repository has been built using EPrints software, developed at the University of Southampton, but available to everyone to use.

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×