Title :
Enforcing history-based security policies in mobile agent systems
Author :
Dias, Pedro ; Ribeiro, Carlos ; Ferreira, Paulo
Author_Institution :
Distributed Syst. Group, INESC, Lisbon, Portugal
Abstract :
The mobile agent paradigm used in modern distributed systems has revealed some new forms of common security threats, such as abusive resource consumption or illegitimate information flow between different and noncooperative entities. This problem is aggravated when an agent´s host doesn´t know anything about the agent´s past activities, visited hosts and interactions with other agents. Thus, robust and efficient authorization platforms should be considered in order to avoid undesired actions from malicious agents. We present an authorization platform designed for a mobile agent system, MobileTrans, which supports the definition and enforcement of history-based security policies, allowing hosts to decide on the authorization of an agent´s action upon its past behaviour.
Keywords :
authorisation; client-server systems; mobile agents; multi-agent systems; MobileTrans authorization platform; abusive resource consumption; agent interaction; distributed systems; history-based security policies; illegitimate information flow; mobile agent systems; security threats; Access control; Authorization; Digital signatures; Information security; Mobile agents; Monitoring; Natural languages; Permission; Protection; Robustness;
Conference_Titel :
Policies for Distributed Systems and Networks, 2003. Proceedings. POLICY 2003. IEEE 4th International Workshop on
Print_ISBN :
0-7695-1933-4
DOI :
10.1109/POLICY.2003.1206977
