Evaluating the Security of Three Java-Based Mobile Agent Systems

Fischmeister, Sebastian; Vigna, Giovanni; Kemmerer, Richard A.

doi:10.1007/3-540-45647-3_3

Cited by 13 publications

(5 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Currently available mobile agent environments are notoriously vulnerable to a variety of security attacks [7], and until such concerns are alleviated mobile agent applications will likely remain purely within the research domain. Nonetheless, there are some circumstances in which mobile agent systems are somewhat sheltered from these concerns.…”

Section: Discussionmentioning

confidence: 99%

Acquire

Das

Shuster

2002

Proceedings of the First International Joint Conference on Autonomous Agents and Multiagent Systems Part 2 - AAMAS '02

View full text Add to dashboard Cite

The heterogeneous, distributive and voluminous nature of many government and corporate data sources impose severe constraints on meeting the diverse requirements of users who analyze the data. Additionally, communication bandwidth limitations, time constraints, and multiplicity of data formats impose further restrictions on users of these distributed data sources. What is required is a reliable, robust, and efficient data retrieval technique that can access data from distributed data sources while maintaining the autonomy of individual sources. In this paper, we present an Agent-based Complex QUerying and Information Retrieval Engine (ACQUIRE) for large, heterogeneous, and distributed data sources. ACQUIRE acts as a softbot or interface agent by presenting users with the appearance of a single, unified, homogenous data source, against which users can pose high-level declarative queries. ACQUIRE translates each such user query into a set of sub-queries by employing a combination of planning and traditional database query optimization techniques. For each sub-query, ACQUIRE then spawns a corresponding mobile agent, which retrieves data from the appropriate data source. These mobile agents carry with them data-processing code that can be executed at the remote site, thus reducing the size of data returned by the agent. When all mobile agents have returned, ACQUIRE filters and merges the retrieved data and presents the results to the user. Validation experiments on simulated NASA Distributed Active Archive Centers (DAACs) have demonstrated that complex queries can be effectively decomposed and retrieved by this approach, resulting in the twin benefits of improved ease of use and significantly reduced query retrieval times.

show abstract

Section: Discussionmentioning

confidence: 99%

Acquire

Das

Shuster

2002

Proceedings of the First International Joint Conference on Autonomous Agents and Multiagent Systems Part 2 - AAMAS '02

View full text Add to dashboard Cite

show abstract

“…An approach very similar to our work was presented in [22]. The authors defined some general attack classes based on an abstract agent system.…”

Section: Testing Agent Platformsmentioning

confidence: 94%

Evaluating the security of mobile agent platforms

Bürkle¹,

Hertel²,

Müller³

et al. 2008

Auton Agent Multi-Agent Syst

View full text Add to dashboard Cite

Mobility of software agents requires additional security measures. While the theoretical aspects of mobile agent security have been widely studied, there are few studies about the security levels of current agent platforms. In this paper, test cases are proposed to assess agent platform security. These tests focus on malicious agents trying to attack other agents or the agency. Currently, they have been carried out for two agent platforms: JADE and SeMoA. These tests show which of the known theoretical security problems are relevant in practice. Furthermore, they reveal how these problems are addressed by the respective platform and what security flaws are present

show abstract

“…The security problem of MA in transmission can be solved with network information protection strategy [5][6] , mature scheme is done at present. Many available method [7][8][9] are presented to protect host and MA execution environment, for example, the authorization of MA, the identity authentication, the access control, etc. However, the most difficult protection problem is MA itself, because the owner of MA will lose control when MA moves to destination MA system, every line code of MA is explained and executed, that is to say, MA is exposed to destination MA system completely.…”

Section: Introductionmentioning

confidence: 99%

The study for protecting mobile agents based on time checking technology

Guo²,

Tian

et al. 2007

2007 IEEE International Conference on Robotics and Biomimetics (ROBIO)

View full text Add to dashboard Cite

As a new distributed computing technology, mobile agent shows its wide prospect of application. But Some security problems are still exist in the widespread deployment of mobile agents' application. Since the mobile agent is completely exposed to remote host and easily be isolated and attacked by the malicious hosts, the protection of mobile agent on remote agent platform matters much. Obfuscation Policy is used by the mobile agents' producers to enforce the level of security of agents. Some behavioral transformations are made to the agent before sending it to remote platform in order to hide the real code. This paper presents a protection scheme of mobile agent in Internet application, which combining data obfuscation and time checking technology together to verify the security of target node. Method of how to obtain related data in time checking is given also. The protection scheme is tested in actual network management environment, which can effectively identify the malicious node.

show abstract

Evaluating the Security of Three Java-Based Mobile Agent Systems

Cited by 13 publications

References 9 publications

Acquire

Acquire

Evaluating the security of mobile agent platforms

The study for protecting mobile agents based on time checking technology

Contact Info

Product

Resources

About