Protecting mobile agents from external replay attacks

Carles Garrigues; Nikos Migas; William Buchanan; Sergi Robles; Joan Borrell

doi:10.1016/j.jss.2008.05.018

Protecting mobile agents from external replay attacks

Carles Garrigues, Nikos Migas, William Buchanan, Sergi Robles, Joan Borrell

Departament d'Enginyeria de la Informació i de les Comunicacions

Producció científica: Contribució a revista › Article › Recerca › Avaluat per experts

19 Cites (Scopus)

Resum

This paper presents a protocol for the protection of mobile agents against external replay attacks. This kind of attacks are performed by malicious platforms when dispatching an agent multiple times to a remote host, thus making it reexecute part of its itinerary. Current proposals aiming to address this problem are based on storing agent identifiers, or trip markers, inside agent platforms, so that future reexecutions can be detected and prevented. The problem of these solutions is that they do not allow the agent to perform legal migrations to the same platform several times. The aim of this paper is to address these issues by presenting a novel solution based on authorisation entities, which allow the agent to be reexecuted on the same platform a number of times determined at runtime. The proposed protocol is secure under the assumption that authorisation entities are trusted. © 2008 Elsevier Inc. All rights reserved.

Idioma original	Anglès
Pàgines (de-a)	197-206
Nombre de pàgines	10
Revista	Journal of Systems and Software
Volum	82
DOIs	https://doi.org/10.1016/j.jss.2008.05.018
Estat de la publicació	Publicada - 1 de febr. 2009

Accés al document

10.1016/j.jss.2008.05.018

Altres arxius i enllaços

http://gateway.webofknowledge.com/gateway/Gateway.cgi?GWVersion=2&SrcAuth=ORCID&SrcApp=OrcidOrg&DestLinkType=FullRecord&DestApp=WOS_CPL&KeyUT=WOS:000263426900002&KeyUID=WOS:000263426900002

Com citar-ho

@article{7d9c5a08a2ed4b0e9a4629ce56ca4372,

title = "Protecting mobile agents from external replay attacks",

abstract = "This paper presents a protocol for the protection of mobile agents against external replay attacks. This kind of attacks are performed by malicious platforms when dispatching an agent multiple times to a remote host, thus making it reexecute part of its itinerary. Current proposals aiming to address this problem are based on storing agent identifiers, or trip markers, inside agent platforms, so that future reexecutions can be detected and prevented. The problem of these solutions is that they do not allow the agent to perform legal migrations to the same platform several times. The aim of this paper is to address these issues by presenting a novel solution based on authorisation entities, which allow the agent to be reexecuted on the same platform a number of times determined at runtime. The proposed protocol is secure under the assumption that authorisation entities are trusted. {\textcopyright} 2008 Elsevier Inc. All rights reserved.",

keywords = "Malicious hosts, Mobile agents, Protected itinerary, Replay attacks, Security, Trip marker",

author = "Carles Garrigues and Nikos Migas and William Buchanan and Sergi Robles and Joan Borrell",

year = "2009",

month = feb,

day = "1",

doi = "10.1016/j.jss.2008.05.018",

language = "English",

volume = "82",

pages = "197--206",

journal = "Journal of Systems and Software",

issn = "0164-1212",

publisher = "Elsevier Inc.",

}

TY - JOUR

T1 - Protecting mobile agents from external replay attacks

AU - Garrigues, Carles

AU - Migas, Nikos

AU - Buchanan, William

AU - Robles, Sergi

AU - Borrell, Joan

PY - 2009/2/1

Y1 - 2009/2/1

N2 - This paper presents a protocol for the protection of mobile agents against external replay attacks. This kind of attacks are performed by malicious platforms when dispatching an agent multiple times to a remote host, thus making it reexecute part of its itinerary. Current proposals aiming to address this problem are based on storing agent identifiers, or trip markers, inside agent platforms, so that future reexecutions can be detected and prevented. The problem of these solutions is that they do not allow the agent to perform legal migrations to the same platform several times. The aim of this paper is to address these issues by presenting a novel solution based on authorisation entities, which allow the agent to be reexecuted on the same platform a number of times determined at runtime. The proposed protocol is secure under the assumption that authorisation entities are trusted. © 2008 Elsevier Inc. All rights reserved.

AB - This paper presents a protocol for the protection of mobile agents against external replay attacks. This kind of attacks are performed by malicious platforms when dispatching an agent multiple times to a remote host, thus making it reexecute part of its itinerary. Current proposals aiming to address this problem are based on storing agent identifiers, or trip markers, inside agent platforms, so that future reexecutions can be detected and prevented. The problem of these solutions is that they do not allow the agent to perform legal migrations to the same platform several times. The aim of this paper is to address these issues by presenting a novel solution based on authorisation entities, which allow the agent to be reexecuted on the same platform a number of times determined at runtime. The proposed protocol is secure under the assumption that authorisation entities are trusted. © 2008 Elsevier Inc. All rights reserved.

KW - Malicious hosts

KW - Mobile agents

KW - Protected itinerary

KW - Replay attacks

KW - Security

KW - Trip marker

UR - http://gateway.webofknowledge.com/gateway/Gateway.cgi?GWVersion=2&SrcAuth=ORCID&SrcApp=OrcidOrg&DestLinkType=FullRecord&DestApp=WOS_CPL&KeyUT=WOS:000263426900002&KeyUID=WOS:000263426900002

U2 - 10.1016/j.jss.2008.05.018

DO - 10.1016/j.jss.2008.05.018

M3 - Article

SN - 0164-1212

VL - 82

SP - 197

EP - 206

JO - Journal of Systems and Software

JF - Journal of Systems and Software

ER -

Protecting mobile agents from external replay attacks

Resum

Accés al document

Altres arxius i enllaços

Fingerprint

Com citar-ho