在移动代理系统中实施基于历史的安全策略

Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks Pub Date : 2003-06-04 DOI:10.1109/POLICY.2003.1206977

Pedro Dias, Carlos Ribeiro, Paulo Ferreira

{"title":"在移动代理系统中实施基于历史的安全策略","authors":"Pedro Dias, Carlos Ribeiro, Paulo Ferreira","doi":"10.1109/POLICY.2003.1206977","DOIUrl":null,"url":null,"abstract":"The mobile agent paradigm used in modern distributed systems has revealed some new forms of common security threats, such as abusive resource consumption or illegitimate information flow between different and noncooperative entities. This problem is aggravated when an agent's host doesn't know anything about the agent's past activities, visited hosts and interactions with other agents. Thus, robust and efficient authorization platforms should be considered in order to avoid undesired actions from malicious agents. We present an authorization platform designed for a mobile agent system, MobileTrans, which supports the definition and enforcement of history-based security policies, allowing hosts to decide on the authorization of an agent's action upon its past behaviour.","PeriodicalId":391947,"journal":{"name":"Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2003-06-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"18","resultStr":"{\"title\":\"Enforcing history-based security policies in mobile agent systems\",\"authors\":\"Pedro Dias, Carlos Ribeiro, Paulo Ferreira\",\"doi\":\"10.1109/POLICY.2003.1206977\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The mobile agent paradigm used in modern distributed systems has revealed some new forms of common security threats, such as abusive resource consumption or illegitimate information flow between different and noncooperative entities. This problem is aggravated when an agent's host doesn't know anything about the agent's past activities, visited hosts and interactions with other agents. Thus, robust and efficient authorization platforms should be considered in order to avoid undesired actions from malicious agents. We present an authorization platform designed for a mobile agent system, MobileTrans, which supports the definition and enforcement of history-based security policies, allowing hosts to decide on the authorization of an agent's action upon its past behaviour.\",\"PeriodicalId\":391947,\"journal\":{\"name\":\"Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2003-06-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"18\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/POLICY.2003.1206977\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/POLICY.2003.1206977","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 18

摘要

现代分布式系统中使用的移动代理范式揭示了一些常见安全威胁的新形式，如资源滥用或不同和非合作实体之间的非法信息流。当代理的主机对代理过去的活动、访问过的主机以及与其他代理的交互一无所知时，这个问题就会加剧。因此，应该考虑健壮和高效的授权平台，以避免恶意代理的不良行为。我们提出了一个为移动代理系统设计的授权平台，MobileTrans，它支持基于历史的安全策略的定义和实施，允许主机根据代理过去的行为决定代理的行为授权。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Enforcing history-based security policies in mobile agent systems

The mobile agent paradigm used in modern distributed systems has revealed some new forms of common security threats, such as abusive resource consumption or illegitimate information flow between different and noncooperative entities. This problem is aggravated when an agent's host doesn't know anything about the agent's past activities, visited hosts and interactions with other agents. Thus, robust and efficient authorization platforms should be considered in order to avoid undesired actions from malicious agents. We present an authorization platform designed for a mobile agent system, MobileTrans, which supports the definition and enforcement of history-based security policies, allowing hosts to decide on the authorization of an agent's action upon its past behaviour.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks

自引率

0.00%

发文量