Abid Khan,Xiamu Niu,Waqas Anwar,Zhang Yong

DOI: https://doi.org/10.1109/icsmc.2008.4811361

2008-01-01

Abstract:Mobile agent technology is an attempt towards bringing the computation process nearer to the physical location of data in a distributed system. Although it has been extensively studied and applied in a variety of applications but still its usage is limited mainly because of the security issues associated with its usage. Mobile agent watermark encapsulation (MAWE) is a method that first embeds a watermark in the execution results of a mobile agent (MA) and then the watermark results are encapsulated using digital signature. Any malicious changes in the results can be easily tracked by the owner of the mobile agent. In this paper we discuss the attacks that can be launched against Mobile agent watermark encapsulation (MAWE) and how the security properties for mobile agent data integrity are fulfilled. We try to model the behavior of a malicious host by launching a series of attacks against mobile agent and then we see to what extent the security properties for MA can be achieved. The experiments performed in a typical ticket booking scenario suggest that MAWE can be used to protect the results of MA.

Abid Khan,Xiamu Niu,Waqas Anwar,Mansoor Ahmed,Ali Nawaz Khan

DOI: https://doi.org/10.1145/1838002.1838038

2009-01-01

Abstract:Providing integrity of execution is considered as the most challenging problem in Mobile Agent System (MAs). Mobile agent watermarking (MAW) is a technique that attempts to provide integrity of execution to a mobile agent. We discuss the attacks against MAW technique and how the security properties for MAs data integrity are fulfilled. We try to model the behavior of a malicious host by launching a series of passive attacks against mobile agent and then see to what extent the security properties for mobile agent can be achieved. The experimental results suggest that MAW framework can be used to protect the computations results of mobile agents

TC Ma,SP Li

DOI: https://doi.org/10.1109/clustr.2003.1253356

2003-01-01

Cluster Computing

Abstract:In this paper, an instance-oriented security mechanism is proposed, to attack possible security threats in grid-based mobile agent system. The proposed delegation profile allows application systems to define their own security instances, while it provides mechanisms to delegate one's identity on those instances, instead of on certain hosts, just like the conventional delegation does. This can prevent the delegated host from abusing privileges. By adopting the new delegation profile kernel, a new trust framework is then proposed to enhance the security verification ability and provide more fine-grained authorization to mobile agent platforms.

Tianchi Ma,Shanping Li

DOI: https://doi.org/10.1007/978-3-540-24679-4_153

2004-01-01

Abstract:An instance-oriented security mechanism is proposed to deal with security threats in building a general-purpose mobile agent middleware in Grid environment. The proposed solution imports security instance, which is an encapsulation of one set of authorizations and their validity specifications with respect to the agent's specific code segments, or even the states and requests. Study shows this mechanism can inject large flexibility and scalability into the security framework, and can avoid the inefficiency and potential damages obscuring in a conventional linear delegation model.

Donies Samet,Farah Barika Ktata,Khaled Ghedira

DOI: https://doi.org/10.1007/s10515-023-00408-7

IF: 1.677

2024-01-11

Automated Software Engineering

Abstract:Security is a very important challenge in mobile agent systems due to the strong dependence of agents on the platform and vice versa. According to recent studies, most current mobile agent platforms suffer from significant limitations in terms of security when they face Denial of Service (DOS) attacks. Current security solutions even provided by the mobile agent platforms or by the literature focus essentially on individual attacks and are mainly based on static models that present a lack of the permissions definition and are not detailed enough to face collaborative DOS attacks executed by multiple agents or users. This paper presents a security framework that adds security defenses to mobile agent platforms. The proposed security framework implements a standard security model described using MA-UML (Mobile Agent-Unified Modeling Language) notations. The framework lets the administrator (of agents' place) define a precise and fine-grained authorization policy to defend against DOS attacks. The authorization enforcement in the proposed framework is dynamic : the authorization decisions executed by the proposed framework are based upon run-time parameters like the amount of activity of an agent. We implement an experiment on a mobile agent system of e-marketplaces. Given that we focus essentially on the availability criterion, the performance of the proposed framework on a place is evaluated against DOS and DDOS attacks and investigated in terms of duration of execution that is the availability of the place.

computer science, software engineering

Xining Li

DOI: https://doi.org/10.1007/978-3-540-72839-9_10

2007-01-01

Abstract:Mobile agent technology offers a new approach to mining information from data sources distributed over the Internet. However, the potential benefits of mobile agents must be weighted against the real security threats. An agent based Distributed Data Mining (DDM) system must cope with exposed data services and insecure communication channels in the Internet to protect the privacy, integrity and availability of agents and distributed resources. In this paper, we present the design of a mobile agent infrastructure for DDM applications and discuss the implementation of security mechanism that has been effectively integrated with the mobile agent virtual machine.

ZHANG Fei,CHEN Zi-chen,XIONG Li

DOI: https://doi.org/10.3969/j.issn.1006-5911.2006.10.012

2006-01-01

Abstract:To improve the performance and network security of collaborative commerce chain system and to deal with shortcomings of existing solution to electronic commerce,Mobile Agent technology was introduced into the modeling of network-based collaborative commerce chain system.Based on Mobile Agent properties,problems of security and network security confronted with Mobile Agent in the transaction process of network-based collaborative commerce chain were analyzed.Finally,a prototype system between the customer Agent and the supplier Agent was used to expatiate security negotiation bargain procedure based on Mobile Agent under the public key infrastructure and certification authority.Research results showed that Agent's submission permit to the supplier server during authentication process could enhance the network bargain security of the collaborative commerce chain system.

Kun Yang,Xin Guo,Dayou Liu

DOI: https://doi.org/10.1145/506128.506131

2000-01-01

ACM SIGOPS Operating Systems Review

Abstract:Despite its many practical benefits, mobile agent technology results in significant new security threats from both malicious agents and hosts. This paper investigates the problems and approaches of mobile agent system, which shows that bi-directional and layered security model may be a good idea to resolve the security problems in mobile agent systems. Other topics about mobile agent security, such as constrained execution and virus detection, are also discussed.

Belal Amro

DOI: https://doi.org/10.48550/arXiv.1410.4147

2014-10-06

Cryptography and Security

Abstract:Mobile agent technology offers a dramatically evolving computing paradigm in which a program, in the form of a software agent, can suspend its execution on a host computer, transfers itself to another agent-enabled host on the network, and resumes execution on the new host. It is 1960's since mobile code has been used in the form of remote job entry systems. Today's mobile agents can be characterized in a number of ways ranging from simple distributed objects to highly organized intelligent softwares. As a result of this rapid evolvement of mobile agents, plenty of critical security issues has risen and plenty of work is being done to address these problems. The aim is to provide trusted mobile agent systems that can be easily deployed and widely adopted. In this paper, we provide an overview of the most recent threats facing the designers of agent platforms and the developers of agent-based applications. The paper also identifies security objectives, and measures for countering the identified threats and fulfilling those security objectives.

Miao-liang ZHU,Yu QIU

2001-01-01

Journal of Computer Research and Development

Abstract:Mobile agent technology is a new distributed computation paradigm. With its potential power, the technology aroused a great interest and experienced a rapid development in the last ten years. Various mobile agent systems were made for different targets and were implemented in different means. It is necessary to explore the current mobile agent systems and to summarize the implementation technologies for further research. In this paper a comprehensive explanation of mobile agent systems is given. First the definition and peculiarities of mobile agents and mobile agent systems are stated. Its advantages are enumerated. Then eight representative mobile agent systems are surveyed and the design issues about mobile agent programming language, mobility, communication, fault tolerance and security are discussed. Finally, the deficiencies and the trends of mobile agent technology are pointed out.

Yousra Berguig*,Jalal Laassiri,Sanae Hanaoui,Salah-ddine Krit,,,,

DOI: https://doi.org/10.35940/ijitee.l3438.1081219

2019-10-10

International Journal of Innovative Technology and Exploring Engineering

Abstract:Mobile agent system is a satisfying solution for the implementation and maintenance of applications distributed over large-scale networks, this solution is very used in solving complex problems since they are autonomous, Intelligent, robust and faulttolerant. Mobile agents have the capacity to migrate from one node to another all over the network allowing reduction in communication costs. Although they possess all these advantages, using them in distributed environment increases the threat to mobile agent security and during their mobility they can face different types of attacks such as of attacks like Replay attack, man-in-the-middle attack, Cookie theft attack, Offline password guessing attack, Stolen-verifier attack. In this paper we investigate the security of distributed mobile agent system. We propose a solution based on a secure Elliptic Curve Cryptography (ECC) protocol to ensure mutual authentication and protect the agent from different known attacks. The implementation of the proposed solution is obtained using Java Agent Development Framework (JADE). Also, Binary serialization is used to establish a flexible portability of the agent. Finally, we present security and performance analysis, for our solution to secure mobile agent in distributed systems.

ZHANG Yang,CAO Ying-Chun,XIE Li

DOI: https://doi.org/10.3969/j.issn.1002-137X.2005.03.004

2005-01-01

Computer Science

Abstract:Mobile agent is a new kind of network computing paradigm in the field of distributed computing. Because of its distinguished advantages, such as asynchrony,autonomy,mobility,mobile agent is likely to become the dominant approach in network applications. However,with the popu1arity of mobile agent technology,more and more challenges come from those possible security threats in mobile agent systems. Starting from a detailed analysis of these security threats on mobile agent systems,we describe and compare the primary countermeasures for mobile agent security. Some representative mobile agent systems are introduced and their security mechanisms are evaluated.

Maryam Mahmoodi,Mohammad Mahmoodi Varnamkhasti

DOI: https://doi.org/10.48550/arXiv.1402.0886

2014-02-04

Cryptography and Security

Abstract:A mobile agent is a software code with mobility which can be move from a computer into another computers through network. The mobile agent paradigm provides many benefits in developments of distributed application at the same time introduce new requirements for security issues with these systems. In this article we present a solution for protection agent from other agents attacks with loging patterns of malicious agent and useing this log for communication. We implemented our resolution by JADE.

Abid Khan,Xiamu Niu,Zhang Yong

DOI: https://doi.org/10.1109/IIH-MSP.2007.250

2007-01-01

Abstract:Mobile Agent technology is considered as a potential replacement of traditional client server model for implementing future internet applications. However this cannot be achieved without addressing security issues associated with the Mobile Agent Systems. In this paper we present a framework for protecting mobile agent's computation results against malicious host. Our proposed framework uses reversible watermarking for content recovery and cryptographic technique like digital signature providing stronger protection against malicious host. Our experimental results suggest that the framework can be implemented in e-commerce application efficiently.

Yulong Yang,Xinshan Yang,Shuaidong Li,Chenhao Lin,Zhengyu Zhao,Chao Shen,Tianwei Zhang

2024-07-17

Abstract:The rapid progress in the reasoning capability of the Multi-modal Large Language Models (MLLMs) has triggered the development of autonomous agent systems on mobile devices. MLLM-based mobile agent systems consist of perception, reasoning, memory, and multi-agent collaboration modules, enabling automatic analysis of user instructions and the design of task pipelines with only natural language and device screenshots as inputs. Despite the increased human-machine interaction efficiency, the security risks of MLLM-based mobile agent systems have not been systematically studied. Existing security benchmarks for agents mainly focus on Web scenarios, and the attack techniques against MLLMs are also limited in the mobile agent scenario. To close these gaps, this paper proposes a mobile agent security matrix covering 3 functional modules of the agent systems. Based on the security matrix, this paper proposes 4 realistic attack paths and verifies these attack paths through 8 attack methods. By analyzing the attack results, this paper reveals that MLLM-based mobile agent systems are not only vulnerable to multiple traditional attacks, but also raise new security concerns previously unconsidered. This paper highlights the need for security awareness in the design of MLLM-based systems and paves the way for future research on attacks and defense methods.

Cryptography and Security

Yan Tong,Jian Zhang,Tao Qin

DOI: https://doi.org/10.1145/3028842.3028866

2016-01-01

Abstract:Security mechanism of the mobile agent running platform is very important for mobile agent system operation and stability running. In this paper we mainly focus on the security issues related with the mobile agent running platform and we proposed a cross validation mechanism mixed with encryption algorithm to solve the security problems during the migration and communication of mobile agents. Firstly, we employ the cross-validation mechanism to authenticate the nodes mobile agents will be visiting. Secondly, we employ the hybrid encryption mechanism, which combines the advantages of the symmetric encryption and asymmetric encryption, to encrypt the mobile agents and ensure the transferring process of data. Finally, we employ the EMSSL socket communication method to encrypt the content of transmission, in turn to enhance the security and robustness of the mobile agent system. We implement several experiments in the simulation environment and the experimental results verify the efficiency and accuracy of the proposed methods.

杨博,杨鲲,刘大有

2003-01-01

Journal of Software

Abstract:Mobile Agent technology provides a new means for network management, but it also brings some insecurity factors at the same time. Based on the analysis of the security threats and the corresponding measures that may occur during the policy and mobile agent based network management applications, the MASF (mobile Agent security facility) for network management is presented. MASF supports a wide span of security mechanisms such as storage protection, confidentiality, authentication, integrity, authorization and security log, all these mechanisms are seamlessly integrated to secure the network management. Based on MASF, a practical network management application, inter-domain virtual private network configuration, is developed. Verified by the application, MASF can satisfy with most security requirement of network management.

Aneta Zwierko,Zbigniew Kotulski

DOI: https://doi.org/10.48550/arXiv.cs/0506103

2005-06-29

Cryptography and Security

Abstract:The recent developments in the mobile technology (mobile phones, middleware) created a need for new methods of protecting the code transmitted through the network. The proposed mechanisms not only secure the compiled program, but also the data, that can be gathered during its "journey". The oldest and the simplest methods are more concentrated on integrity of the code itself and on the detection of unauthorized manipulation. Other, more advanced proposals protect not only the code but also the execution state and the collected data. The paper is divided into two parts. The first one is mostly devoted to different methods of securing the code and protecting its integrity; starting from watermarking and fingerprinting, up to methods designed specially for mobile agent systems: encrypted function, cryptographic traces, time limited black-box security, chained-MAC protocol, publicly-verifiable chained digital signatures The second part presents new concept for providing mobile agents with integrity protection, based on a zero-knowledge proof system.

Wangli He,Wenying Xu,Xiaohua Ge,Qing-Long Han,Wenli Du,Feng Qian

DOI: https://doi.org/10.1109/TII.2021.3126644

IF: 12.3

2022-01-01

IEEE Transactions on Industrial Informatics

Abstract:Multiagent systems (MASs) provide an effective means for coordinating spatially distributed and networked agents (or nodes, subsystems) such that the desired cooperative tasks can be accomplished with promising reliability, manipulability, scalability, and efficiency. One key issue in the study of MASs is the design of distributed cooperative control protocol and algorithm that depend on only local and real-time information exchanges among interacting agents over networks. However, network-enabled information sharing and increasing connectivity in practical MASs present several attack factors for malicious adversaries, thereby rendering secure control of MASs fundamentally significant. This article provides a brief survey of systems and control technologies that have been available for addressing different secure control problems of MASs in the face of various malicious attacks. First, attacks on MASs are classified based on different configuration layers. Then, the existing attack models and strategies on communication layer and agent layer are systematically examined, respectively. Furthermore, some typical secure control techniques for MASs that have been employed to handle these attacks are surveyed. Finally, several challenging issues are envisioned for potential future research.

Xiaoping Wu,Zhidong Shen

DOI: https://doi.org/10.1109/CSSE.2008.888

2008-12-12

Abstract:The Mobile Agent (MA) has been seen as a promising distributed computing technology. According to the analysis of security problems of current mobile agents that are exposed in opening environment, a model system for mobile agent is proposed in this paper. In this system, the mobile agent security is enhanced by the Trusted Computing Technology. The mobile agent security supporting environment (MASSE) is designed by using trusted software stack (TSS) and trusted computing platform (TCP). To improve the security of MA system, some MA security services, such as authentication, role based access control and MA negotiation, are discussed in this paper. The working process of MASSE is also described.

Computer Science,Engineering