Universitat Oberta de Catalunya
2012-10-22T17:21:10Z
2012-10-22T17:21:10Z
2009-02
Peer-reviewed
This paper presents a protocol for the protection of mobile agents against external replay attacks. This kind of attacks are performed by malicious platforms when dispatching an agent multiple times to a remote host, thus making it reexecute part of its itinerary. Current proposals aiming to address this problem are based on storing agent identifiers, or trip markers, inside agent platforms, so that future reexecutions can be detected and prevented. The problem of these solutions is that they do not allow the agent to perform legal migrations to the same platform several times. The aim of this paper is to address these issues by presenting a novel solution based on authorisation entities, which allow the agent to be reexecuted on the same platform a number of times determined at runtime. The proposed protocol is secure under the assumption that authorisation entities are trusted.
Preprint
Article
English
Mobile agents; Security; Malicious hosts; Replay attacks; Trip marker; agentes móviles; seguridad; hosts maliciosos; ataques de repetición; agents mòbils; seguretat; hosts malignes; atacs de repetició
Elsevier
82:2
Garrigues, C.; Migas, N.; Buchanan, W.; Robles, S.; Borrell, J. (2009).Protecting mobile agents from external replay attacks. Journal of Systems and Software, 82(2). p. 197-206 ISSN:0164-1212
Articles [361]
