| Mobile Agent system is one of the focuses of recent research, but its security issues prevent it from widely applying.Using the Aglet as basic object, the paper research on the security problems of mobile Agent system and how to solve these security problems. The paper primarily contains following parts:After analyzing the security problems and security requirements in mobile Agent system, a mobile Agent system security frame (MASSF) is proposed. MASSF how to meet these security requirements is described.Focusing on the security communication problem of mobile Agent system, the Encrypt Secure Transport Channel (ESTC) method is proposed. The method has features of confidentiality, integrity, authentication and nonrepudiation.Focusing on the particular security problem of mobile Agent data protection, the interrelated keys chains encryption (IKCE) method is proposed. Security analysis and performance analysis for the IKCE method are surveyed. The key idea of the IKCE method is to establish an interrelated relationship among encryption keys using in encrypting Agent data in order to protect the Agent data.After analyzing the present research on the access control method for mobile Agent system, a method based on attribute certificates is proposed. The key idea of this method is to push the security attribute information to an external object - an attribute certificate.Focusing on the anonymity problem of mobile Agent system, a method based on digital signature with one-time pair of keys is proposed. The security of the method is based on discrete logarithm. The method has features of anonymity, secrecy, unforgery and retract.Auditing is an important part of the security in mobile Agent systems, it is important for monitor the normal run of system. The design and realization of an audit subsystem for Aglet system are presented. This subsystem supports three audit policy, uses XML as the audit file format, performs the audit flexibly and conveniently.
|
PDF Full Text Request