{"corpus_id":108673466,"paper_sha":"b5bf44ac5f73eb159a5ead20b6c8c4a4857b9428","doi":"10.12794/metadc3320","arxiv_id":null,"pmid":null,"pmcid":null,"mag_id":1926758422,"dblp_id":null,"acl_id":null,"title":"A Security Model for Mobile Agents using X.509 Proxy Certificates","year":2002,"publication_date":"2002-12-01","venue":"","journal":{"name":"","pages":null,"volume":""},"journal_issn":null,"journal_title":null,"publication_types":[],"pubmed_pub_types":null,"s2_fields_of_study":["Computer Science","Engineering"],"reference_count":0,"citation_count":0,"influential_citation_count":0,"is_open_access":false,"arxiv_categories":null,"arxiv_license":null,"arxiv_journal_ref":null,"mesh_headings":null,"chemicals":null,"comments_corrections":null,"source_flags":1,"s2_open_access_pdf_url":null,"s2_open_access_landing_url":null,"s2_open_access_license":null,"s2_open_access_status":null,"pmc_open_access_pdf_url":null,"pmc_open_access_landing_url":null,"pmc_open_access_license":null,"pmc_open_access_status":null,"unpaywall_open_access_pdf_url":null,"unpaywall_open_access_landing_url":null,"unpaywall_open_access_license":null,"unpaywall_open_access_status":null,"abstract":"Mobile agent technology presents an attractive alternative to the client-server paradigm for several network and real-time applications. However, for most applications, the lack of a viable agent security model has limited the adoption of the agent paradigm. This thesis presents a security model for mobile agents based on a security infrastructure for Computational Grids, and specifically, on X.509 Proxy Certificates. Proxy Certificates serve as credentials for Grid applications, and their primary purpose is temporary delegation of authority. Exploiting the similarity between Grid applications and mobile agent applications, this thesis motivates the use of Proxy Certificates as credentials for mobile agents. A new extension for Proxy Certificates is proposed in order to make them suited to mobile agent applications, and mechanisms are presented for agent-to-host authentication, restriction of agent privileges, and secure delegation of authority during spawning of new agents. Finally, the implementation of the proposed security mechanisms as modules within a multi-lingual and modular agent infrastructure, the Distributed Agent Delivery System, is discussed.","claims":[{"public_id":"cl_5e9e34a26715cbf2ab350a4a68711b1e","status":"active","text":"A new extension for Proxy Certificates is proposed in order to make them suited to mobile agent applications.","confidence":0.9,"contributors":[{"id":32,"public_id":"7c402c1b98","public_label":"뀨 (7c402c1b98)","roles":["extraction"],"url":"https://sah.borca.ai/u/7c402c1b98"},{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["review"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/claims/cl_5e9e34a26715cbf2ab350a4a68711b1e"},{"public_id":"cl_39d44cee0c185e6d67af0f6906ef908a","status":"active","text":"Mechanisms are presented for agent-to-host authentication, restriction of agent privileges, and secure delegation of authority during spawning of new agents.","confidence":0.9,"contributors":[{"id":32,"public_id":"7c402c1b98","public_label":"뀨 (7c402c1b98)","roles":["extraction"],"url":"https://sah.borca.ai/u/7c402c1b98"},{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["review"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/claims/cl_39d44cee0c185e6d67af0f6906ef908a"},{"public_id":"cl_deef904a10fdb4967619ae96b6edd23a","status":"active","text":"Proxy Certificates serve as credentials for Grid applications, and their primary purpose is temporary delegation of authority.","confidence":0.95,"contributors":[{"id":32,"public_id":"7c402c1b98","public_label":"뀨 (7c402c1b98)","roles":["extraction"],"url":"https://sah.borca.ai/u/7c402c1b98"},{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["review"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/claims/cl_deef904a10fdb4967619ae96b6edd23a"},{"public_id":"cl_e084916bf27e6be981218f5371aeb497","status":"active","text":"The implementation of the proposed security mechanisms as modules within a multi-lingual and modular agent infrastructure, the Distributed Agent Delivery System, is discussed.","confidence":0.85,"contributors":[{"id":32,"public_id":"7c402c1b98","public_label":"뀨 (7c402c1b98)","roles":["extraction"],"url":"https://sah.borca.ai/u/7c402c1b98"},{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["review"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/claims/cl_e084916bf27e6be981218f5371aeb497"}],"concepts":[{"public_id":"co_053c86739bc574e5f1a3d1a4b29d7bde","status":"active","name":"Grid applications","description":"Applications that run on Computational Grids, which share similarities with mobile agent applications.","types":["application domain"],"aliases":[],"contributors":[{"id":32,"public_id":"7c402c1b98","public_label":"뀨 (7c402c1b98)","roles":["extraction"],"url":"https://sah.borca.ai/u/7c402c1b98"},{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["review"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_053c86739bc574e5f1a3d1a4b29d7bde"},{"public_id":"co_1cf573750e4e356f0430e07b87b44203","status":"active","name":"agent-to-host authentication","description":"A mechanism for authenticating a mobile agent to a host in the proposed security model.","types":["security mechanism"],"aliases":[],"contributors":[{"id":32,"public_id":"7c402c1b98","public_label":"뀨 (7c402c1b98)","roles":["extraction"],"url":"https://sah.borca.ai/u/7c402c1b98"},{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["review"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_1cf573750e4e356f0430e07b87b44203"},{"public_id":"co_2a5479586d41557a20cd7e2f1e353c0d","status":"active","name":"mobile agent applications","description":"Applications that use mobile agent technology as an alternative to the client-server paradigm.","types":["application domain"],"aliases":[],"contributors":[{"id":32,"public_id":"7c402c1b98","public_label":"뀨 (7c402c1b98)","roles":["extraction"],"url":"https://sah.borca.ai/u/7c402c1b98"},{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["review"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_2a5479586d41557a20cd7e2f1e353c0d"},{"public_id":"co_2ed4a1d532779a51a0b592d25f6ce6cc","status":"active","name":"Distributed Agent Delivery System","description":"A multi-lingual and modular agent infrastructure in which the proposed security mechanisms are implemented as modules.","types":["system","infrastructure"],"aliases":[],"contributors":[{"id":32,"public_id":"7c402c1b98","public_label":"뀨 (7c402c1b98)","roles":["extraction"],"url":"https://sah.borca.ai/u/7c402c1b98"},{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["review"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_2ed4a1d532779a51a0b592d25f6ce6cc"},{"public_id":"co_3424c4cd4dd46fdc4a806c7a59b85d09","status":"active","name":"Proxy Certificates","description":"Credentials used for Grid applications that enable temporary delegation of authority, and are proposed as credentials for mobile agents.","types":["credential","security mechanism"],"aliases":[],"contributors":[{"id":32,"public_id":"7c402c1b98","public_label":"뀨 (7c402c1b98)","roles":["extraction"],"url":"https://sah.borca.ai/u/7c402c1b98"},{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["review"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_3424c4cd4dd46fdc4a806c7a59b85d09"},{"public_id":"co_625dec2bc06c0007cba88657a6ee2dd8","status":"active","name":"secure delegation of authority","description":"A mechanism for securely delegating authority during the spawning of new agents.","types":["security mechanism"],"aliases":[],"contributors":[{"id":32,"public_id":"7c402c1b98","public_label":"뀨 (7c402c1b98)","roles":["extraction"],"url":"https://sah.borca.ai/u/7c402c1b98"},{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["review"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_625dec2bc06c0007cba88657a6ee2dd8"},{"public_id":"co_6c9e6234f5de552e6eaac33a8d215601","status":"active","name":"restriction of agent privileges","description":"A mechanism for limiting the privileges of a mobile agent on a host.","types":["security mechanism"],"aliases":[],"contributors":[{"id":32,"public_id":"7c402c1b98","public_label":"뀨 (7c402c1b98)","roles":["extraction"],"url":"https://sah.borca.ai/u/7c402c1b98"},{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["review"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_6c9e6234f5de552e6eaac33a8d215601"}],"external_ids":{"DOI":"10.12794/metadc3320","ArXiv":null,"PubMed":null,"PubMedCentral":null,"MAG":1926758422,"DBLP":null,"ACL":null},"open_access":{"is_open_access":false,"pdf_url":null,"landing_url":"https://sah.borca.ai/papers/108673466","source":null,"pdf_url_source":null,"license":null,"reason":"pdf_url_not_indexed"},"reference_availability":{"status":"unknown","references_indexed":false,"full_text_available":false,"full_text_source":null,"count_basis":"semantic_scholar_metadata","extraction_status":"not_applicable","reason":null},"source":{"provider":"episteme2","base_corpus":"semantic_scholar_dump","freshness_mode":"unknown","basis":["semantic_scholar_metadata","postgres_metadata"],"limits":["paper metadata is based on indexed upstream scholarly datasets","claims and concepts are available only for extracted papers","absence of claims or concepts means no extracted graph data is available in this response"],"status":"available","degraded":false,"degraded_reasons":[],"diagnostics":{"status":"available","degraded":false,"degraded_reasons":[],"metadata_status":"available","graph_status":"available","abstract_status":"available"},"source_flags":1},"paper_id":638926,"paper_uid":"19ed73ea-b59e-461a-80c8-e67f2ca38885","canonical_identity":{"paper_id":638926,"paper_uid":"19ed73ea-b59e-461a-80c8-e67f2ca38885","identity_status":"available","lookup_basis":"semantic_scholar_external_id","compatibility_path":"corpus_id"},"url":"https://sah.borca.ai/papers/108673466"}