Title :
Analysis of a free roaming agent result-truncation defense scheme
Author :
Zhou, Jianying ; Onieva, Jose A. ; Lopez, Javier
Author_Institution :
Inst. for Infocomm Res., Heng Mui Keng Terrace, Singapore
Abstract :
Mobile agents play an important role in electronic commerce. Security in free-roaming agents is especially hard to achieve when the mobile code is executed in hosts that may behave maliciously. Some schemes have been proposed to protect agent data (or computation results). However, a known vulnerability of these techniques is the truncation attack where two visited hosts (or one revisited host) can collude to discard the partial results collected between their respective visits. Cheng and Wei proposed a scheme in IC1CS´O2 to defense against the truncation of computation results of free-roaming agents (Cheng and Wei, 2002). Cheng-Wei scheme is effective against such an attack in most cases. However, we demonstrate that it still suffers from the truncation attack when a special loop is established on the path of a free-roaming agent. We further propose two amendments to Cheng-Wei scheme to avoid such an attack.
Keywords :
cryptography; mobile agents; Cheng-Wei scheme; agent data; cryptographic protocol; defense scheme; electronic commerce; free roaming agent; mobile agents; mobile code; security; truncation attack; Computer networks; Computer science; Cryptographic protocols; Cryptography; Data mining; Data security; Electronic commerce; Java; Mobile agents; Protection;
Conference_Titel :
e-Commerce Technology, 2004. CEC 2004. Proceedings. IEEE International Conference on
Print_ISBN :
0-7695-2098-7
DOI :
10.1109/ICECT.2004.1319737
