Privilege delegation and agent-oriented access control in naplet

Author

Xu, Cheng-Zhong ; Fu, Song

Author_Institution

Dept. of Electr. & Comput. Eng., Wayne State Univ., Detroit, MI, USA

fYear

2003

fDate

19-22 May 2003

Firstpage

493

Lastpage

497

Abstract

Access control in existing Java-based mobile agents is mostly based on code source due to limitations of early Java security architecture. That is, authorization is based on where the agent code comes from, regardless of the subject of code execution. This paper presents an agent-oriented access control strategy, by taking advantage of the latest Java subject-based security features. It allows the agents to exercise their privileges based on their own roles in distributed applications. The access control is realized by a group of additional agent-oriented permissions. They grant access control privileges to system resources and services in a flexible and secure manner. Permission implications between agents of different clone generations and from different owners are also supported.

Keywords

Java; authorisation; distributed processing; mobile agents; Java subject-based security feature; Java-based mobile agent; agent-oriented access control; authorization; clone generation; distributed application; privilege delegation; system resource; Access control; Authorization; Control systems; Distributed computing; Information security; Java; Mobile agents; Permission; Protection; Runtime environment;

fLanguage

English

Publisher

ieee

Conference_Titel

Distributed Computing Systems Workshops, 2003. Proceedings. 23rd International Conference on

Print_ISBN

0-7695-1921-0

Type

conf

DOI

10.1109/ICDCSW.2003.1203601

Filename

1203601