Christian F. Tschudin 발표자 : 전기공학부 이 진 호 Mobile Agent Security Christian F. Tschudin 발표자 : 전기공학부 이 진 호
Review & Motivation What is the Mobile Agent? network development - mobile code Host Security & Mobile Security Secure vs Open with mobile agent
Content 1. Review & Motivation 2. Protecting the Host 3. Protecting the Mobile Agent 4. Agent Tempering 5. Secure or Open? (Outlook)
Protecting the Host Run-Time Check Authentication, Authorization, Allocation MA helping the host
Run-Time Check agent에 대한 check 시간의 최소화 Single Virtual Machine Architecture 여러 mobile agent에 하나의 interpreter Proof Carrying Code 보안에 문제가 없다는 증거를 mobile code가 가지고 다님
Authentication, Authorization, Allocation agent의 identify digital signature, 비대칭 암호법 Authorization MA에게 access 권한 부여 Allocation scheduling competitive request allocation problem - market-based mechanism
Protecting the Mobile Agent MA의 취약성 Detecting & Preventing Agent Tampering
Detecting Agent Tampering System set up for detection adding dummy item or function cryptographic technique
Preventing Agent Tampering Environmental Security Distributed MA Distributed Shelter for Data Clueless Agent Hiding in the Masses
Preventing Agent Tampering Cryptographic Protection Encryption Untraceable and Anonymous Agent Smartcards
Preventing Agent Tampering Sealing and Signing of Results Executable Encrypted Function
Secure or Open? 보안과 개방 사이의 최적점 보안에 대한 관심이 폐쇄적인 MA system을 만드는 대신, 안전하면서도 개방된 환경을 만드는데 도움이 되어야 한다.