Security Agent Based Distributed Authorization : An Approach
نویسندگان
چکیده
This paper considers a security agent based approach to authorization in a distributed environment. A security agent is used to capture the privileges and a part of security policy in distributed authorization. Principals make use of these agents to carry out their requests on remote hosts. Targets verify the authenticity of the security agent and its privileges and use them together with their local security policy to grant or deny the requests. The paper describes the operation of the authorization system using these security agents and how these agents can be used to support dynamic decision making. Finally, the paper also considers how the security agent based model answers the taxonomy questions that arise in the design of capability based secure systems.
منابع مشابه
Enforcing History-Based Security Policies in Mobile Agent Systems
The mobile agent paradigm used in modern distributed systems has revealed some new forms of common security threats, such as abusive resource consumption or illegitimate information flow between different and noncooperative entities. This problem is aggravated when an agent’s host doesn’t know anything about the agent’s past activities, visited hosts and interactions with other agents. Thus, ro...
متن کاملA New Authorization Model and its Mechanism Using Service Paths in Open Distributed Environments
In open distributed systems multiple software agents or objects work in cooperation to achieve some goal Therefore we need an authorization model that can control security and trust relationships of agents Saga Security Sys tem does o er such an auhorization model as well as a security mechanism both of which are thoroughly discussed in this paper In the model the unit of authorization is a ser...
متن کاملA Delegation Based Model for Distributed Trust
In this paper we outline an infrastructure that facilitates security and trust management in a multi-agent system. Our model eases the problem of authorization in a network of heterogeneous agents and also contains mechanisms for delegation of authorization information. The framework allows agents to exchange trust information using a series of Interaction Protocols based on FIPA (Foundation fo...
متن کاملDeveloping Secure Agent Systems Using Delegation Based Trust Management
We present an approach to some security problems in multi-agent systems based on distributed trust and the delegation of permissions, and credibility. We assume an open environment in which agents must interact with other agents with which they are not familiar. In particular, an agent will receive requests and assertions from other agents and must decide how to act on the requests and assess t...
متن کاملPrivilege Delegation and Agent-Oriented Access Control in Naplet
Access control in existing Java-based mobile agents is mostly based on code source due to limitations of early Java security architecture. That is, authorization is based on where the agent code comes from, regardless of the subject of code execution. This paper presents an agent-oriented access control strategy, by taking advantage of the latest Java subject-based security features. It allows ...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 1998