论文信息 - On the Design of a New Trust Model for Mobile Agent Security

On the Design of a New Trust Model for Mobile Agent Security

Recently, the notion of trust has been recognized as an important aspect of the mobile agent security. However, the current research on trust models focuses only on the hard trust relationships that are usually established via cryptographic mechanisms assuming the availability of Trusted Third Parties (TTPs) and cryptographic protocols for trust verification. We argue that in order to harness the benefits of open network operations securely, the above assumptions need to be relaxed. Thus it is necessary to build a trust model that can be extended beyond the reliance of cryptography based protocols and TTPs, and is capable of managing soft trust relationships in addition to the hard ones in mobile agent systems. We propose a new trust model which provides solutions to meet the above requirements with hybrid trust mechanisms. We analyze the properties of the new trust model and show how they can help improve the effectiveness of hard and soft trust and thus raise the security levels of mobile agent systems.

[1] Audun Jøsang,et al. A Logic for Uncertain Probabilities , 2001, Int. J. Uncertain. Fuzziness Knowl. Based Syst..

[2] Thomas Beth,et al. Valuation of Trust in Open Networks , 1994, ESORICS.

[3] Lars Rasmusson,et al. Simulated social control for secure Internet commerce , 1996, NSPW '96.

[4] Rolf Oppliger. Security issues related to mobile code and agent-based systems , 1999, Comput. Commun..

[5] Munindar P. Singh,et al. Distributed Reputation Management for Electronic Commerce , 2002, Comput. Intell..

[6] J. C. Byington,et al. Mobile agents and security , 1998, IEEE Commun. Mag..

[7] Luc Moreau,et al. Trust Relationships in a Mobile Agent System , 2001, Mobile Agents.

[8] Vijay Varadharajan,et al. Modelling and Evaluating Trust Relationships in Mobile Agents Based Systems , 2003, ACNS.

[9] Stephen Marsh,et al. Formalising Trust as a Computational Concept , 1994 .

[10] David M. Chess,et al. Security Issues in Mobile Code Systems , 1998, Mobile Agents and Security.

[11] Wayne A. Jansen,et al. Mobile Agent Security , 1999 .

[12] Vijay Varadharajan. Security enhanced mobile agents , 2000, CCS.

[13] Audun Jøsang. Prospectives for Modelling Trust in Information Security , 1997, ACISP.

[14] Stephen Hailes,et al. A distributed trust model , 1998, NSPW '97.

[15] Levente Buttyán,et al. Introducing Trusted Third Parties to the Mobile Agent Paradigm , 2001, Secure Internet Programming.