Protecting mobile agents from external replay attacks
Garrigues Olivella, Carles
Robles Martínez, Sergi
Borrell Viader, Joan
- Publisher: Elsevier
hosts maliciosos | seguridad | seguretat | Replay attacks | Trip marker | agentes móviles | Security | Malicious hosts | Mobile agents | atacs de repetició | hosts malignes | ataques de repetición | agents mòbils
This paper presents a protocol for the protection of mobile agents against external replay attacks. This kind of attacks are performed by malicious platforms when dispatching an agent multiple times to a remote host, thus making it reexecute part of its itinerary. Current proposals aiming to address this problem are based on storing agent identifiers, or trip markers, inside agent platforms, so that future reexecutions can be detected and prevented. The problem of these solutions is that they do not allow the agent to perform legal migrations to the same platform several times. The aim of this paper is to address these issues by presenting a novel solution based on authorisation entities, which allow the agent to be reexecuted on the same platform a number of times determined at runtime. The proposed protocol is secure under the assumption that authorisation entities are trusted.