TABLE OF CONTENTS CHAPTER NO. TITLE PAGE NO. LIST OF TABLES LIST OF FIGURES LIST OF SYMBOLS AND ABBREVIATIONS

Transcription

1 vii TABLE OF CONTENTS CHAPTER NO. TITLE PAGE NO. ABSTRACT LIST OF TABLES LIST OF FIGURES LIST OF SYMBOLS AND ABBREVIATIONS iii xiii xv xviii 1 INTRODUCTION OVERVIEW MOBILE AGENT Mobile Agent System Components MOBILE AGENT DATA STRUCTURE MOBILE AGENT LIFE CYCLE TYPES OF MOBILE AGENT Host Count Itinerary Mobility of Mobile Agents Implementation Strategies MOBILE AGENT SECURITY Host Security Agent Security GENERAL THREATS IN A MOBILE AGENT SYSTEM THREATS TO THE DATA OF FREE ROAMING MOBILE AGENTS 20

2 viii CHAPTER NO. TITLE PAGE NO. 1.9 SECURITY REQUIRMENTS MOTIVATION OBJECTIVES ACCOMPLISHMENTS AND CONTRIBUTIONS ASSUMPTIONS OF THE THESIS ORGANIZATION OF THE THESIS 29 2 RELATED WORKS AND LITERATURE SURVEY INTRODUCTION Detection Mechanism Avoiding Mechanism MOBILE AGENT PLATFORM PROTECTION Software-based Fault Isolation or Sandboxing Safe Code Interpretation Code Signing Path History Proof Carrying Code Policy based Model to Protect the Platform MOBILE AGENT PROTECTION Code Obfuscation State Appraisal Digital Signatures Execution Tracing Mutual Itinerary Recording Replication and Voting Encrypted Functions Environment Key Generation 47

3 ix CHAPTER NO. TITLE PAGE NO Code on Demand Factor of Time Additional Models MOBILE AGENT DATA PROTECTION Partial Result Authentication Codes Chain Relation Method Trusted Third Party Multi-Agent based Data Protection Trust Models Watermarking Model MOBILE AGENT RECOVERY Blocking Attack OPEN ISSUES IN A MOBILE AGENT SECURITY ENVIRONMENT SUMMARY 64 3 TRUST AND REPUTATION MANAGEMENT INTRODUCTION SECURITY PROPERTIES REQUIREMENTS FOR SECURITY PROPERTIES Assumptions MALICIOUS HOST IDENTIFIER Trust-based Routing Table Construction Routing table Derivation of the TRV Secure path selection Secure Information Retrieval 74

4 x CHAPTER NO. TITLE PAGE NO Cost Assessment Metric Assessment EXPERIMENTAL RESULTS Experimental Setup Analysis of the Routing Table Construction Malicious Host Identification Using TRM Analysis Secure Information Retrieval Performance Evaluation Effect of varying the number of hosts on turnaround time Effect of varying the size of information retrieved SECURITY ANALYSIS SUMMARY 90 4 REVERSE RETUNING METHOD INTRODUCTION Security Requirements Assumptions DATA VERIFIER EXPERIMENTAL RESULTS COMPARISON WITH THE EXISTING MODELS COMPLEXITY MITIGATION OF RRM ALGORITHM FORMAL PROOF OF THE SECURITY PROPERTIES Multiple Colluded Attacks 111

5 xi CHAPTER NO. TITLE PAGE NO. 4.7 SUMMARY DATA INTEGRITY CHECKER INTRODUCTION Attack Scenarios Protection Models Protection against passive attack Protection against alteration attack Assumptions CUSTOMIZED ROOT CANAL ALGORITHM Creation of Agent at Originator Agent Execution at Remote Host Code integrity verification Data integrity verification Data collection and digital signature Agent Execution at the Last Remote Host Agent Reporting to the Originator EXPERIMENTAL RESULTS Experimental Setup Results of the CRC Algorithm COMPARISON WITH THE EXISTING SCHEMES Comparison of the CRC with the RC and XRC Algorithms SECURITY ANALYSIS SUMMARY 140

6 xii CHAPTER NO. TITLE PAGE NO. 6 THRESHOLD RESPONSE RECOVERY INTRODUCTION EXISTING MODELS AND ITS ISSUES DATA RECOVERY Data Size as Threshold Host Count as Threshold Execution Time as Threshold TRR MODEL AGAINST COLLUDED TRUNCATION ATTACKS ATTACK DYNAMICS COST EVALUATION EXPERIMENTAL RESULT ANALYSIS Effect of Varying the Total Number of Visited Hosts Analysis of the TRR with Hop Count Analysis of the TRR with the Data Size Analysis of the TRR with Execution Time SUMMARY CONCLUSION AND FUTURE ENHANCEMENTS SUMMARY OF WORK DONE FUTURE ENHANCEMENTS 164 REFERENCES 166 LIST OF PUBLICATIONS 180 CURRIRULUM VITAE 181

7 xiii LIST OF TABLES TABLE NO. TITLE PAGE NO. 1.1 Comparison of Mobile Agent Technology with Traditional Methods Components in a Mobile Agent Types of Attacks and Threats on Mobile Agent Systems Drawbacks of the Existing Agent Platform Protection Models Drawbacks of the Existing Agent Protection Models Initial Trust-based Routing Table Trust value of Remote Hosts Malicious Host Identification for M=N/ Malicious Host Identification for M<N/ Size of the Retrieved Data, Byte code and Processing Time in TRM Processing Time of the Agent at the Servers Complexity Comparison of the Existing Models and Proposed Model at the n th Host for n number of data Complexity Comparison of the Existing Models and Proposed Model for N Hosts Comparison of Attack Protection between the Existing Models and Proposed Model Processing Time of the CRC Algorithm Computational Complexity Comparison of the Existing Algorithms and Proposed Algorithm 132

8 xiv TABLE NO. TITLE PAGE NO. 5.3 Comparison of the CRC Algorithms with the Existing Schemes Computational Time Difference between the Existing Schemes and the Proposed Algorithm in RH Processing Time Difference between the CRC, and the RC and XRC Algorithms in RH Comparison of the Secure Hash Algorithms in CRC Algorithm Address Verification in the CRC Algorithm Number of Responses based on the Threshold Value Observed Cost of Agent Visit with the TRR Model Responses with Respect to the Data Size Responses with Respect to the Execution Time Comparisons between the Existing Methods and Proposed Methods 164

9 xv LIST OF FIGURES FIGURE NO. TITLE PAGE NO. 1.1 Mobile Agent Technology - A Overview Mobile Agent System Model Life Cycle of a Mobile Agent Single Hop Mobile Agent Multi Hop Mobile Agent Classification of the Mobile Agent System Security Free Roaming Mobile Agent Migrations Mobile Agent Migrations with Colluded Attack Mobile Agent Migrations with Colluded Truncation Attack Mobile Agent Migrations with Stemming Attack Existing Models to Protect the Mobile Agent Environment Routing Table Construction TRM Data Protection Algorithm Secure Information Retrieval Cost of Constructing the Trust-based Routing Time Cost for Secure Information Retrieval Effect of Total Turnaround Time Effect of varying the Size of Information Retrieved Agent Migrations without Colluded Truncation Attack in TRM Data Protection of the Free Roaming Mobile Agent using RRM 94

10 xvi FIGURE NO. TITLE PAGE NO. 4.2 Function of the DCMA at the originator (S 0 ) Function of the DCMA at the Server (S 1 ) Function of the DCMA at the Server (S i ) Function of the DCMA at the Server (S n ) Function of the DCMA at the Originator for Computation Function of the DRMA at the Server (S x ) Function of the DRMA at the Server (S x+1 ) Function of the DRMA at the Server S i Function of the DRMA at the Originator after Verification Processing Time of the RRM Algorithm Identification of the Revisiting Attack using RRM Algorithm in Server (S i ) Organs of the Mobile Agent Platform to Agent Attack Platform to Agent to Platform Attack Protection of Mobile Agent Code Functional Diagram of the CRC Algorithm CRC Algorithm at the Originator (S 0 ) CRC Algorithm at the server S i CRC Algorithm at the server S n CRC Algorithm at the Originator after Migrations Snapshot of the Byte Code without Data Protection Snapshot of the Byte Code with Data Protection 138

11 xvii FIGURE NO. TITLE PAGE NO. 6.1 Threshold Response Recovery Algorithm Flowchart of Threshold Response Recovery TRR Algorithm: Data Size as Threshold TRR Model against Network Failure TRR Algorithm: Hop Count as Threshold TRR Algorithm: Execution Time as Threshold TRR against Colluded Truncation Attacks Effect of Varying the Total Number of Visited Hosts Effect of Varying the Threshold Hop Count Effect of Varying the Threshold Data Size Effect of Varying the Threshold Time 161

12 xviii LIST OF SYMBOLS AND ABBREVIATIONS Symbols d i - Agent data at i th host AH - Agent home AG i. - Agent itinerary P(E(f)) - Agent Program which implements E(f) f - Agent with function i - Arrival time at i th host D 0 - Computed offer from S 0 (Originator), - Constants - Delay time i - Departure time at i th host EC PU0 (x) - ECC encryption using public key or E pu D i - Encapsulated data collected at S i EH code - Encrypted hash code foe mobile code at i th host RD - Encrypted data concatenated with hash value (Return data) or signature E(f) - Encryption function ED - Enhanced data e i - Entry at the i th host t exe i - Execution time at S i t f - Fault-tolerant execution time RH code - Hash code or Hash value generated at the remote host for the agent byte code H code - Hash code or Hash value of the agent byte code H(m) - Hash function H i ( x) - Hash function at the i th host. S - Host (or) Server (or) Server identity S 0 - Host of agent Originator or Creator or Owner

13 xix rd i - Intermediate data at at the i th host S i - i th host where the agent currently residing Msg - Message Dec (PR Si, M) - Message M is decrypted with the private key PR Si of S i. Enc(PU Si, M) - Message M is encrypted with the public key PU Si of S i. S i S i+1 - Migration of agent from S i to S i+1 or h i to h i+1 x - Number of host where information retrieved M - Number of malicious host in the network K - Number of responses required from the succeeding hosts OD i - Out data from the host S i PR i - Private key of the i th host P i - Processing time at the i th host PU i - Public key of the i th host RH - Remote Host RV i - Reputation value of the i th host. R pr - RSA decryption using private key. R pu - RSA decryption using public key. Shadow home - Shadow of agent at home Sig Pri (m) - Signature of S i on message m with its private key Pr i. or Sig PRi (x) SA code - Size of the agent code SAH code - Size of the agent encrypted hash code SAH data - Size of the agent encrypted hash data SH code - Size of the agent hash code SH data - Size of the agent hashed data Q - Size of the information retrieved - Threshold value for Data size - Threshold value for execution time - Threshold value for host count t i - Time taken to travel from the i th host t tra i - Time taken to travel from S i-1 to S i

14 xx t DAS - Time to decrypt the agent code and its signature t DSC - Time to decrypt the symmetric key and control code t EAS - Time to encrypt the agent code and the signature of the agent code t ESC - Time to encrypt the symmetric key and control code t HC - Time to generate the hash code form the control code t SA - Time to generate the signature for the agent code t SAD - Time to generate the signature for the agent data t - Time to process the information t SSA - Time to sign in the signature of the originator Tt i - Time to travel to the i th host t VC - Time to verify the control code t VS - Time to verify the signature t VSS - Time to verify the signature of code at the intermediate remote hosts t VSD - Time to verify the signature of data at the intermediate remote hosts t tot - Total execution time N - Total number of hosts agent need to visit or Number of neighbour hosts t - Total time to construct trust-based routing table t - Total time to retrieve the information Tt - Total time to travel to the host T - Total turnaround time TRV i - Trust and Reputation value of the i th host. TV i - Trust value of the i th host

15 xxi Abbreviations ACCK - Algesheimer Cachin Camenisch Karjoth AFDB - Address Forward and Data Backward AIK - Attestation Identity Keys AST - Anti Spam Technique ATP - Agent Transfer Protocol CoD - Code on Demand CORBA Common Object Request Broker Architecture CPU - Central Processing Unit CRC - Customized Root Canal DCMA - Data Computing Mobile Agent DIC - Data Integrity Checker DoS - Denial of Service DRMA - Data Retuning Mobile Agent ECC - Elliptic Curve Cryptography HC - Host Count or Hop Count ISTCM - Improvement of Signature Trust Chain Mechanism KAG - Karjoth Asokan Gulcu LAN - Local Area Network MAC - Message Authentication codes MARISM-A - Mobile Agents with Recursive Itinerary and Secure Integration - Architecture MASIF - Mobile Agent System Interoperability Facility MIP - Malicious Identification Police OT - Oblivious Transfer PAC - Privilege Attribute Certificate PCR - Platform Configure Registers PRAC - Partial Result Authentication Codes RC - Root Canal

16 xxii RPC - Remote Procedure Call RRM - Reverse Return Method RSA - Rivest Shamir Adleman SA - Secondary Agent SeMoA - Secure Mobile Agent SESAME - Secure European System for Applications in a Multi-vendor Environment SHA - Secure Hash Algorithm STCM - Signature Trust Chain Mechanism TA - Task Agent Tcl - Tool Command Language TPM - Trusted Platform Module TRM - Trust and Reputation Management TRR - Threshold Response Recovery TTP - Trusted Third Party XAST - extended Anti Spam Technique XRC - extended Root Canal