可更新数据的数据完整性保护方法

Integrity protection of renewable data

下载PDF

导出

摘要数据收集是移动Agent的一类重要应用,在多个领域的移动Agent应用系统中涉及到数据收集。由于移动Agent可能受到恶意主机攻击,如何保证收集数据的完整性是一个重要的安全问题。文中在分析移动Agent数据收集的安全性属性的基础上,提出了一个用于保证移动Agent在潜在恶意主机上访问时保护所收集数据的完整性安全协议。该协议能够实现数据的完整性验证与数据被收集的顺序无关,从而可以随机地访问主机,并且同一主机提交的数据可以自己更新,非常适合数据动态变化的应用系统。 Data collection is one kind of important applications of mobile Agent and gets involved in many areas of mobile Agent application system. Because the mobile agents could get the attacks from malicious hosts, how to protect the integrity of the collected data is a crucial issue. In this paper, a protocol to protect the integrity of the collected data, when mobile Agent was roaming through a set of potentially malicious hosts, was proposed based on the analysis of security properties for data collection of mobile Agent. The protocol can assure the integrity verification of the collected data regardless of the collecting order of each data segment. So the set of hosts can be visited randomly and can update their own data. The protocol is suitable for application system with dynamically changing data.

作者陈宏兵刘志军李千目许满武

机构地区南京大学软件新技术国家重点实验室

出处《计算机应用》 CSCD 北大核心 2006年第9期2105-2108,共4页 journal of Computer Applications

基金江苏省科技攻关计划资助项目(BE2003064)

关键词安全性数据完整性移动AGENT Hash集 security data integrity mobile Agent Hash set

分类号 TP393.08 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献17

1GRAY S, CYBENKO G, KOTZ D. D'agents: security in a multiplelanguage, mobile-agent system[ A]. Lecture Notes in Computer Science[C]. Berlin: Springer-Verlag, 1998, 1419:154-187.
2SANDER T, TSCHUDIN C. Protecting mobile agents against malicious hosts[ A]. Lecture Notes in Computer Science LNCS[ C]. Berlin: Springer-Verlag, 1998, 1419:44-60.
3HARRISON CG, CHESS DM, KERSHENBAUM A. Mobile agents:axe they a good idea? [ EB/OL]. http://www.eecs. harvard.edu/cs262/mobag.pdf.
4FARMER W, GUTTMAN J, SWARUO V. Security for mobile agents: issues and requirements[ A]. Proceedings of the 19th National Information System Security Conference [ C]. Baltimore: MD,1996:591 -597.
5BELLARE M, YEE B. Forward integrity for secure audit logs[ R].San Diego: Department of Computer Science and Engineering, University of California, 1997.
6YEE B. A sanctuary for mobile agents[ R]. San Diego: Department of Computer Science and Engineering, University of California,1997.
7LOUREIRO S, MOLVA R, PANNETRAT A. Secure data collection with updates[J]. Electronic Commerce Research, 2001, (1): 119- 130.
8KARJOTH G, ASOKAN N, GULCUC C. Protecting the computation results of free-roaming agents[ J]. Lecture Notes in Computer Science, Springer- Verlag, 1998. 195 -207.
9CORRADI A, MONTANARI R, STEFANELLI C. Mobile agents integrity in e-commerce application[ A]. Proceedings of the 19th IEEE International Conference on Distributed Computing Systems Workshop[ C]. Austin, Texas, IEEE Computer Society Press, 1999.59 -64.
10ZHOU J, ONIEVA J, LOPEZ J. Analysis of a free roaming agent result-truncation defense scheme[ A]. Proceedings of 2004 IEEE Conference on Electronic Commerce[ C]. San Diego, California,IEEE Computer Society Press. 2004. 221 -226

1陈小全,张继红.基于Kim′s代理签名算法的移动代理安全策略[J].北京交通管理干部学院学报,2006,16(3):39-41.
2吴国荣,沈庆浩.移动Agent防范恶意主机攻击的安全措施[J].计算机工程,2003,29(5):124-126.
3祝清学,李青.保护移动代理的新方案[J].计算机工程,2005,31(23):135-137. 被引量：1
4孙开翠,王汝传,孙知信,杨立扬,崔莉.基于JavaCard的移动代理安全机制研究[J].南京邮电学院学报（自然科学版）,2002,22(4):66-70.
5周冲,孙永强.PTIR:一个用于检测恶意主机攻击的记录协议[J].计算机研究与发展,2002,39(3):295-300. 被引量：4
6杨伟,王沁,万亚东,何杰.IEEE802.15.4e标准的安全多跳时间同步协议设计[J].计算机科学,2017,44(3):175-181. 被引量：3
7郑彦,王汝传,穆鸿,王海艳.基于加密电路构造的移动代理保护安全模型的研究[J].电子学报,2006,34(8):1410-1414.
8胡鹏,袁世忠.基于间隔检测和信誉度的移动Agent安全机制[J].计算机应用与软件,2006,23(11):129-131. 被引量：1
9易朝阳,周冲,孙永强.PTIRⅡ:一个解决恶意主机问题的新协议[J].计算机工程,2003,29(13):128-129.

计算机应用

2006年第9期

浏览历史

内容加载中请稍等...

可更新数据的数据完整性保护方法

参考文献17

相关作者

相关机构

相关主题

浏览历史