基于移动Agent的电子商务安全性研究

Study on the Security of E-commerce Based on Mobile Agent

基于移动Agent的第三代电子商务系统是软件、通信和分布式系统技术的结合,它克服了传统电子商务技术的缺点,有着很好的应用前景。然而,其安全性却是个不容忽视的问题。安全性的缺乏会导致恶意Agent毫无限制地在网络上散布或导致恶意入侵的发生,从而使商务活动陷入混乱状态。保护主机不被恶意Agent入侵,与传统的分布式系统中相对成熟的安全技术,有着相似之处。但保护移动Agent不被恶意攻击还有一些欠缺,基于保护移动Agent不被恶意攻击的主要目的出发,提出了一个信用模型(评价主机信用关系的信誉度),来解决基于移动Agent技术的电子商务的安全性问题。

The e-commerce system of the third generation based on the Mobile Agent is the integration of the technology of software, communications and distribution system, which overcomes shortcomings of the traditional e-commerce technology and has great application prospect. However, its security is also an issue can not be ignored. The lack of security will cause the malicious agent to spread without restriction on Internet or cause it to be invaded by the malicious host, so that business activities shall be involved into chaos. As there is a similarity, relatively mature security technology, between malicious agent and the traditional distributed system, and there are some Mobile Agent from the malicious host, from the sociological point of view from the malicious host,a credit model （host credibility assessing the credit relation） the protection for shortcomings in the the host from the invasion of the technology for protecting the and with the main purpose of protecting the Mobile Agent is proposed in the paper to resolve the security issue of the e-commerce system based on the Mobile Agent technology.