Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Secure partial results: Analysis and specification

BMBF Project SicAri: Deliverable PE13-1; Projektlaufzeit: 01.10.2003 - 30.09.2007
: Peters, J.; Roth, V.
: SicAri Consortium; Fraunhofer-Institut für Graphische Datenverarbeitung -IGD-, Darmstadt; Bundesministerium für Bildung und Forschung -BMBF-

Volltext urn:nbn:de:0011-n-452415 (181 KByte PDF)
MD5 Fingerprint: 4eab33e099840a7ba35ae67d78d2505b
Erstellt am: 08.08.2006

Darmstadt, 2004, 31 S.
Reportnr.: 04i023-FIGD
Bericht, Elektronische Publikation
Fraunhofer IGD ()
mobile agent; mobile agent security; security protocol

The focus up to the time of writing was on inventing new cryptographic protocols for securing various aspects of mobile agents. Past experience shows that protocols can be flawed, and flaws in protocols can remain unnoticed for a long period of time. Although, to the best of our knowledge, little work has been published on breaking protocols for mobile agents, it is inconceivable that the multitude of protocols proposed so far are all flawless. As it turns out, the opposite is true. Flaws are identified in protocols proposed by Corradi et al., Karjoth et al., and Karnik et al., including protocols based on secure co-processors. Subsequently equivalent protocols are presented meant to be robust against this type of attacks. Moreover, the required processes and data structures are described at a level of detail that can be translated to an implementation in a straightforward way. The of the report is to demonstrate how cryptographic processing can be implemented transparently for agent programmers, thereby reducing the risks of human error in (secure) mobile agent programming.