Options
2004
Report
Titel
Secure partial results: Analysis and specification
Titel Supplements
BMBF Project SicAri: Deliverable PE13-1; Projektlaufzeit: 01.10.2003 - 30.09.2007
Abstract
The focus up to the time of writing was on inventing new cryptographic protocols for securing various aspects of mobile agents. Past experience shows that protocols can be flawed, and flaws in protocols can remain unnoticed for a long period of time. Although, to the best of our knowledge, little work has been published on breaking protocols for mobile agents, it is inconceivable that the multitude of protocols proposed so far are all flawless. As it turns out, the opposite is true. Flaws are identified in protocols proposed by Corradi et al., Karjoth et al., and Karnik et al., including protocols based on secure co-processors. Subsequently equivalent protocols are presented meant to be robust against this type of attacks. Moreover, the required processes and data structures are described at a level of detail that can be translated to an implementation in a straightforward way. The of the report is to demonstrate how cryptographic processing can be implemented transparently for agent programmers, thereby reducing the risks of human error in (secure) mobile agent programming.
Author(s)
Organisation
SicAri Consortium
Fraunhofer-Institut für Graphische Datenverarbeitung -IGD-, Darmstadt
Bundesministerium für Bildung und Forschung -BMBF-
Verlagsort
Darmstadt