LYU9905 Security in Mobile Agent E-Commerce Systems Prepared by : Wong Ka Ming, Caris Wong Tsz Yeung, Ah Mole Supervisor :LYU Rung Tsong Michael Date :

Slides:



Advertisements
Similar presentations
Security and Privacy over the Internet Chan Hing Wing, Anthony Mphil Yr. 1, CSE, CUHK Oct 19, 1998.
Advertisements

Mobile Agents Mouse House Creative Technologies Mike OBrien.
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Grid Computing, B. Wilkinson, 20045a.1 Security Continued.
1 Network Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
The Mobile Code Paradigm and Its Security Issues Anthony Chan and Michael Lyu September 27, 1999.
SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.
Digital Signatures and Hash Functions. Digital Signatures.
Digital Signatures. Anononymity and the Internet.
Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.
Mar 19, 2002Mårten Trolin1 This lecture On the assignment Certificates and key management SSL/TLS –Introduction –Phases –Commands.
Encryption and Firewalls Chapter 7. Learning Objectives Understand the role encryption plays in firewall architecture Know how digital certificates work.
Apr 2, 2002Mårten Trolin1 Previous lecture On the assignment Certificates and key management –Obtaining a certificate –Verifying a certificate –Certificate.
LYU9905 Security in Mobile Agent E- Commerce Systems Prepared by : Wong Ka Ming, Caris Wong Tsz Yeung, Ah Mole Supervisor : LYU Rung Tsong Michael.
Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.
16.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:
Cryptography Basic (cont)
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Services in Mobile Ad Hoc Networks Edith Ngai and Michael R.
Cryptographic Techniques Instructor: Jerry Gao Ph.D. San Jose State University URL: May,
Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.
LYU9905 Security in Mobile Agent E-Commerce Systems Prepared by : Wong Ka Ming, Caris Wong Tsz Yeung, Ah Mole Supervisor :LYU Rung Tsong Michael.
Cryptographic Technologies
Design, Implementation, and Experimentation on Mobile Agent Security for Electronic Commerce Applications Anthony H. W. Chan, Caris K. M. Wong, T. Y. Wong,
EECC694 - Shaaban #1 lec #16 Spring Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.
The Mobile Code Paradigm and Its Security Issues Anthony Chan September 13, 1999.
August 6, 2003 Security Systems for Distributed Models in Ptolemy II Rakesh Reddy Carnegie Mellon University Motivation.
Chapter 3 Encryption Algorithms & Systems (Part C)
INTRODUCTION Why Signatures? A uthenticates who created a document Adds formality and finality In many cases, required by law or rule Digital Signatures.
1 Fluency with Information Technology Lawrence Snyder Chapter 17 Privacy & Digital Security Encryption.
How HTTPS Works J. David Giese. Hyper Text Transfer Protocol BrowserHTTP Server GET / HTTP/1.1 HOST: edge-effect.github.io HEADERS BODY HTTP/ OK.
1 Introduction to Security and Cryptology Enterprise Systems DT211 Denis Manley.
Networks and Security. Types of Attacks/Security Issues  Malware  Viruses  Worms  Trojan Horse  Rootkit  Phishing  Spyware  Denial of Service.
CIS 1310 – HTML & CSS 12 E-Commerce Overview. CIS 1310 – HTML & CSS Learning Outcomes  Define E-commerce  Identify Benefits & Risks of E-Commerce 
Network Security. Cryptography Cryptography functions Secret key (e.g., DES) Public key (e.g., RSA) Message digest (e.g., MD5) Security services Privacy:
E-Commerce Security Technologies : Theft of credit card numbers Denial of service attacks (System not availability ) Consumer privacy (Confidentiality.
10/1/2015 9:38:06 AM1AIIS. OUTLINE Introduction Goals In Cryptography Secrete Key Cryptography Public Key Cryptograpgy Digital Signatures 2 10/1/2015.
Chapter 9: Using and Managing Keys Security+ Guide to Network Security Fundamentals Second Edition.
Cryptography, Authentication and Digital Signatures
E-Commerce Security Professor: Morteza Anvari Student: Xiaoli Li Student ID: March 10, 2001.
Configuring Directory Certificate Services Lesson 13.
Chapter 23 Internet Authentication Applications Kerberos Overview Initially developed at MIT Software utility available in both the public domain and.
Certificate-Based Operations. Module Objectives By the end of this module participants will be able to: Define how cryptography is used to secure information.
Chapter 21 Distributed System Security Copyright © 2008.
Chapter 31 Cryptography And Network Security Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
1 Securing Data and Communication. 2 Module - Securing Data and Communication ♦ Overview Data and communication over public networks like Internet can.
MOBILE AGENTS What is a software agent ? Definition of an Agent (End-User point of view): An agent is a program that assists people and acts on their behalf.
Tanenbaum & Van Steen, Distributed Systems: Principles and Paradigms, 2e, (c) 2007 Prentice-Hall, Inc. All rights reserved DISTRIBUTED.
Advanced Database Course (ESED5204) Eng. Hanan Alyazji University of Palestine Software Engineering Department.
Fall, Privacy&Security - Virginia Tech – Computer Science Click to edit Master title style Cryptographic Security Identity-Based Encryption.
Lecture 11 Overview. Digital Signature Properties CS 450/650 Lecture 11: Digital Signatures 2 Unforgeable: Only the signer can produce his/her signature.
1 6 Chapter 6 Implementing Security for Electronic Commerce.
S/MIME T ANANDHAN.
12 E-Commerce Overview.
Mobile Agents M. L. Liu.
The Secure Sockets Layer (SSL) Protocol
Public-Key, Digital Signatures, Management, Security
Presentation transcript:

LYU9905 Security in Mobile Agent E-Commerce Systems Prepared by : Wong Ka Ming, Caris Wong Tsz Yeung, Ah Mole Supervisor :LYU Rung Tsong Michael Date : 7/12/99

LYU9905 Security in Mobile Agent E-Commerce Systems2 Outline Introduction What is Mobile Agent Overview of SIAS - Shopping Information Agent System Security in Mobile Agent System & Cryptography Security Attacks and Defenses Scenarios in SIAS Future Work Q & A Session

LYU9905 Security in Mobile Agent E-Commerce Systems3 Introduction (1) Mobile software agents has become an important aspect in the electronic commerce Electronic commerce and information retrieval are two prospective directions for application of mobile agents Security is a crucial concern for such system

LYU9905 Security in Mobile Agent E-Commerce Systems4 Introduction (2) Discuss mobile agents properties and capability Describe the system we have build for the FYP – Shopping Information Agent System (SIAS) Discuss the security problems for the mobile agents Particularly, analyze possible security attacks by malicious hosts against agents in SIAS Last but not least, our solutions to detect these attacks

LYU9905 Security in Mobile Agent E-Commerce Systems5 What is Mobile Agent (1) Agent Definition - (User Perspective) An Agent is a program that assists people and acts on their behalf. Agents function by allowing people to delegate work to them Example : Stock Broker

LYU9905 Security in Mobile Agent E-Commerce Systems6 What is Mobile Agent (2) Agent Definition - (System Perspective) An agent is a software object that is situated within an execution environment able to communicate with other agents mobile and able to travel from one host to another Autonomous, has control over its own actions

LYU9905 Security in Mobile Agent E-Commerce Systems7 What is Mobile Agent (3) Dispatch, Disconnect, and Dispatch model

LYU9905 Security in Mobile Agent E-Commerce Systems8 What is Mobile Agent (4) Advantages of mobile agent over Client/Server Paradigms Reduce the network load Overcome network latency Execute asynchronously and autonomously Adapt to changes dynamically Robust and fault-tolerant

LYU9905 Security in Mobile Agent E-Commerce Systems9 Mobile Agent Products Aglets from IBM Concordia from Mitsubishi Voyager from ObjectSpace

LYU9905 Security in Mobile Agent E-Commerce Systems10 Introducing SIAS (1) SIAS - Shopping Information Agent System SIAS is a web-based e-commerce mobile agent system It provides users with information of products for sale in an electronic marketplace It is written in Java programming language and on top of the Concordia API, which is developed by Mitsubishi Electric Research Lab

LYU9905 Security in Mobile Agent E-Commerce Systems11 Introducing SIAS (2) An electronic market consists of hosts that sell products on the network Each seller maintains a database that stores the prices and quantities in stock of different products available at that host It allows users to specify a set of products and quantities

LYU9905 Security in Mobile Agent E-Commerce Systems12 Introducing SIAS (3) An agent is created for an user whenever he/she has specified a list of products and quantities After the agent has visited all hosts specified in its itinerary, it returns to its sender and reports the lowest prices and corresponding sellers The agent starts travelling in the network according to its itinerary (path), which is pre-determined while it is created

LYU9905 Security in Mobile Agent E-Commerce Systems13 Introducing SIAS (4) Simplified model for SIAS

LYU9905 Security in Mobile Agent E-Commerce Systems14 SIAS Details - Implementation (1) Four main objects in the system Agent - retrieves product information from hosts for users Launch Server - it is a gateway between agent system and client programs. It initializes and launches an agent whenever it receives requests from clients. It is also used for receiving agents when an agents finishes its trips

LYU9905 Security in Mobile Agent E-Commerce Systems15 SIAS Details - Implementation (2) Database Server - Client Program - it is used for retrieving information from its own database. It also receives incoming agents and provides execution environments for them until they finish executions and leave It is a Java Applet which lets users to choose products and quantities. Each instance of the client program can communicate with the Launch Server

LYU9905 Security in Mobile Agent E-Commerce Systems16 SIAS Details - Implementation (3) Our current SIAS design : One Launch Server - it is a trusted host. Three Data Base Servers - some of them may be malicious Client is using Netscape Communicator 4.5

LYU9905 Security in Mobile Agent E-Commerce Systems17 SIAS Details - Implementation (4) Data Base Server 1 Launch Server Client requestReport results to client Data Base Server 2 Data Base Server 3 A new agent is createdThe agent is launched and starts to travel Agent is going to Data Base Server 1 Agent arrives at Data Base Server 1 Agent retrieves data from database and leaves Agent is going to Data Base Server 2 Agent arrives at Data Base Server 2 Agent retrieves data from database and leaves Agent is going Data Base Server 3 Agent arrives at Data Base Server 3 Agent retrieves data from database and leaves Agent is going back to Launch Server Agent calculates the cheapest purchasing combination and it will be destroyed by the Launch Server

LYU9905 Security in Mobile Agent E-Commerce Systems18 SIAS Details - Implementation (5) Technology used in Agent object Agent - it is a Concordia object It enables an object which is a subclass of Concordia Agent to dispatch (marshalling) itself into the network and retract (unmarshalling) into another host

LYU9905 Security in Mobile Agent E-Commerce Systems19 SIAS Details - Implementation (6) Data Base Server - the Data Base Server uses an object namely Agent Transporter to receive and send agents. Agent Transporter is able to control every execution of a received agent. The database server used is Oracle 8i. Oracle provides a driver for JDBC, which is a Java Solution for Database Connectivity Technology used in Data Base Server object

LYU9905 Security in Mobile Agent E-Commerce Systems20 SIAS Details - Implementation (7) Technology used in Launch Server object It also uses Agent Transporter to receive and send agents It uses RMI (Remote Method Invocation) to connect with clients Why RMI but not Agent?? Concordia Problem - client needs to install the Concordia API in order to send and receive agents by web browser Not convenient to use, so choose RMI.

LYU9905 Security in Mobile Agent E-Commerce Systems21 SIAS Details - Implementation (8) Technology used in client program It is a Java Applet It uses RMI to connect to Launch Server Can I have a look on it ?? Yes, you canYes, you can

LYU9905 Security in Mobile Agent E-Commerce Systems22 SIAS Details - Implementation (9)

LYU9905 Security in Mobile Agent E-Commerce Systems23 Security in Mobile Agent (1) Security problems of malicious agents against hosts Trojan horse attacks by malicious agents This can be effectively solved by strong authentication of the code sources verification of code integrity limiting the access rights of incoming agents to local resources of hosts

LYU9905 Security in Mobile Agent E-Commerce Systems24 Security in Mobile Agent (2) Security problems of malicious agents against hosts When an agent executes on a remote host, the host is likely to have access to all the data and code carried by the agent If a host is malicious and abuses the code or data, the privacy and secrecy of the agent and its owner would be at risk

LYU9905 Security in Mobile Agent E-Commerce Systems25 Security in Mobile Agent (2) Seven types of attacks by malicious hosts Spying out and manipulation of code Spying out and manipulation of data Spying out and manipulation of control flow Incorrect execution of code Masquerading of the host Spying out and manipulation of interaction with other agents Returning wrong results of system calls to agents

LYU9905 Security in Mobile Agent E-Commerce Systems26 Security in Mobile Agent (3) In SIAS, we have chosen a technique called Agent Tempering Detection Agent Tempering Detection: hiding from hosts the data possessed by agents and the function to be computed by agents by messing up code and data of agents, or using cryptographic technique We will discuss: Asymmetric Cryptography & Digital Signature

LYU9905 Security in Mobile Agent E-Commerce Systems27 Asymmetric Cryptography (1) The main difference between asymmetric & traditional cryptography is the introduction of public key and private key Public key & private key are generated in pairs The message is then encrypted, transmitted and decrypted at the other end, without the need to pass around the private key, which put the private key under risks of exposure to the public

LYU9905 Security in Mobile Agent E-Commerce Systems28 Asymmetric Cryptography (2) Digital Signature is used to verify the entity that has been signed A person who send a message can append an encrypted form of the message, using sender’s private key, to the end of the message. The receiver of the message can decrypt the append cipher-text using the sender’s public key, and verify the integrity of the received message. The appended cipher-text served as a digital signature of the sender for the sent message

LYU9905 Security in Mobile Agent E-Commerce Systems29 RSA Algorithm R.L. Rivest, A. Shamir, and L. Adelman proposed their well-known RSA encryption algorithm. In the RSA scheme, a message M is encrypted with the encryption key e by the function: Cipher-text = E(M,e,N) = M e mod N Message = D(C,d,N) = C d mod N The pair (e,N) is distributed as the public key while d is kept private. It can be proved that given d and e are carefully selected such that: – d x e = 1 mod (p-1)(q-1) and d is relatively prime to (p-1)(q-1), the functions D and E are the inverse of each other.

LYU9905 Security in Mobile Agent E-Commerce Systems30 RSA: An Example Pick p = 5, q = 7, z = 24, n = 35 Choose d = 5, relatively prime to z 1 mod z = 1, 25, 49, 73, 97, 121, Pick e = 145 / d = 29 Public key (35, 29); Private key (35, 5) Encrypting message M = 10: E(M) = mod 35 = 5 VERIFY: Decrypting cipher-text c = 5: D(c) = 5 5 mod 35 = 3125 mod 35 = 10 = M In practice, much larger primes p, q are used The security provided by RSA relies on the fact that it is computationally infeasible to factor a large number n to find out p, q, and hence z, e

LYU9905 Security in Mobile Agent E-Commerce Systems31 Attacks and Defenses on SIAS (1) Scenario 1 - Modification of query products The list of products specified by user is stored as plain text Malicious host can easily spy out the data and change it Later hosts will response to such changes, and report wrong information This violates the integrity of queries

LYU9905 Security in Mobile Agent E-Commerce Systems32 Attacks and Defenses on SIAS (2) Scenario 2 - Modification of query quantities Similar to scenario 1 This lead the later host to report wrong information

LYU9905 Security in Mobile Agent E-Commerce Systems33 Attacks and Defenses on SIAS (3) Scenario 3 - Spying out and modification of query results Agents carry query results in plain text Malicious hosts can spy out and modify the results that the agent has collected from previous hosts Such changes can favor the malicious hosts For example, a malicious host raises all the prices reported from previous hosts.

LYU9905 Security in Mobile Agent E-Commerce Systems34 Attacks and Defenses on SIAS (4) Scenario 4 - Modification of itinerary of agent Itinerary of an agent is accessible to hosts Malicious hosts can change the itinerary of an agent Agents may go to hosts that are not specified in itinerary Agents may skip hosts that are specified in itinerary

LYU9905 Security in Mobile Agent E-Commerce Systems35 Attacks and Defenses on SIAS (5) Hybrid Attacks Can mix the above 4 attacks

LYU9905 Security in Mobile Agent E-Commerce Systems36 Attacks and Defenses on SIAS (6) Solution to Attack Scenario 1 & 2 We introduce digital signature on the whole list of product IDs as well as the signature on the list of product quantities {Product ID list} => {Product ID list}sig A ({Product ID list}) {Quantity list} =>{Quantity list}sig A ({Quantity list})

LYU9905 Security in Mobile Agent E-Commerce Systems37 Attacks and Defenses on SIAS (7) Solution to Attack Scenario 3 We introduce RSA encryption algorithm on the results obtained from the Data Base server {Query result} => D A ({Query result}sig H ({Query result}))

LYU9905 Security in Mobile Agent E-Commerce Systems38 Attacks and Defenses on SIAS (8) Solution to Attack Scenario 4 The Data Base server will sign the path of the agent to ensure the agent goes the right path E HN (E H(N-1) (…E H2 (E H1 (Itinerary at Host 1) Itinerary at Host 2) … Itinerary at Host N-1) Itinerary at Host N)

LYU9905 Security in Mobile Agent E-Commerce Systems39 Attacks and Defenses on SIAS (9) Introduce 2 new objects to support security measures RSA object ; and Key Server object

LYU9905 Security in Mobile Agent E-Commerce Systems40 Attacks and Defenses on SIAS (10) RSA object is the core of Secure SIAS design It helps to implement a public key infrastructure (PKI) It can encrypt a character string to ciphertext, and decrypt a ciphertext to a character string

LYU9905 Security in Mobile Agent E-Commerce Systems41 Attacks and Defenses on SIAS (11) Key Server object acts as a Certificate Authority (CA) of our PKI It accepts public keys from agents and hosts, and distribute them It uses RMI in transporting public keys Why not agent but RMI?? Endless chain of security measures

LYU9905 Security in Mobile Agent E-Commerce Systems42 Attacks and Defenses on SIAS (12) A Secure SIAS

LYU9905 Security in Mobile Agent E-Commerce Systems43 Security Analysis on SIAS (1) We have test times for SIAS to launch a single agent before and after the implementation of the security mechanisms. Round trip times (RTTs) required for an agent to travel around are measured. Queries of different sizes have been tested.

LYU9905 Security in Mobile Agent E-Commerce Systems44 Security Analysis on SIAS (2) Figure shows SIAS without security measures and attacks The RTT increases very slightly Overhead by each additional item in average is about 18.9 milliseconds. This can be explained by the small change in delay of database query with different query sizes.

LYU9905 Security in Mobile Agent E-Commerce Systems45 Security Analysis on SIAS (3) Figure shows SIAS with security measures implemented The RTT increases very fast and linearly with the size of query The overhead of each additional item is about 245 milliseconds, 13 times the overhead of the primary SIAS design This can be explained by the use of RSA algorithm It is time consuming to encrypt and decrypt data with long keys. Trade-off between performance and security for SIAS.

LYU9905 Security in Mobile Agent E-Commerce Systems46 Security Analysis on SIAS (4) This graph and the next show SIAS with the simulation of malicious host’s attacks Both shows an agent takes more time to travel then the first figure. This suggests that the RTT may be used as a measure for tempering detection Figure shows SIAS with simulation of attacks - modification of product IDs

LYU9905 Security in Mobile Agent E-Commerce Systems47 Security Analysis on SIAS (5) Figure shows SIAS with simulation of attacks - modifying itinerary

LYU9905 Security in Mobile Agent E-Commerce Systems48 Summary We studied the technology of autonomous mobile agents and discussed the problem of malicious hosts in a mobile agent system. We implemented SIAS as a sample application of mobile agents, which reduces communication cost and allows delegation of tasks. We addressed some security problems of malicious hosts in SIAS, and developed a primitive approach to protect the agents. We analyzed the security of our approach, and believe it is strong enough for domestic purpose. We measured the performance overhead of the security measures, see a trade-off between performance and security for SIAS, and learned that it takes time for a malicious host to attack an agent.

LYU9905 Security in Mobile Agent E-Commerce Systems49 Future Work We will implement payment method on SIAS We will scale up the current system We will continue to think of other security attack scenarios and corresponding solutions (such as multiple malicious hosts) We believe autonomous mobile agents would be an important technology in future distributed systems.

LYU9905 Security in Mobile Agent E-Commerce Systems50 END THANK YOU!!

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.