Security architecture and methodology for authorisation of mobile agents
2010 (English)In: International Journal of Internet Technology and Secured Transactions, ISSN 1748-569X, E-ISSN 1748-5703, Vol. 2, no 3-4, 271-290 p.Article in journal (Refereed) Published
One approach to authorisation of mobile agents is to use extensible access control mark-up language (XACML) policies by assigning roles to agents and then enforcing role-based authorisation. In this paper we show how traditional XACML polices, used for user access control in distributed environments, can be used for mobile agents' access control. We use such polices to manage delegation of access rights from users to agents, while at the same time following the core principles of the XACML standard. We also propose a combination of policies that map users to their mobile agents and make access control decisions for mobile agents by evaluating complex policy sets. We have identified all architectural components along with the operations required for enforcement of authorisations of mobile agents during execution.
Place, publisher, year, edition, pages
2010. Vol. 2, no 3-4, 271-290 p.
Extensible access control mark-up language, Mobile agents' authorisation, XACML policies delegation of access rights
IdentifiersURN: urn:nbn:se:kth:diva-148886DOI: 10.1504/IJITST.2010.037405ScopusID: 2-s2.0-84878686796OAI: oai:DiVA.org:kth-148886DiVA: diva2:738303
QC 201408182014-08-182014-08-142014-08-18Bibliographically approved