|
| This Article | ||
| ||
| Share | ||
| Bibliographic References | ||
| Add to: | ||
 Digg  Furl  Spurl  Blink  Simpy  Google  Del.icio.us  Y!MyWeb | ||
| Search | ||
| ||
2008 IFIP International Conference on Network and Parallel Computing
Towards Time Limited Secure Agent Execution on Malicious Host: A Concept Paper
October 18-October 21
ISBN: 978-0-7695-3354-4
| ASCII Text | x | ||
| Sarosh Hashmi, John Brooke, "Towards Time Limited Secure Agent Execution on Malicious Host: A Concept Paper," Network and Parallel Computing Workshops, IFIP International Conference on, pp. 155-162, 2008 IFIP International Conference on Network and Parallel Computing, 2008. | |||
| BibTex | x | ||
| @article{ 10.1109/NPC.2008.80, author = {Sarosh Hashmi and John Brooke}, title = {Towards Time Limited Secure Agent Execution on Malicious Host: A Concept Paper}, journal ={Network and Parallel Computing Workshops, IFIP International Conference on}, volume = {0}, year = {2008}, isbn = {978-0-7695-3354-4}, pages = {155-162}, doi = {http://doi.ieeecomputersociety.org/10.1109/NPC.2008.80}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, } | |||
| RefWorks Procite/RefMan/Endnote | x | ||
| TY - CONF JO - Network and Parallel Computing Workshops, IFIP International Conference on TI - Towards Time Limited Secure Agent Execution on Malicious Host: A Concept Paper SN - 978-0-7695-3354-4 SP155 EP162 A1 - Sarosh Hashmi, A1 - John Brooke, PY - 2008 KW - null VL - 0 JA - Network and Parallel Computing Workshops, IFIP International Conference on ER - | |||
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/NPC.2008.80
Absolute protection of mobile agents from attacks by malicious hosts is an open research problem. We propose a software based paradigm whereby an agent is protected from various static and dynamic attacks from a malicious host of an unknown hardware configuration, for a specific period of time. This time interval is computed by restricting the maximum resources that may be available to the adversary and the time complexity of the critical static and dynamic attacks that it may launch. We employ the technique of oblivious hashing (OH) using overlapped instructions [1], with pointer aliasing to thwart static analysis and instant code modifications. The host is required to obtain the aggregate OH value of the whole agent by executing it in an unobtrusive environment and to send it back to the agent originator within the specified time interval. To provide unobtrusive environment, we employ various x86 platform specific techniques and external timing analysis to thwart major dynamic attack tools like debuggers, virtual machines and emulators. The resulting increase in resilience to static and dynamic attacks compounds the difficulty of a malicious host to manipulate agent's execution, thus increasing the reliability of the agent system.
Citation:
Sarosh Hashmi, John Brooke, "Towards Time Limited Secure Agent Execution on Malicious Host: A Concept Paper," npc, pp.155-162, 2008 IFIP International Conference on Network and Parallel Computing, 2008
Usage of this product signifies your acceptance of the Terms of Use.