The NIST model for role-based access control: towards a unified standard
RBAC '00 Proceedings of the fifth ACM workshop on Role-based access control
Security in the Ajanta mobile agent system
Software—Practice & Experience
A Security Architecture for Mobile Agent Based Applications
World Wide Web
IEEE Internet Computing
MagicNET: Security System for Development, Validation and Adoption of Mobile Agents
NSS '09 Proceedings of the 2009 Third International Conference on Network and System Security
ICACT'09 Proceedings of the 11th international conference on Advanced Communication Technology - Volume 2
MagicNET: Security System for Protection of Mobile Agents
AINA '10 Proceedings of the 2010 24th IEEE International Conference on Advanced Information Networking and Applications
An XML standards based authorization framework for mobile agents
MADNES'05 Proceedings of the First international conference on Secure Mobile Ad-hoc Networks and Sensors
Towards remote policy enforcement for runtime protection of mobile code using trusted computing
IWSEC'06 Proceedings of the 1st international conference on Security
Hi-index | 0.00 |
One approach to authorisation of mobile agents is to use extensible access control mark-up language (XACML) policies by assigning roles to agents and then enforcing role-based authorisation. In this paper we show how traditional XACML polices, used for user access control in distributed environments, can be used for mobile agents' access control. We use such polices to manage delegation of access rights from users to agents, while at the same time following the core principles of the XACML standard. We also propose a combination of policies that map users to their mobile agents and make access control decisions for mobile agents by evaluating complex policy sets. We have identified all architectural components along with the operations required for enforcement of authorisations of mobile agents during execution.