Towards time limited secure agent execution on malicious host: A concept paper

Sarosh Hashmi; John Brooke

doi:10.1109/NPC.2008.80

Towards time limited secure agent execution on malicious host: A concept paper

Sarosh Hashmi, John Brooke

ITS - Office of the CIO

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Absolute protection of mobile agents from attacks by malicious hosts is an open research problem. We propose a software based paradigm whereby an agent is protected from various static and dynamic attacks from a malicious host of an unknown hardware configuration, for a specific period of time. This time interval is computed by restricting the maximum resources that may be available to the adversary and the time complexity of the critical static and dynamic attacks that it may launch. We employ the technique of oblivious hashing (OH) using overlapped instructions [1], with pointer aliasing to thwart static analysis and instant code modifications. The host is required to obtain the aggregate OH value of the whole agent by executing it in an unobtrusive environment and to send it back to the agent originator within the specified time interval. To provide unobtrusive environment, we employ various x86 platform specific techniques and external timing analysis to thwart major dynamic attack tools like debuggers, virtual machines and emulators. The resulting increase in resilience to static and dynamic attacks compounds the difficulty of a malicious host to manipulate agent's execution, thus increasing the reliability of the agent system. © 2008 IEEE.

Original language	English
Title of host publication	Proceedings - 2008 IFIP International Conference on Network and Parallel Computing, NPC 2008\|Proc. - IFIP Int. Conf. Netw. Parallel Comput., NPC
Pages	155-162
Number of pages	7
DOIs	https://doi.org/10.1109/NPC.2008.80
Publication status	Published - 2008
Event	2008 IFIP International Conference on Network and Parallel Computing, NPC 2008 - Shanghai Duration: 1 Jul 2008 → …

Conference

Conference	2008 IFIP International Conference on Network and Parallel Computing, NPC 2008
City	Shanghai
Period	1/07/08 → …

Keywords

agent system reliability
external timing analysis
malicious host
mobile agents protection
oblivious hashing
static attacks
thwart static analysis
time limited secure agent execution
virtual machines
mobile agents
multi-agent systems
security of data
software reliability

Access to Document

10.1109/NPC.2008.80

Cite this

@inproceedings{b82626bbdc9d4b2b96db9d3cae686ea4,

title = "Towards time limited secure agent execution on malicious host: A concept paper",

abstract = "Absolute protection of mobile agents from attacks by malicious hosts is an open research problem. We propose a software based paradigm whereby an agent is protected from various static and dynamic attacks from a malicious host of an unknown hardware configuration, for a specific period of time. This time interval is computed by restricting the maximum resources that may be available to the adversary and the time complexity of the critical static and dynamic attacks that it may launch. We employ the technique of oblivious hashing (OH) using overlapped instructions [1], with pointer aliasing to thwart static analysis and instant code modifications. The host is required to obtain the aggregate OH value of the whole agent by executing it in an unobtrusive environment and to send it back to the agent originator within the specified time interval. To provide unobtrusive environment, we employ various x86 platform specific techniques and external timing analysis to thwart major dynamic attack tools like debuggers, virtual machines and emulators. The resulting increase in resilience to static and dynamic attacks compounds the difficulty of a malicious host to manipulate agent's execution, thus increasing the reliability of the agent system. {\textcopyright} 2008 IEEE.",

keywords = "agent system reliability, external timing analysis, malicious host, mobile agents protection, oblivious hashing, static attacks, thwart static analysis, time limited secure agent execution, virtual machines, mobile agents, multi-agent systems, security of data, software reliability",

author = "Sarosh Hashmi and John Brooke",

year = "2008",

doi = "10.1109/NPC.2008.80",

language = "English",

isbn = "9780769533544",

pages = "155--162",

booktitle = "Proceedings - 2008 IFIP International Conference on Network and Parallel Computing, NPC 2008|Proc. - IFIP Int. Conf. Netw. Parallel Comput., NPC",

note = "2008 IFIP International Conference on Network and Parallel Computing, NPC 2008 ; Conference date: 01-07-2008",

}

Hashmi, S & Brooke, J 2008, Towards time limited secure agent execution on malicious host: A concept paper. in Proceedings - 2008 IFIP International Conference on Network and Parallel Computing, NPC 2008|Proc. - IFIP Int. Conf. Netw. Parallel Comput., NPC. pp. 155-162, 2008 IFIP International Conference on Network and Parallel Computing, NPC 2008, Shanghai, 1/07/08. https://doi.org/10.1109/NPC.2008.80

Towards time limited secure agent execution on malicious host: A concept paper. / Hashmi, Sarosh; Brooke, John.
Proceedings - 2008 IFIP International Conference on Network and Parallel Computing, NPC 2008|Proc. - IFIP Int. Conf. Netw. Parallel Comput., NPC. 2008. p. 155-162.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Towards time limited secure agent execution on malicious host: A concept paper

AU - Hashmi, Sarosh

AU - Brooke, John

PY - 2008

Y1 - 2008

N2 - Absolute protection of mobile agents from attacks by malicious hosts is an open research problem. We propose a software based paradigm whereby an agent is protected from various static and dynamic attacks from a malicious host of an unknown hardware configuration, for a specific period of time. This time interval is computed by restricting the maximum resources that may be available to the adversary and the time complexity of the critical static and dynamic attacks that it may launch. We employ the technique of oblivious hashing (OH) using overlapped instructions [1], with pointer aliasing to thwart static analysis and instant code modifications. The host is required to obtain the aggregate OH value of the whole agent by executing it in an unobtrusive environment and to send it back to the agent originator within the specified time interval. To provide unobtrusive environment, we employ various x86 platform specific techniques and external timing analysis to thwart major dynamic attack tools like debuggers, virtual machines and emulators. The resulting increase in resilience to static and dynamic attacks compounds the difficulty of a malicious host to manipulate agent's execution, thus increasing the reliability of the agent system. © 2008 IEEE.

AB - Absolute protection of mobile agents from attacks by malicious hosts is an open research problem. We propose a software based paradigm whereby an agent is protected from various static and dynamic attacks from a malicious host of an unknown hardware configuration, for a specific period of time. This time interval is computed by restricting the maximum resources that may be available to the adversary and the time complexity of the critical static and dynamic attacks that it may launch. We employ the technique of oblivious hashing (OH) using overlapped instructions [1], with pointer aliasing to thwart static analysis and instant code modifications. The host is required to obtain the aggregate OH value of the whole agent by executing it in an unobtrusive environment and to send it back to the agent originator within the specified time interval. To provide unobtrusive environment, we employ various x86 platform specific techniques and external timing analysis to thwart major dynamic attack tools like debuggers, virtual machines and emulators. The resulting increase in resilience to static and dynamic attacks compounds the difficulty of a malicious host to manipulate agent's execution, thus increasing the reliability of the agent system. © 2008 IEEE.

KW - agent system reliability

KW - external timing analysis

KW - malicious host

KW - mobile agents protection

KW - oblivious hashing

KW - static attacks

KW - thwart static analysis

KW - time limited secure agent execution

KW - virtual machines

KW - mobile agents

KW - multi-agent systems

KW - security of data

KW - software reliability

U2 - 10.1109/NPC.2008.80

DO - 10.1109/NPC.2008.80

M3 - Conference contribution

SN - 9780769533544

SP - 155

EP - 162

BT - Proceedings - 2008 IFIP International Conference on Network and Parallel Computing, NPC 2008|Proc. - IFIP Int. Conf. Netw. Parallel Comput., NPC

T2 - 2008 IFIP International Conference on Network and Parallel Computing, NPC 2008

Y2 - 1 July 2008

ER -

Towards time limited secure agent execution on malicious host: A concept paper

Abstract

Conference

Keywords

Access to Document

Fingerprint

Cite this