TY - GEN
T1 - A new security scheme for integration of mobile agents and Web services
AU - Zhang, Junqi
AU - Wang, Yan
AU - Varadharajan, Vijay
N1 - Copyright 2007 IEEE. Reprinted from Proceedings of the 2nd international conference on internet and web applications and services (ICIW 2007). This material is posted here with permission of the IEEE. Such permission of the IEEE does not in any way imply IEEE endorsement of any of Macquarie University’s products or services. Internal or personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution must be obtained from the IEEE by writing to [email protected]. By choosing to view this document, you agree to all provisions of the copyright laws protecting it.
PY - 2007
Y1 - 2007
N2 - Web services specification provides an open standard for the distributed service oriented architecture. It is widely used in Internet and pervasive networks supporting wireless mobile devices. A mobile agent is a composition of computer software and data which is able to migrate from one host to another autonomously and continue its execution on the destination host. Mobile agent technology can reduce the bandwidth requirement and tolerate the network faults - able to operate without an active connection between clients and server. Hence, the applications of the combination of mobile agents and web service have been widely investigated in recent years. However, the security issue is still of a major concern. In this paper, we propose a novel agent-based web service security scheme. This scheme provides a new authentication protocol without using the username/password pair, which is infeasible for mobile agent, and gives an alternative method to current security mechanism without using Certification Authorities (CA) based public key infrastructure. With this scheme, we can simplify the key management and reduce the computation particularly for group-oriented web services.
AB - Web services specification provides an open standard for the distributed service oriented architecture. It is widely used in Internet and pervasive networks supporting wireless mobile devices. A mobile agent is a composition of computer software and data which is able to migrate from one host to another autonomously and continue its execution on the destination host. Mobile agent technology can reduce the bandwidth requirement and tolerate the network faults - able to operate without an active connection between clients and server. Hence, the applications of the combination of mobile agents and web service have been widely investigated in recent years. However, the security issue is still of a major concern. In this paper, we propose a novel agent-based web service security scheme. This scheme provides a new authentication protocol without using the username/password pair, which is infeasible for mobile agent, and gives an alternative method to current security mechanism without using Certification Authorities (CA) based public key infrastructure. With this scheme, we can simplify the key management and reduce the computation particularly for group-oriented web services.
UR - http://www.scopus.com/inward/record.url?scp=34548739668&partnerID=8YFLogxK
U2 - 10.1109/ICIW.2007.5
DO - 10.1109/ICIW.2007.5
M3 - Conference proceeding contribution
AN - SCOPUS:34548739668
SN - 0769528449
SN - 9780769528441
SP - 1
EP - 6
BT - Second International Conference on Internet and Web Applications and Services, ICIW'07
A2 - Werner, Bob
PB - Institute of Electrical and Electronics Engineers (IEEE)
CY - Piscataway, NJ
T2 - 2nd International Conference on Internet and Web Applications and Services, ICIW'07
Y2 - 13 May 2007 through 19 May 2007
ER -