Abstract
1- Introduction
2- Backgrounds and motivations
3- Definition and security notions of identity-based undetachable signature
4- A concrete scheme
5- Comparison with related works
6- Conclusions
References
Abstract
To enable mobile agents signing securely on potentially malicious hosts in electronic commerce and other applications, we proposed the definition and security notion of identity-based undetachable digital signature schemes. More importantly, we proposed a concrete identity-based undetachable digital signature scheme with provable security. In the scheme, mobile agents need not carry the private key when they generate digital signatures on behalf of the original signer, so the private key will not be compromised. The encrypted function is combined with the original signer’s requirement, so misuse of the signing algorithm can be prevented. Moreover, because the scheme is identity-based, verification of the signatures generated by mobile agents does not require either verification of the entire certificate path or communication with the certification authority. Therefore, compared with existing undetachable signature schemes, the cost of verification is reduced and even the dependence on a stable network connection is weakened.
Introduction
With the development in technologies of distributed computing, mobile agent technologies and systems have attracted great interest. Commonly, a mobile agent system comprises platforms and mobile agents. Agents are a type of computer software acting autonomously on behalf of an organization or a person (Object Management Group 1997). Meanwhile, platforms are agent systems that can generate, execute, transfer, and terminate agents. Like an agent, an agent system is associated with an authority identifying the organization or person for which the agent system acts. Moreover, agent systems operate on computers connected by networks and can exchange information with each other via a communication infrastructure. While static agents may reside on hosting platform or an immobile system, mobile agents can transport themselves easily from one platform in a network to another. They can also automatically suspend execution on one platform and migrate to another to restart their computations. The capability of them to travel enables a mobile agent to migrate to a destination agent system that contains an entity in which the agent wishes to interact. Furthermore, the mobile agent may utilize the destination agent platform’s services.