近年來，網際網路(Internet)的熱潮方興未艾，網際網路上的相關技術與應用也一直是學者專家所關心與研究探討的議題，行動代理程式(Mobile Agent)更是其中一項非常具有潛力的技術。行動代理程式具有自主性(Autonomy)，能執行與完成使用者所設計與賦予的工作與任務，它所具備的移動性(Mobility)更使得他能在弗遠國界的網際網路上恣意的移動，代替使用者完成他所交付的任務。但是網際網路是一個開放式的環境，它的安全環境並不理想，所有的人雖可以透過它便利的分享和使用網路上的資源，但相對的任何懷有惡意的程式或駭客也都可以使用這樣的環境來達到他們竊取與破壞的目的。行動代理程式在網路上運作時，它所代表的身份是授與它權力的使用者，它所攜帶的敏感資料必須受到嚴格的保護，提供服務的網路伺服器主機，也必須確保自身系統和資料的安全和機密性。另外，不同的行動代理程式之間的接觸也可能成為洩密與破壞的主因，所以行動代理程式的安全與否是這項技術能否實際應用的主要關鍵。
本研究的主要目的便是針對行動代理程式在網路上運作時所面臨的安全考驗作一個詳細的探討，我們會分析和解說行動代理程式在面臨這樣的環境時，所需要的安全考量，和必須的安全機制，最後我們提出一套完整且適用於行動代理程式的安全策略。

The subject of the mobile agent is a new popular emerging research topic. Nowadays, mobile agent is widely developed and implemented on the Internet. Application areas of mobile agent include electronic commerce, electronic marketing, and enterprise information systems, etc.
Mobile agent is a program that acts on behalf of a user or another program and is able to migrate from host to host on a network under its own control. It can migrate to target host from a source host in order to perform jobs. The agent works at the target hosts, and it visits one host after another. Therefore, the security issue in management of mobile agents becomes essential. When a mobile agent is on duty, it may contact with the hosts and other agents. However they may be trusty or malicious. As a consequence, most of the attacks come from here. A mobile agent must be capable of authenticating legal hosts and other agents to avoid malicious attacks. Not only this, since the mobile agent is transmitted over the Internet, the security policies become essential in protecting the data carried by the agent being transferred between distributed hosts.
This research aims on mobile agent security and the other related topics. We will analysis and description what is the requirement of the mobile agent security, and introduce the secure policies and machines. In the end, we will propose some solutions in this domain.

目錄 I
圖表目錄 IV
摘要 V
ABSTRACT VII
致謝 IX
1. 簡介 1
1.1. 研究動機 1
1.2. 研究目的 5
1.3. 研究方法與步驟 6
2. 安全需求 9
2.1. 成員 9
2.2. 攻擊的分類 10
2.3. 安全技術 12
3. 文獻回顧與相關研究 15
3.1. 開發環境 15
3.2. AJANTA 17
3.3. SOMA 21
3.4. SFM 24
3.5. 安全機制的歸類 26
3.5.1. 認證傳遞機制 27
3.5.2. 存取控制機制 31
4. 我們的方法 37
4.1. 以密碼學為基礎之行動代理程式安全機制 37
4.1.1. 安全的行動代理程式傳輸協定 37
4.1.1.1. 楊與蕭的行動代理程式傳輸協定 37
4.1.1.2. 安全的行動代理程式傳輸協定 42
4.1.2. 以階層管理的概念改良存取控制機制 45
4.1.2.1. Volker and Mehrdad的存取控制與金鑰管理機制 46
4.1.2.2. Akl和Taylor的使用者階層存取技術 48
4.1.2.3. 使用階層技術改善存取控制與金鑰管理機制 50
4.2. 應用於類神經網路的行動代理程式安全機制 52
4.2.1. 概述 52
4.2.2. 以類神經網路為基礎之使用者認證系統 53
4.2.2.1. 簡介 53
4.2.2.2. 方法 57
4.2.2.3. 討論 60
4.2.2.4. 改良 64
4.2.2.5. 結論 67
4.2.3. 以類神經為基礎之行動代理程式安全機制 67
4.2.3.1. 概述 67
4.2.3.2. 基礎架構 70
4.2.3.3. 參數的取得 73
4.2.3.4. 類神經機制 74
4.2.3.5. 驗證機制的運作 77
4.2.3.6. 安全分析 78
4.2.3.7. 結論 80
5. 結論與未來方向 82
5.1. 結論 82
5.2. 未來研究方向 83
參考文獻 85

[AGENT_TCL] http://www.cs.dartmouth.edu/~agent
[AGLET] http://www.trl.ibm.co.jp/aglets
[AJANTA] http://www.cs.umn.edu/Ajanta
[Akl83CR] S. G. Akl and P. D. Taylor, “Cryptographic solution to a problem of access control in a hierarchy”, ACM Transaction on Computer System, Vol. 1, No. 3, pp. 239-247, August 1983.
[ARA] http://www.uni-kl.de/AG-Nehmer/Projekte/Ara
[BAR83NU] A. G. Barto, R. S. Sutton, C. W. Anderson, “Neuron like elements that can solve difficult learning control problems”, IEEE Transactions on Systems, Man and Cybernetics, Vol. SMC-13, pp. 835-846, 1983.
[BIR85MA] A. Birrell, “Secure communication using remote procedure calls”, ACM Transactions on Computer Systems, vol.3, pp.1-141, February 1985.
[CONCORDIA] http://www.meitca.com/HSL/Projects/Concordia
[COR99MA] A. Corradi, R. Montanari, C. Stefanelli, “Mobile agents integrity in e-commerce applications”, in 19th IEEE International Conference on Distributed Computing Systems Workshops on Electronic Commerce and Web-based Applications/Middleware, pp.59-64, 1999.
[COR99MA2] A. Corradi, R. Montanari, C. Stefanelli, “Mobile agents protection in the internet environment”, in The Twenty-Third Annual International Computer Software and Applications Conference (COMPSAC''99), pp.80-85, 1999.
[COR99MA1] A. Corradi, R. Montanari, C. Stefanelli, “Security issues in mobile agent technology”, in 7th IEEE Workshop on Future Trends of Distributed Computing Systems, pp.3-8, 1999.
[EDJ98MA] G. Edjlali, A. Acharya, V. Chaudhary, “History-based access control for mobile code”, in Fifth ACM Conference on Computer and Communication Security, pp.38-48, 1998.
[FAR96MA] W. M. Farmer, J. D. Guttman, V. Swarup, “Security for mobile agents: Issues and requirements”, in 19th National Information Systems Security Conference, pp.591-587, October 1997.
[FIPA] http://www.fipa.org/spec/FIPA98.html
[FOR92] W. Ford, “Security techniques for network management”, Advanced Communications and Applications for High Speed Networks, pp.133-149, 1992.
[FRA96MA] S. Franklin and A. Graesser, ”Is it an agent or just a program”, in The Third Internation Workshop on Agent Theories, architectures, and languages, 1996.
[GLE99MA] P. Gleeson, O. Weissmann, “Secure access control in a TINA environment containing mobile agents”, in Telecommunications Information Networking Architecture Conference (TINA ''99}, pp.177-179, 1999.
[GON97] L. Gong, “New security architectural directions for java”, in IEEE COMPCON''97, 1997.
[GON97MA] Li Gong, “Java security: Present and near future”, IEEE Micro, vol.17, May/June 1997.
[GRE98MA] M. S. Greenberg, J. C. Byington, D. G. Harper, “Mobile agents and security”, IEEE Communications Magazine, vol. 36, pp. 76-85, July 1998.
[HOH98MA] F. Hohl, “A model of attacks malicious hosts against mobile agents”, in 4th Workshop on Mobile Object Systems: Secure Internet Mobile Computations, 1998.
[MASIF] Crystaliz Inc., General Magic Inc., GMD Fokus, IBM Corp., “Mobile agent facility specification”, Joint Submission Supported by the Open Group, OMG TC Document, November 1997.
[MOLE] http://www.informatik.uni-stuttgart.de/ipvt/vs/ projekte/mole.html
[JAVA] http://www.java.soft.com
[JEN98MA] N. R. Jennings, K. Sycara, and M. Wooldridge, “A roadmap of agent research and development”, Autonomous Agents and Multi-Agent Systems, vol. 1, pp. 7-38, 1998.
[KAR99MA] G. Karjoth, N. Asokan, C. Gulcu, “Protecting the computation result of free-roaming agents”, in The 2th International Workshop on Mobile Agent, 1999.
[KAR98MA] A. Karmouch, “Guest editorial mobile software agents for telecommunications”, IEEE Communications Magazine, July 1998.
[KAR00MA] N. M. Karnik and A. R. Tripathi, “A security architecture for mobile agents in Ajanta”, in 20th International Conference on Distributed Computing Systems, pp.402-409, 2000.
[KERBEROS] J. Kohl and B. C. Neuman, The Kerberos network authentication service (Version 5), Internet RFC 1510, Sept. 1993.
[KUM97MA] G. P. Kumar and P. Venkataram, “Security management architecture for access control to network resources”, in Computers and Digital Techniques, IEE, vol. 1446, pp.362-370, November 1997.
[LAN98MA] D. B. Lange and M. Oshima, Programming, Deploying Java Mobile Agent with Aglets, Assison-Wesley, 1998.
[LIP89NU] R. P. Lippman, “An introduction to computing with neural nets”, IEEE ASSP Magazine, pp. 4-22, April 1987.
[LUP97MA] E. LUPU and M. Sloman, “A policy based role object model”, in EDOC97, October 1997.
[JOR99MA] P. J. Marques, L. M. Silva, J. G. Silva, “Security mechanisms for using mobile agents in electronic commerce”, in The 18th IEEE Symposium on Reliable Distributed Systems, pp.378-383, 1999.
[MAR99MA] P. J. Marques, L. M. Silva, J. G. Silva, “Security mechanisms for using mobile agents in electronic commerce”, in 18th IEEE Symposium on Reliable Distributed Systems, pp.378-383, 1999.
[MEN96MA] A. Menezes, et al., Handbook of Applied Cryptography, CRC Press, 1996.
[NEU94] B. C. Neuman, T. Ts''o, “Kerberos: an authentication services for computer networks”, IEEE Communications Magazine, vol.32, no.9, pp.33-38, 1994.
[ODYSSEY] http://www.generalmagtic.com
[RUM86NU] D. E. Rumelhart, G. E. Hinton,R. J. Williams, “Learning internal representations by error propagation”, Microstructure of Congnition, vol.1: Foundations, 1986.
[SCH96] B. Schneier, Applied Cryptography (Second Edition), John Wiley and Sons Inc., 1996.
[SHIP_MAI] http://deneb.genie.uottawa.ca
[SNO92SE] D. Snow, W. Chang, “Network security”, Telesystems Conference NTC-92, pp.15/13-15/16, 1992.
[SOMA] http://www-lia.deis.unibo.it/Software/SOMA
[SOH95SE] B. C. Soh, T. S. Dillion, “Setting optimal intrusion-detection thresholds”, Computers & Security, vol.14, pp.621-631, 1995.
[STE88] J. G. Steiner, B. C. Neuman, J. I. Schiller, “Kerberos: An authentication service for open network systems (version 4)”, in The Winter USENIX Conference, pp.191-202, Feb. 1988.
[TACOMA] http://www.cs.uit.no/DOS/Tacoma/index.html
[TAK98MA] T. Taka, T. Mizuno, T. Watanabe, “A model of mobile agent services enhanced for resource restrictions and security”, in 1998 International Conference on Parallel and Distributed Systems, pp.274-281, 1998.
[TAK97MA] Akio TAKUBO, Mutsumi ISHIKAWA, Takashi WATANABE, Masakazu SOGA, Tadanori MIZUNO, “User authentication in mobile computing environment”, IEICE TRANS. On Fundamentals of Electronics, Communications and Computer Sciences, vol. E80-A, no.7, pp.1288-1298, 1997.
[TRI99MA] A. Tripathi, N. Karnik, M. Vora, T. Ahmed, R. Singh, “Mobile agent programming in Ajanta”, The 19th International Conference on Distributed Computing Systems, pp.190-197, May 1999.
[VOL98MA] R. Volker, J. Mehrdad, “Access control and key management for mobile agents”, Computer and Graphics, vol.22, no.4, pp.457-467, 1998.
[VOYAGER] http://www.objectspace.com/voyager
[WIL98MA] U. G. Wilhelm, S. Staamann, L. Buttyan, “Protecting the itinerary of mobile agents”, in MOS''98, 1998.
[WON99MA] David Wong, Noemi Paciorek, Dana Moore, “Java-based mobile agents”, Communication of the ACM, vol.42, pp.92-102, March 1999.
[ZHO96] J. Zhou, D. Gollmann, “Observations on non-repudiation”, Asiacrypt''96, pp.133-144, 1996.
[HWA00MA] 黃明祥, 歐俠宏, 張簡尚偉, “安全的行動代理程式傳輸協定”, 第五屆電腦與通信技術研討會, pp3C25-3C29, Oct. 2000.
[OU00NU] 歐俠宏, 黃明祥, 李麗華, “以類神經網路為基礎之使用者認證系統”, 2000第八屆模糊理論及其應用會議, Dec. 2000.
[YEN00MA] 楊琇娟, 蕭如淵, ”行動代理程式應用在虛擬團隊之安全協定” , 2000網際網路與分散式系統研討會, pp.295-302, May 2000.