ETRI-Knowledge Sharing Plaform

KOREAN
논문 검색
Type SCI
Year ~ Keyword

Detail

Conference Paper Building secure agents on the semantic web
Cited - time in scopus Share share facebook twitter linkedin kakaostory
Authors
Joo-Young Lee, Ki-Young Moon
Issue Date
2005-02
Citation
International Conference on Advanced Communication Technology (ICACT) 2005, pp.386-389
Publisher
IEEE
Language
English
Type
Conference Paper
Abstract
Security for agents on the Semantic Web is vital because they usually handle a lot of privacy related information. Using this information such like financial information, agents purchase goods, reserve hotels, flights, and cars and make a contract with others on behalf of their users. These features bring them more subtle attacks and dangers. For example, sensitive information about the user may be disclosed or sabotaged by malicious parties. In this paper, we suggest a method to build secure agents on the Semantic Web as a solution to this problem. Especially because agents have charges of different and various roles on the distributed systems and platforms on the Semantic Web, required qualification for access to resource is dynamically changed according to the case. Therefore, at the first, we will discuss the requirement of agent security on the Semantic Web and propose a method that the agent dynamically exchanges its authentication and authorization information using SAML (Security Assertion Markup Language). Because SAML doesn't need to share same security infrastructure and allows applications to exchange authentication and authorization information, it is suitable for securing the agent that plays various roles in heterogeneous platforms, dynamically changes their requirements, and acts on behalf of users with diverse access permission on the Semantic Web. In addition to this, since SAML is based on XML, it has an advantage of easy integration and extension without modification of legacy system and protocol on the Semantic Web.
KSP Keywords
Agent security, Distributed System(DS), Heterogeneous platforms, Legacy Systems, Security assertion markup language(SAML), Sensitive information, access permissions, authentication and authorization, financial information, security infrastructure, semantic web