RE: [jade-develop] Re: JADE Security Plugin

Subject: RE: [jade-develop] Re: JADE Security Plugin
From: Vitaglione Giosue' (Giosue.Vitaglione@TILAB.COM)
Date: Mon Sep 02 2002 - 09:05:32 MET DST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Next message: Cortese Elisabetta: "R: [jade-develop] new protocol"
• Previous message: klleung@smartonebroadband.com: "Re: please, take me out of the list."
• Maybe reply: Vitaglione Giosue': "RE: [jade-develop] Re: JADE Security Plugin"

> Vitaglione,
> What can this intra-platform security approach do for you? I
> am confused.

Hello Cefn,
You can find a description of the JADE Security
plug-in in the "Security Administrator Guide" at:
http://jade.cselt.it/doc/tutorials/SecurityAdminGuide.pdf

If you want, you can fill the form at:
http://jade.cselt.it/jadesecform.html

> Good programming can ensure that other hosted agents cannot eavesdrop,
> simply because they cannot get hold of the messages, (i.e.
> the messages and
> the helper objects which provide the transport are not in a
> part of memory accessible to them).

A program can sniff messages on the network
in a multi-host platform, for example.

Anyway, the Security plug-in is not only SSL,
(and in my opinion this is not the most important feature,
compared to: multi-user support, agent permission,
authentication, certificates, etc..).

Cheers,
Giosue

> -----Original Message-----
> From: cefn.hoile@bt.com [mailto:cefn.hoile@bt.com]
> Sent: Friday, August 30, 2002 1:04 PM
> To: Giosue.Vitaglione@TILAB.COM
> Cc: jade-develop@sharon.cselt.it
> Subject: RE: [jade-develop] Re: JADE Security Plugin
>
>
> Vitaglione,
>
> What can this intra-platform security approach do for you? I
> am confused.
>
> Good programming can ensure that other hosted agents cannot eavesdrop,
> simply because they cannot get hold of the messages, (i.e.
> the messages and
> the helper objects which provide the transport are not in a
> part of memory
> accessible to them).
>
> If the messages are ever in plain text (i.e. before they are
> encrypted) then
> the host can monitor communications anyway, because it has
> control of the
> VM.
>
> So, who does this protect you from? Or is this just a
> starting point for
> future 'inter-platform' security?
>
> Cefn
>
> -----Original Message-----
> From: Vitaglione Giosue' [mailto:Giosue.Vitaglione@tilab.com]
> Sent: 29 August 2002 13:50
> To: Juan Jim Tan
> Cc: jade-develop@sharon.cselt.it; Leonid Titkov; Stefan Poslad;
> Bellifemine Fabio
> Subject: [jade-develop] Re: JADE Security Plugin
>
>
>
> Hi Jim,
> I'm happy to see your interest about the JADE Security plug-in.
> Please let me copy this e-mail to the jade-develop mailing list, too.
>
>
> > Hi Giosue
> > I have some questions about the JADE security plugin:
> > 1) How do you envisage the security model developed by JADE
> > as a standard
> > for FIPA standardisation?
>
> JADE Security plug-in offers intra-platform security support.
> It does not support inter-platform security because
> a standard is needed to do that.
> This is the same reason why we support intra-platform only mobility.
>
> Indeed, I think the concepts used in JADE Security plug-in
> are well suited
> for
> becoming the base of a standard. This would promote interoperability,
> e.g. standard permission names (re-use policies), standard delegation
> mechanism, etc...
>
>
> > 2) Does the SSL tie with the FIPA's proposed HTTPS for
> inter-platform
> > communication?
>
> We have seen this as two different topics.
> The Security plug-in offers intra-platform secure communication
> by using a SSL-enabled IMTP.
> Inter-platform HTTPS communication is not part of the plug-in.
>
>
> > 3) There are also issues regarding connection failures, where
> > a connection
> > can be terminated due to lateral causes. Is the SSL
> > connection oriented,
> > where it regularly needs to rebuild a lost secure communication?
>
> Our mechanism relies on RMI-SSL.
> JADE messaging subsystem handles timeouts, msg re-sending and
> connection failures. This mechanism has been succesuful tested
> for JADE with the LEAP libraries, but we haven't stressed yet our
> secure IMTP.
>
>
>
>
> Our goal for JADE Security plug-in is to provide a
> basic set of security features that can be used
> for implementing higher level features (trust, etc..).
>
> I look forward to read comments (if any) from whoever
> is interested in the plug-in, or generally to agent security.
>
> Best Regards,
> Giosuč
>
>
> > Regards,
> > Jim
> >
>
>
> ___________________________________________
>
> Giosuč Vitaglione
>
> TELECOM ITALIA LAB
> Centro per l'Innovazione Tecnologica di Napoli
> Acceleration Services
>
> Centro Direzionale isola F7 - 80143 Napoli
> tel. 0819718354 fax 0819718374
> e-mail: giosue.vitaglione@tilab.com
> <http://www.telecomitalialab.com/>
>
> ___________________________________________
>
> And don't EVER make the mistake [of thinking] that you can
> design something
>
> better than what you get from ruthless massively parallel
> trial-and-error
> with a feedback cycle. That's giving your intelligence
> _much_ too much
> credit.
>
> Linus Torvalds
> e-mail dated 12-04-01
> ___________________________________________
>
>
> _______________________________________________
> jade-develop mailing list
> jade-develop@sharon.cselt.it
> http://sharon.cselt.it/mailman/listinfo/jade-develop
> UNSUBSCRIBE INSTRUCTIONS AT
> http://jade.cselt.it/mailing.htm#unsubscribe
>

• Next message: Cortese Elisabetta: "R: [jade-develop] new protocol"
• Previous message: klleung@smartonebroadband.com: "Re: please, take me out of the list."
• Maybe reply: Vitaglione Giosue': "RE: [jade-develop] Re: JADE Security Plugin"

This archive was generated by hypermail 2a22 : Mon Sep 02 2002 - 09:05:39 MET DST