Mobile agent systems provide new perspectives for distributed e-commerce applications. Sea-of-Data (SoD) applications are those that need to process huge quantities of distributed data. They present specific restrictions, which make mobile agent systems one of the most feasible technologies to implement them. In this paper we propose a mechanism to safely assign roles to mobile agents and an access control method based in Role-based Access Control (RBAC). The access control method provides a simple, lightweight and distributed model for mobile agent applications. It provides a role system implemented with Simple Public Key Infrastructure (SPKI) certificates and uses the authorization model of SPKI for trust management. Categories and Subject Descriptors E.3 [Data]: Data Encryption; H.4 [Information Systems Applications]: Miscellaneous General Terms Security Keywords Mobile agents, access control, security, SPKI.
Guillermo Navarro, Joan Borrell, Jose A. Ortega-Ru