Title

Mobility-Enhanced File Integrity Analyzer For Networked Environments

Keywords

Computer security; File integrity; Message digest; Mobile agents

Abstract

The ability to monitor computer file systems for unauthorized changes is a powerful administrative tool. Ideally this task could be performed remotely under the direction of the administrator to allow on-demand checking, and use of tailorable reporting and exception policies targeted to adjustable groups of network elements. This paper introduces M-FICA, a Mobile File Integrity and Consistency Analyzer as a prototype to achieve this capability using mobile agents. The M-FICA file tampering detection approach uses MD5 message digests to identify file changes. Two agent types, Initiator and Examiner, are used to perform file integrity tasks. An Initiator travels to client systems, computes a file digest, then stores those digests in a database file located on write-once media. An Examiner agent computes a new digest to compare with the original digests in the database file. Changes in digest values indicate that the file contents have been modified. The design and evaluation results for a prototype developed in the Concordia agent framework are described.

Publication Date

12-1-2005

Publication Title

WMSCI 2005 - The 9th World Multi-Conference on Systemics, Cybernetics and Informatics, Proceedings

Volume

2

Number of Pages

341-346

Document Type

Article; Proceedings Paper

Personal Identifier

scopus

Socpus ID

31344460881 (Scopus)

Source API URL

https://api.elsevier.com/content/abstract/scopus_id/31344460881

This document is currently not available here.

Share

COinS