Method and a system for securing processing of an order by a mobile agent within a network system
First Claim
1. A method for securing processing of an order by a mobile agent from a first server (S0) within a network system with a plurality of servers (S0, Si, . . . ,Sn), at least a number of which the mobile agent has to pass according to an appropriate succession, wherein each of the plurality of servers has a pair of a public key (KS0, . . . ,KSi, . . . , KSn) and a private key (PKS0, . . . ,PKSi, . . . , PKSn) associated therewith, respectively, the method comprising, starting from any one of the number of servers the mobile agent has to pass, called herein the i'"'"'th server, at least the following steps:
- receiving the mobile agent which has been prepared by the first server (S0) by choosing a unique number (r0) and assigning it to the mobile agent, encoding the chosen unique number (r0) with the private key (PKS0) of the first server (S0), thus forming an agent specific initialisation number (C0) as basis for a sequence of checksums (CO, . . . ,Ci, . . . ,Cn) to be computed successively by the number of servers (S0, S1, . . . ,Sn), and sending the mobile agent together with its initialisation number (C0) on its route through the network system for processing the order passing thereby the number of servers (S0, S1, . . . ,Sn) successively,encoding in case that the mobile agent intends to take data (Xi) with it when passing the i'"'"'th server the initialisation number (C0) together with the data (Xi) with the i'"'"'th server'"'"'s private key (PKSi) and computing therewith a new server specific checksum (Ci) using the public key (KS0) of the first server (S0) and the checksum (Ci−
1) computed by the server (Si−
1) right before in the succession, andsending the mobile agent further to the next server (Si+1) within the succession.
2 Assignments
0 Petitions
Accused Products
Abstract
The present description refers to a method for securing processing of an order by a mobile agent from a first server (S0) within a network system with a plurality of servers (S0, S1, . . . ,Sn), at least a number of which the mobile agent has to pass according to an appropriate succession, wherein each of the plurality of servers has a pair of a public key (KS0, . . . ,KSi, . . . , KSn) and a private key (PKS0, . . . ,PKSi, . . . , PKSn) associated therewith, respectively, the method comprising, starting from any one of the number of servers the mobile agent has to pass, called herein the i'"'"'th server at least the steps of receiving the mobile agent which has been prepared by the first server by choosing a unique number (r0) and assigning it to the mobile agent, encoding the chosen unique number (r0) with the private key (PKS0) of the first server (S0), thus forming an agent specific initialisation number (C0) as basis for a sequence of checksums (C0, . . . ,Ci, . . . ,Cn) to be computed successively by the number of servers (S0, S1, . . .,Sn), sending the mobile agent together with its initialisation number (C0) on its route through the network system for processing the order passing thereby the number of servers (S0, S1, . . . ,Sn) successively, and initiating each server (S1, . . . ,Sn) from which the mobile agent intends to take data with it when passing that server to encode the initialisation number (C0) together with the data with the respective server'"'"'s private key (PKS1, . . . ,PKSi, . . . , PKSn) and to compute therewith a new server specific checksum (C1, . . . ,Ci, . . . ,Cn) using the public key (KS0) of the first server (S0) and the checksum (C0, . . . ,Ci, . . . ,Cn−1) computed by the server (S0, . . . ,Sn−1) right before in the succession.
15 Citations
11 Claims
-
1. A method for securing processing of an order by a mobile agent from a first server (S0) within a network system with a plurality of servers (S0, Si, . . . ,Sn), at least a number of which the mobile agent has to pass according to an appropriate succession, wherein each of the plurality of servers has a pair of a public key (KS0, . . . ,KSi, . . . , KSn) and a private key (PKS0, . . . ,PKSi, . . . , PKSn) associated therewith, respectively, the method comprising, starting from any one of the number of servers the mobile agent has to pass, called herein the i'"'"'th server, at least the following steps:
-
receiving the mobile agent which has been prepared by the first server (S0) by choosing a unique number (r0) and assigning it to the mobile agent, encoding the chosen unique number (r0) with the private key (PKS0) of the first server (S0), thus forming an agent specific initialisation number (C0) as basis for a sequence of checksums (CO, . . . ,Ci, . . . ,Cn) to be computed successively by the number of servers (S0, S1, . . . ,Sn), and sending the mobile agent together with its initialisation number (C0) on its route through the network system for processing the order passing thereby the number of servers (S0, S1, . . . ,Sn) successively, encoding in case that the mobile agent intends to take data (Xi) with it when passing the i'"'"'th server the initialisation number (C0) together with the data (Xi) with the i'"'"'th server'"'"'s private key (PKSi) and computing therewith a new server specific checksum (Ci) using the public key (KS0) of the first server (S0) and the checksum (Ci−
1) computed by the server (Si−
1) right before in the succession, andsending the mobile agent further to the next server (Si+1) within the succession. - View Dependent Claims (2, 3, 4, 5, 6, 9, 10, 11)
-
-
7. A network system for providing a secure processing of an order by a mobile agent from a first server, the first server (S0) having a pair of a private key (PKS0) and a public key (KS0), and, for processing the order, the mobile agent being associated with a unique number (r0) encoded by said private key (PKS0), the network system further comprises a plurality of servers (S0, S1, . . . ,Sn), at least a number of which the mobile agent has to pass according to an appropriate succession for processing the order, wherein each of the plurality of servers (S0, S1, . . . ,Sn) has a pair of a public key (KS0, . . . ,KSi, . . . , KSn) and a private key (PKS0, . . . ,PKSi, . . . , PKSn) associated therewith, respectively, and is configured to encode the encoded unique number together with data the mobile agent intends to take with it when passing that server with the respective server'"'"'s private key and to compute therewith a new server specific checksum using the public key of the first server and the checksum computed by the server right before in the succession.
-
8. A mobile agent from a first server (S0) providing a secure processing of an order within a network system with a plurality of servers (S0, . . . ,Si, . . . ,Sn), at least a number of which the mobile agent has to pass according to an appropriate succession, wherein each of the plurality of servers (S0, . . . ,Si, . . . ,Sn) has a pair of a public key (KS0, . . . ,KSi, . . . ,KSn) and a private key (PKS0, . . . ,PKSi, . . . ,PKSn) associated therewith, respectively, and wherein the mobile agent gets, when starting processing the order, associated with a unique number (r0), which is encoded with the private key (PKS0) of the first server (S0) thus forming an agent specific initialisation number (C0) as basis for a sequence of checksums (C0, . . . ,Ci, . . . ,Cn) to be computed successively by the number of servers when being passed by the mobile agent on its route through the network system for processing the order, each checksum being further encoded by the public key (KS0) of the first server (S0).
Specification