TY - GEN
T1 - The buck stops here
T2 - 2004 IEEE 1st Symposium on Multi-Agent Security and Survivability
AU - Khan, Bilal
AU - Kleiner, Dardo D.
AU - Talmage, David
PY - 2004
Y1 - 2004
N2 - Much of security in multi-agent systems is based on models where each agent declares limits on what other agents are permitted to receive. Traditional systems are engineered to operate without violating their agents ' cumulative declared constraints. In contrast, here we consider a trust model that is suited for use by ensembles of closely coupled agents operating in a system supporting agent accountability using audit trails for information flows. In such systems, an agent does not require enforcement of absolute limits on the what other agents receive, but instead seeks assurance that its personal liabilities will never exceed its declared risk tolerance. In short, each agent expects the system to behave in a manner which respects its declared accountability constraints -quantitative limits on what the agent agrees to be held accountable for sending. This paper outlines a suite of protocols with which a multi-agent system can fulfill the cumulative accountability constraints of its constituent agents, and avoid subjecting any individual agent to greater liability than its declared risk tolerance. The protocols are shown to be efficient in a dynamic network setting, and are analyzed under a comprehensive set of failure models including link delay, link failure, and limited corruption in the control and data processing logic of agents.
AB - Much of security in multi-agent systems is based on models where each agent declares limits on what other agents are permitted to receive. Traditional systems are engineered to operate without violating their agents ' cumulative declared constraints. In contrast, here we consider a trust model that is suited for use by ensembles of closely coupled agents operating in a system supporting agent accountability using audit trails for information flows. In such systems, an agent does not require enforcement of absolute limits on the what other agents receive, but instead seeks assurance that its personal liabilities will never exceed its declared risk tolerance. In short, each agent expects the system to behave in a manner which respects its declared accountability constraints -quantitative limits on what the agent agrees to be held accountable for sending. This paper outlines a suite of protocols with which a multi-agent system can fulfill the cumulative accountability constraints of its constituent agents, and avoid subjecting any individual agent to greater liability than its declared risk tolerance. The protocols are shown to be efficient in a dynamic network setting, and are analyzed under a comprehensive set of failure models including link delay, link failure, and limited corruption in the control and data processing logic of agents.
UR - http://www.scopus.com/inward/record.url?scp=17644415041&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=17644415041&partnerID=8YFLogxK
M3 - Conference contribution
AN - SCOPUS:17644415041
SN - 0780387996
SN - 9780780387997
T3 - 2004 IEEE 1st Symposium on Multi-Agent Security and Survivability
SP - 46
EP - 54
BT - 2004 IEEE 1st Symposium on Multi-Agent Security and Survivability
Y2 - 30 August 2004 through 31 August 2004
ER -