In this paper, we propose to used agent-based implementation as an
open standard as PKI. Comparing with traditional PKI
implementation, the security agent makes the construction of scalable
authentication system much more
feasible by employing the security agents in a bottom up fashion,
it also makes interoperation of multi-certificate authentication
system possible and can relieve the workload for certificate users.
For the future work, we would like to study the construction and
specification of security
policy, as well as increase the robustness of security agent to be
against different kinds of attacks.