Title:
|
A DISTRIBUTED OCSP FRAMEWORK FOR AD-HOC NETWORKS |
Author(s):
|
Giannis F. Marias , Konstantinos Papapanagiotou , Panagiotis Georgiadis |
ISBN:
|
972-99353-6-X |
Editors:
|
Nuno Guimarães and Pedro Isaías |
Year:
|
2005 |
Edition:
|
1 |
Keywords:
|
MANET, certificates, revocation, OCSP . |
Type:
|
Full Paper |
First Page:
|
105 |
Last Page:
|
112 |
Language:
|
English |
Cover:
|
|
Full Contents:
|
click to dowload
|
Paper Abstract:
|
Many solutions for establishing trust in mobile ad hoc networks (MANETs) involve public key cryptography. Most of these solutions, including proposals for routing protocols, suggest the deployment of public key certificates. An efficient mechanism for certificate revocation and validation is essential in every system that uses certificates. Consequently, such a scheme is required for MANETs, too. However, their infrastructure-less nature poses additional issues which are not apparent in traditional networking. In this paper, we propose an on-demand, distributed scheme based on Online Certificate Status Protocol (OCSP). This scheme, called Ad-hoc Distributed OCSP for Trust (ADOPT), utilises cached OCSP responses which are distributed and stored on intermediate nodes. Our main goal is to avoid exchanging large certificate status lists among the ad hoc nodes, avoiding needless consumption of scarce bandwidth and the energy of autonomous nodes. We also discuss alternative design approaches concerning the distribution of cached OCSP responses, to maximize the efficiency of ADOPT, taking into account network connectivity and topology. |
|
|
|
|