标题:A High-Performance Distributed Certificate Revocation Scheme for Mobile Ad Hoc Networks
作者:Guo, Chongxian; Xu, Huaqiang; Ju, Lei; Jia, Zhiping; Xu, Jihai
通讯作者:Jia, ZP
作者机构:[Guo, Chongxian; Xu, Huaqiang; Ju, Lei; Jia, Zhiping] Shandong Univ, Sch Comp Sci & Technol, Jinan, Peoples R China.; [Xu, Jihai] Xi An Jiao Tong Un 更多
会议名称:13th IEEE International Conference on Trust Security and Privacy in Computing and Communications (TrustCom)
会议日期:SEP 24-26, 2014
来源:2014 IEEE 13TH INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS (TRUSTCOM)
出版年:2014
页码:156-163
DOI:10.1109/TrustCom.2014.136
关键词:mobile ad hoc networks (MANETs); certificate revocation; trust;; accusation function
摘要:Mobile ad hoc networks (MANETs) are wireless networks which have a wide range applications due to their dynamic topologies and easy to deployment. However, such networks are also more vulnerable to attacks compared with traditional wireless networks. Certificate revocation is an effective mechanism for providing network security services. Existing schemes are not well suited for MANETs because of incurring much overhead or bring low accuracy on certificate revocation. Therefore, we propose a high-performance distributed certificate revocation scheme in which certificates of malicious nodes will be revoked quickly and accurately. Certificate revocation is the result of the collaborative effect of multiple accusations. For diluting damages to networks, one accusation is enough to limit the accusation function of the accused node. To enhance the accuracy of certificate revocation, our scheme requires nodes just accepting those accusations in which trust levels of accuser nodes are not less than accused nodes'. To guarantee the rapidity, we restore accusation functions of the falsely accused nodes after revoking certificates of all malicious nodes who ever accused them. Moreover, we design one mechanism to reward nodes who ever accused those malicious nodes, and in return, accusations made by them will accelerate the certificate revocation processes of other malicious nodes. Simulation results demonstrate the effectiveness and efficiency of our scheme in certificate revocation. In addition, our scheme achieves a great improvement of just limiting accusation functions of malicious nodes.
收录类别:CPCI-S
资源类型:会议论文
TOP