Journal
WIRELESS PERSONAL COMMUNICATIONS
Volume 82, Issue 1, Pages 377-400Publisher
SPRINGER
DOI: 10.1007/s11277-014-2213-1
Keywords
Security; PKI; ADOPT; Cache; Overheads
Categories
Ask authors/readers for more resources
Certificate status validation is one of the main operations conducted in all PKI-based security systems to ensure the validity of digital certificates. In this paper, a new certificate validation scheme is proposed which adjusts the OCSP responses validity period according to the trust level of certificate authority on the certificate owner. As a result, the OCSP responses validity period of more trusted nodes are increased while the less ones' are decreased. On the client side, the OCSP responses validity period can be used to tune the certificate status information (CSI) caching period which has direct effect on the overheads and freshness of CSI in MANET. Our proposed solution improves the availability of CSI for more trusted nodes and better isolates the malicious ones. Extensive simulation results indicate that our solution efficiently reduces the CSI inconsistency problem and mitigates the overheads of certificate status validations in MANET.
Authors
I am an author on this paper
Click your name to claim this paper and add it to your profile.
Reviews
Recommended
No Data Available