Research Article
Caching alternatives for a MANET-oriented OCSP scheme
@INPROCEEDINGS{10.1109/SECCMW.2005.1588315, author={Giannis F. Marias and P. Georgiadis and Konstantinos Papapanagiotou }, title={Caching alternatives for a MANET-oriented OCSP scheme}, proceedings={1st International ICST Workshop on Security and QoS in Communication Networks}, publisher={IEEE}, proceedings_a={SECQOS}, year={2006}, month={2}, keywords={}, doi={10.1109/SECCMW.2005.1588315} }- Giannis F. Marias
P. Georgiadis
Konstantinos Papapanagiotou
Year: 2006
Caching alternatives for a MANET-oriented OCSP scheme
SECQOS
IEEE
DOI: 10.1109/SECCMW.2005.1588315
Abstract
Even though mobile ad hoc networks (MANETs) have been receiving increasing attention for more than a decade, many issues still remain unsolved, including the implementation and design of adequate security and trust mechanisms. The infrastructure-less nature of MANETs renders trust establishment a rather complex issue. Many solutions using public key cryptography and digital certificates have been proposed in this direction. However, the problem of certificate revocation and certificate status information distribution in MANETs has not yet been fully addressed. ADOPT (Ad-hoc Distributed OCSP for Trust) proposes the deployment of a lightweight, distributed, on-demand scheme based on cached OCSP responses, which can efficiently provide up-to-date certificate status information. As accurate and current revocation information is critical for any application based on public key certificates, ADOPT's caching mechanism should ensure that cached responses are updated regularly. This paper discusses caching issues and time parameters concerning ADOPT and proposes various alternatives that fit into different scenarios.