The need for certificate management in mobile ad hoc networks (MANET) is the background for this report. A prototype implementation of a distributed certificate validation service is presented and evaluated. The proposed design is based on an overlay network of proxy nodes offering certificate validation over the XKMS protocol. The proxy nodes employ cooperative caching in order to offer certificate validation even when the central validation authority is out of reach. The cache will also contribute to lower network traffic in the area around the validation authority. The conclusion from the experimental evaluation shows that the availability of the validation service does increase as a result of the overlay proxy network, but is quite dependent on the mobility scenario in use. The observed traffic around the validation authority is reduced with a considerable margin. (root VA).
[1]
Tracy Camp,et al.
A survey of mobility models for ad hoc network research
,
2002,
Wirel. Commun. Mob. Comput..
[2]
Albert-László Barabási,et al.
Linked - how everything is connected to everything else and what it means for business, science, and everyday life
,
2003
.
[3]
E. Winjum,et al.
Certificate validation in military MANET based on overlay network of XKMS proxies
,
2008,
MILCOM 2008 - 2008 IEEE Military Communications Conference.
[4]
David Cooper,et al.
Server-Based Certificate Validation Protocol (SCVP)
,
2007,
RFC.
[5]
Anders Fongen.
XML Based Certificate Management
,
2008
.