In mobile ad hoc networks (MANETs), a single certificate authority (CA) node could be a security bottleneck. Multiple replica of CA is fault tolerant, but the network is as vulnerable as single CA or even worse since breaking one of the CAs means breaking all of them. Many distributed CA models based on the secret sharing scheme are proposed. In this paper, the suitable construction of the distributed CA is discussed based on the optimization theory. By the analyzing of the characters of the distributed CA in MANETs and the processes of the secure services provided, the optimization model is built. The mean response time of the applications is the optimization goal and the service success probability, system security probability and the loss probability of applications are the constraints in the optimization model. A classic resolving process of the optimization model is given, which is instructional for designing the construction of distributed CA applied in MANETs.
[1]
Yvo Desmedt,et al.
Threshold Cryptosystems
,
1989,
CRYPTO.
[2]
Rafail Ostrovsky,et al.
How To Withstand Mobile Virus Attacks
,
1991,
PODC 1991.
[3]
Liu Yun.
Research of the Distributed CA in Mobile Ad Hoc Network
,
2007
.
[4]
Robin Kravets,et al.
MOCA : MObile Certificate Authority for Wireless Ad Hoc Networks
,
2004
.
[5]
Rafail Ostrovsky,et al.
How to withstand mobile virus attacks (extended abstract)
,
1991,
PODC '91.
[6]
Zygmunt J. Haas,et al.
Securing ad hoc networks
,
1999,
IEEE Netw..
[7]
M. Luise.
European Transactions on Telecommunications
,
2003
.