• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文学位 >Collaborative caching for efficient and robust certificate authority services in mobile ad-hoc networks.
【24h】

Collaborative caching for efficient and robust certificate authority services in mobile ad-hoc networks.

机译:协作缓存,可在移动自组织网络中提供高效,强大的证书颁发机构服务。

获取原文
获取原文并翻译 | 示例
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Security in Mobile Ad-Hoc Network (MANET) is getting a lot of attention due to its inherent vulnerability to a wide spectrum of attacks. Threats exist in every layer of MANET stack, and different solutions have been adapted for each security problem. Additionally, availability is an important criterion in most MANET solutions, but many security frameworks did not consider it. Public-Key Infrastructure (PKI) is no exception, and its deployment in MANET needs major design and implementation modifications that can fit constraints unique to this environment. Our focus in this dissertation is to adapt and increase the availability of Certificate Authority (CA) services, as a major PKI entity, in MANET.; Several attempts have been proposed to deal with the problem of deploying CA in MANET to provide a generic public-key framework, but each either ends up sacrificing system security or availability. Here, the main goal of our work is to provide a solution that addresses performance and security issues of providing MANET-based PKI. Particularly, we would like to maintain the availability of the services provided by CA while keeping the network's packet overhead as low as possible.; In this dissertation, we present a MANET-based framework suitable for exchanging public-key certificates by collaborative caching between MANET clients. We show that our system can meet the challenges of providing robust and secure CA services in MANET. Augmented by simulation results, we demonstrate quantitatively the feasibility of our work as we were able to reduce network overhead associated with threshold based CA queries up to 92% as compared to related work in addition to having a very short response time. The dependency on CA servers has been reduced, and the system was able to tolerate as much as two-third inoperative CA servers without noticeable decrease in the service performance.
机译:移动自组织网络(MANET)的安全性因其固有的易受各种攻击的攻击而备受关注。 MANET堆栈的每一层都存在威胁,因此针对每个安全问题都采用了不同的解决方案。此外,可用性是大多数MANET解决方案中的重要标准,但是许多安全框架并未考虑可用性。公钥基础结构(PKI)也不例外,并且其在MANET中的部署需要进行重大的设计和实现修改,以适应该环境独特的约束。本文的重点是适应和增加作为MANET中主要PKI实体的证书颁发机构(CA)服务的可用性。已经提出了几种尝试来解决在MANET中部署CA以提供通用公钥框架的问题,但是每种尝试最终都会牺牲系统的安全性或可用性。在这里,我们工作的主要目标是提供一个解决方案,以解决基于MANET的PKI的性能和安全性问题。特别是,我们希望保持CA提供的服务的可用性,同时将网络的数据包开销保持在尽可能低的水平。在本文中,我们提出了一种基于MANET的框架,该框架适合通过MANET客户端之间的协作缓存来交换公钥证书。我们证明了我们的系统可以应对在MANET中提供强大而安全的CA服务的挑战。通过仿真结果的增强,我们定量地证明了我们工作的可行性,因为与响应工作相比,除了具有非常短的响应时间之外,我们还可以将与基于阈值的CA查询相关联的网络开销减少多达92%。减少了对CA服务器的依赖性,并且系统能够忍受多达三分之二的不运行的CA服务器,而服务性能没有明显下降。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号