http://swrc.ontoware.org/ontology#Article
New Certificate Chain Discovery Methods for Trust Establishment in Ad Hoc Networks and Their Evaluation
en
特集：次世代社会基盤をもたらす高度交通システムとモバイル通信システム
Graduate School of Information Science Nara Institute of Science and Technology
Graduate School of Information Science Nara Institute of Science and Technology Presently with Murata Manufacturing Company Ltd.
Graduate School of Information Science N
Hisashi Mohri
Ikuya Yasuda
Yoshiaki Takata
Hiroyuki Seki
In an ad hoc network we cannot assume a trusted certificate authority and a centralized repository that are used in ordinary Public-Key Infrastructure (PKI). Hence a PKI system of the web-of-trust type in which each node can issue certificates to others in a self-organizing manner has been studied. Although this system is useful for ad hoc networks it has the problem that for authentication a node needs to find a certificate-chain to the destination node. In this paper we formally model a web-of-trust-type PKI system define the certificate-chain discovery problem and propose a new distributed algorithm and its modification that solve the problem. Furthermore we propose a measure of communication cost and according to the measure we compare our algorithm with an existing method by numerical computation for large-size networks and by simulation on randomly generated unit disk graphs for moderatesize networks. The simulation results show that the communication cost of the proposed method is less than 10% of the existing method.
In an ad hoc network, we cannot assume a trusted certificate authority and a centralized repository that are used in ordinary Public-Key Infrastructure (PKI). Hence a PKI system of the web-of-trust type in which each node can issue certificates to others in a self-organizing manner has been studied. Although this system is useful for ad hoc networks, it has the problem that for authentication a node needs to find a certificate-chain to the destination node. In this paper, we formally model a web-of-trust-type PKI system, define the certificate-chain discovery problem, and propose a new distributed algorithm and its modification that solve the problem. Furthermore, we propose a measure of communication cost, and according to the measure, we compare our algorithm with an existing method by numerical computation for large-size networks and by simulation on randomly generated unit disk graphs for moderatesize networks. The simulation results show that the communication cost of the proposed method is less than 10% of the existing method.
AN00116647
情報処理学会論文誌
49
1
362-374
2008-01-15
1882-7764