Certificate Validation towards Efficient Trust Establishment in Mobile Ad Hoc Networks

This thesis studies trust establishment in wireless, ad hoc networks. ADOPT is presented, a complete scheme for certificate validation in wireless, ad hoc networks. Its architecture is based on a distributed version of OCSP and more specifically on OCSP response caching in carefully selected nodes of the network. The method for locating cached OCSP response is thoroughly analyzed, along with techniques for caching optimization and especially efficient methods for choosing caching nodes as well as cache update and deletion policies. ADOPT is evaluated regarding its efficiency through carefully selected simulation scenarios. Moreover, the ADOPT scheme is adjusted in order to function efficiently in vehicular ad hoc networks. Simulation studies were performed to evaluate ADOPT in such an environment. In order to improve ADOPT’s robustness and resilience to possible attacks, it is combined with a trust establishment scheme, namely ATF. Simulation tests prove that trust integration in ADOPT not only increases the security of the scheme but also its overall performance. Finally, ADOPT is compared with other, similar certificate validation schemes for wireless, ad hoc networks. Emphasis is given on its optimal performance concerning the rapid location of fresh certificate status information and the reduced overhead introduced to both the network and its nodes