Geographic server distribution model for key revocation

Misra, Sudip; Goswami, Sumit; Pathak, Gyan Prakash; Shah, Nirav; Woungang, Isaac

doi:10.1007/s11235-009-9254-x

Cited by 6 publications

(13 citation statements)

References 31 publications

(26 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The scheme of geographical server distribution model for key revocation 45 presents a concept which is more reliable, faster, and scalable than the existing PKI framework in various countries, as it provides optimization of key authentication in a network. It proposes auto‐seeking of a geographically distributed certifying authority's key revocation server, which holds the revocation lists by the client, based on the best service availability.…”

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

“…In this paper, we have attempted to address almost all those issues for a MANET in PKI, the equivalent issues of which 45, 47 has been stated for a wired network. However, the scheme stated in Reference 45, 47 has to be entirely revamped and redone for MANETs as the behavior and characteristics of wired networks and MANETs are different and thus, those scheme and protocols designed for wired networks cannot be used effectively for MANET. The major differences are listed below: In Reference 45, 47, the authors described a SAZ with multiple Certifying Authority's Key Revocation Server (CAKRS), which is not possible in MANET as each MAKeRS will form its own ZoNA and it is not possible to have more than one MAKeRS in a single ZoNA. In a wired network, we are more concerned about communication delays, message broadcast, and bandwidth consumption, but in MANET, along with communication delay, we are also concerned about the communication overheads and the power consumption. In general, CAKRS is considered to be static in Reference 45, 47 and the other nodes may change places, but in this proposed paper, MAKeRS and the nodes are mobile. In Reference 45, 47 any CAKRS could communicate with the CA server for CRL updating, but in this work, MAKeRS has to update its CRL through the Sink MAKeRS which is the only node connected to the Internet. In Reference 45, 47 the routers were present for packet forwarding and advertising the information of CAKRS(es) as a new option with SAZ option through the router query message (RQM).…”

Section: Related Workmentioning

confidence: 99%

See 2 more Smart Citations

Efficient detection of public key infrastructure‐based revoked keys in mobile ad hoc networks

Misra¹,

Goswami²,

Pathak³

et al. 2011

Wireless Communications

Self Cite

View full text Add to dashboard Cite

Key revocation involves secure and efficient managing of the information about compromised keys. Spreading the information of revoked keys to the receivers of the key is a challenging task in public key infrastructure (PKI). PKI is more suitable for wired Internet infrastructure and lacks any tailor‐made protocols for extension over an ad hoc network. The paper presents a Mobile Ad hoc Key Revocation Server (MAKeRS) scheme which proposes to improve the performance and reliability of the system. Simulation shows that the concept presented in the paper is more reliable, faster, and scalable than the existing usage of PKI over Ad hoc networks. It proposes auto‐creation of zone of network availability (ZoNA) by each MAKeRS, which holds the revocation list and is the best service provider in its zone. A node automatically updates the identity of the key revocation server when it enters a new ZoNA. Each node maintains a list of identities of the key revocation servers sorted in order of their communication overhead. This list is regularly updated based on the broadcast from the servers and also gets modified based on the mobility of nodes and servers. The various scenarios of mobility of nodes and servers are considered and the scheme is designed to suit such scenarios in an optimum way. It reduces the time to gain information about the revocation list and ensures availability and, thus, improvement of the system as a whole. Hence, the proposed system results in scalable, reliable, and faster PKI infrastructure and will be attractive for the mobile Ad hoc network (MANET) users who frequently connect to the Internet for secured transactions. We discuss the architecture as well as the performance of our scheme compared to the popular existing scheme. However, our scheme does not call for the entire change in PKI, but is compatible with the existing scheme. Our simulations show that the proposed scheme is better for key revocation. Copyright © 2009 John Wiley & Sons, Ltd.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Efficient detection of public key infrastructure‐based revoked keys in mobile ad hoc networks

Misra¹,

Goswami²,

Pathak³

et al. 2011

Wireless Communications

Self Cite

View full text Add to dashboard Cite

show abstract

“…Several keying schemes have been proposed by researchers [9]- [11] but our focus in this paper is on the public key infrastructure (PKI). We restrict ourselves to the PKI scenarios of countries like India and Europe [12] in which the digital signatures and private keys are allocated by a central authority and bind the user by law to his actions, making it equivalent to the real world signatures (Information Technology [IT] Act, 2000 of India) [13]. In such a scenario, the sensor nodes being deployed in a network would have their own public-private key pair pre-allocated by the root certifying authority (RCA) and would be used by nodes to digitally sign the communication with other nodes leading to non-repudiation and integrity of information.…”

Section: Introductionmentioning

confidence: 99%

A PKI Adapted Model for Secure Information Dissemination in Industrial Control and Automation 6LoWPANs

et al. 2015

Self Cite

View full text Add to dashboard Cite

Wireless sensor nodes have a wide span of applications ranging from industrial monitoring to military operations. These nodes are highly constrained in terms of battery life, processing capabilities, and in-built memory. Industrial wireless sensor networks (IWSNs) have to meet the constraints and peculiarities of industrial environments to ensure synchronization with parallel production processes. Applications of WSNs in industrial communication vary from condition monitoring and sensing to process automation. The 6LoWPAN standard enables efficient utilization of IPv6 protocol over low-power wireless personal area networks (LoWPANs). The use of 6LoWPANs for industrial communication necessitates the fulfillment of special QoS and security. We examine the aspect of secured information dissemination for industrial control and automation processes in this paper. Researchers have proposed several schemes to secure transfer of data over the Internet. Public key infrastructure (PKI) is one of the most popular security schemes being used in the present scenario. The hostile deployment scenarios of 6LoWPANs and resource constraints of the nodes necessitate the presence of a robust security mechanism to safeguard the communication. In this paper, we propose an integration scheme for PKI and 6LoWPAN to meet the enhanced security needs of industrial communication. The approach is to delegate a major portion of key management activity to the edge routers (gateway) of the LoWPAN and limit the involvement of the end nodes to minimal communication with the edge router. We do not propose a change in the current PKI, but we put forth a scheme to facilitate the integration of PKI to 6LoWPAN in an efficient manner. The effectiveness of the proposed algorithm was evaluated using a protocol analyzer for normal 6LoWPAN traffic as well as HUI HC-01 compressed traffic. A marginal increase of 2% in channel utilization was observed, which scaled down to 1% using HUI HC-01 compression. The results indicated that the proposed algorithm can be implemented for industrial control and automation networks without any speed, security, or performance tradeoffs. INDEX TERMSPublic key infrastructure, secured communication in sensor network, 6LoWPAN, intra-node communication, protocol analyzer.

show abstract

“…Introducing security mechanisms generally involves introducing cryptographic methods, which require high memory usage and power consumption in processing and communication. Many researchers have already proposed many security measures and most of them involve cryptographic methods and techniques [1,[3][4][5][6][7][8][9][10][11][12][35][36][37][38].…”

Section: Introductionmentioning

confidence: 99%

Reputation-based role assignment for role-based access control in wireless sensor networks

Misra

Vaish

2011

Computer Communications

Self Cite

View full text Add to dashboard Cite

Geographic server distribution model for key revocation

Cited by 6 publications

References 31 publications

Efficient detection of public key infrastructure‐based revoked keys in mobile ad hoc networks

Efficient detection of public key infrastructure‐based revoked keys in mobile ad hoc networks

A PKI Adapted Model for Secure Information Dissemination in Industrial Control and Automation 6LoWPANs

Reputation-based role assignment for role-based access control in wireless sensor networks

Contact Info

Product

Resources

About