摘要： 分析Ad Hoc网络中一些证书撤销方案的优缺点，提出一种新的分布式证书撤销方案，节点证书的有效性由节点的权值控制，使用单向哈希链认证控诉消息，利用自恢复区域方法广播控诉消息。不依赖于任何集中式或外部节点即可有效地撤销恶意节点的证书、防止合法节点证书的误撤销。定量分析了方案的可靠性。

关键词: Ad Hoc网络, 证书撤销, 哈希链, 认证, 自恢复区域, 可信度

Abstract: This paper analyzes advantages and drawbacks of some certificate revocation schemes in Ad Hoc network, presents a new distributed certificate revocation scheme, in which the certificate validity is controlled by the creditability of the nodes and uses one-way hash chain to authenticate revocation info, and self-healing communities to disseminate the accusation info via broadcast. The scheme does not rely on any centralized or external node, and it can effectively revoke the certificates of adversarial nodes and provide protection against certificates being wrongfully revoked. It analyzes quantitatively the reliability of the scheme.

Key words: Ad Hoc network, certificate revocation, Hash chain, authentication, self-healing community, creditability

中图分类号: 

• TP393