Abstract: The advantages and drawbacks of some existed certificate revocation notification schemes in Ad Hoc network are analyzed, and a certificate revocation notification scheme based on subscription is proposed. When the node’s certificate state changes, the latest state of the certificate will be actively informed to all nodes which subscribe this certificate state in time. The identification of subscription and certificate state notification messages is implemented by using one-way Hash chain, and these messages are diffused with self-healing community method. Moreover, this scheme is realized by Jini technique. Experimental results show this scheme is effective.

Key words: Ad Hoc network, certificate revocation, subscription, self-healing community, Hash chain

摘要： 分析Ad Hoc网络中证书撤销通知方案的优缺点，提出一种基于预约的证书撤销通知方案。当节点的证书状态发生变化时能主动及时地把证书的最新状态通知给预约该证书状态的所有节点，通过单向哈希链实现预约及证书状态通知消息的认证，同时利用自恢复区域方法传播预约及证书状态通知消息，并运用Jini技术实现该方案。实验结果表明，该方案是有效的。

关键词: Ad Hoc网络, 证书撤销, 预约, 自恢复区域, 哈希链

CLC Number: 

• TP393