System and method for implementing digital certificate revocation in an ad-hoc network
First Claim
1. A computer-implemented system for implementing maintenance and distribution of revocation information within an ad-hoc network, comprising:
- at least one network node configured to serve as a certifier node for the ad-hoc network, wherein the network node includes a computer implemented application configured to maintain revocation information in computer memory and distribute the revocation information to other network nodes using four types of revocation message, including individual revocation messages, incremental revocation messages, differential revocation messages, and cumulative revocation messages, wherein the at least one network node is further configured to determine whether a region of the ad-hoc network should be assigned another certifier node, and wherein the network node is configured to create a new certifier node and to establish a parent-child relationship between the network node and the new certifier node by updating the digital certificates of both the network node and the new certifier node to indicate the parent node status of the network node and the child node status of the new certifier node.
2 Assignments
0 Petitions
Accused Products
Abstract
A computer-implemented system for implementing maintenance and distribution of revocation information within an ad-hoc network. The system includes at least one network node. The network node includes a computer implemented application configured to maintain revocation information in computer memory and distribute the revocation information to other network nodes using a two stage distribution method. The distribution method includes a first stage wherein the revocation message is transmitted to all certifier nodes within the ad-hoc network, and a second stage wherein each certifier node distributes the revocation message to at least one non-certifier node associated with the certifier node.
-
Citations
20 Claims
-
1. A computer-implemented system for implementing maintenance and distribution of revocation information within an ad-hoc network, comprising:
at least one network node configured to serve as a certifier node for the ad-hoc network, wherein the network node includes a computer implemented application configured to maintain revocation information in computer memory and distribute the revocation information to other network nodes using four types of revocation message, including individual revocation messages, incremental revocation messages, differential revocation messages, and cumulative revocation messages, wherein the at least one network node is further configured to determine whether a region of the ad-hoc network should be assigned another certifier node, and wherein the network node is configured to create a new certifier node and to establish a parent-child relationship between the network node and the new certifier node by updating the digital certificates of both the network node and the new certifier node to indicate the parent node status of the network node and the child node status of the new certifier node. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
8. A computer-implemented system for implementing maintenance and distribution of revocation information within an ad-hoc network, comprising:
-
at least one network node configured to serve as a certifier node for the ad-hoc network, wherein the network node includes a computer implemented application configured to maintain revocation information in computer memory and distribute the revocation information to other network nodes using a two stage distribution method, the distribution method using three types of revocation message, including individual revocation messages, incremental revocation messages, and periodic attempt type of revocation messages, wherein the two stage distribution method includes a first stage wherein the revocation information is transmitted to all certifier nodes within the ad-hoc network, and a second stage wherein the network node distributes the revocation message to at least one non-certifier node associated with the network node, wherein node the network node stores a parent child relationship associated with a parent node of the network node, the parent node certifying the network node. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer implemented method for distribution of revocation information within an ad-hoc network, comprising:
-
receiving a revocation message at a first certifier node within the ad-hoc network, three types of revocation message, including individual revocation messages, incremental revocation messages, and periodic attempt type of revocation messages and distributing the received revocation message to at least one non-certifier node associated with the first certifier node, wherein the first certifier node is further configured to determine whether a region of the ad-hoc network should be assigned another certifier node, and wherein the network node is configured to create a new certifier node and to establish a parent-child relationship between the network node and the new certifier node by updating the digital certificates of both the network node and the new certifier node to indicate the parent node status of the network node and the child node status of the new certifier node. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification