| Type of Document |
Dissertation |
| Author |
Hadjichristofi, George Costa
|
| URN |
etd-07192005-123426 |
| Title |
A Framework for Providing Redundancy and Robustness in Key Management for IPsec Security Associations in a Mobile Ad-Hoc Environment |
| Degree |
PhD |
| Department |
Electrical and Computer Engineering |
| Advisory Committee |
| Advisor Name |
Title |
| Dr. Nathaniel J. Davis, IV, |
Committee Chair |
| Dr. Ezra A. Brown |
Committee Member |
| Dr. Ira Jacobs |
Committee Member |
| Dr. Luiz A. DaSilva |
Committee Member |
| Dr. Scott F. Midkiff |
Committee Member |
|
| Keywords |
- MANET
- Key Management
- IP Security
- Performance
|
| Date of Defense |
2005-06-28 |
| Availability |
unrestricted |
Abstract
This research investigated key management in a Mobile Ad Hoc Network (MANET) environment. At the time this research began key management schemes provided limited functionality and low service availability in a highly partitioned ad hoc environment. The purpose of this research was to develop a framework that provides redundancy and robustness for Security Association (SA) establishment between pairs of nodes.
The key contribution of this research is the Key Management System (KMS) framework and, more specifically, the unique way the various components are integrated to provide the various functionalities. The KMS overcomes the limitations of previous systems by (1) minimizing pre-configuration, (2) increasing service availability, (3) and increasing flexibility for new nodes joining the network. A behavior grading scheme provides the network with a system-wide view of the trustworthiness of nodes and enables the KMS to dynamically adjust its configuration according to its environment. The introduction of behavior grading allows nodes to be less dependent on strict identity verification. This KMS was simulated with Monte Carlo and NS2 simulations and was shown to interoperate with IP Security (IPsec) to enable the establishment of IPsec SAs. The simulations have proven the effectiveness of the system in providing service to the nodes in a highly partitioned environment.
|
| Files |
| Filename |
Size |
Approximate Download Time
(Hours:Minutes:Seconds)
|
| 28.8 Modem |
56K Modem |
ISDN (64 Kb) |
ISDN (128 Kb) |
Higher-speed Access |
| |
ghadjich_dissert_September2005.pdf |
1.05 Mb |
00:04:52 |
00:02:30 |
00:02:11 |
00:01:05 |
00:00:05 |
|
