In PKI (Public Key Infrastructure), certificate revocation list (CRL) carries important information of the revoked certificates. Users need to check with this CRL frequently to make sure that the certificate in consideration is still valid and has not been revoked. In a wired network, this CRL is stored in a centralized Certificate Authority (CA) and can be accessed easily by users. However, in a mobile ad hoc network (MANET), which is characterized by its lack of infrastructure support, high node mobility, and the instability of communication links, we usually have to use multiple CAs. Users may not be able to connect to a particular CA, so distributing the latest version of CRL to all CAs becomes important. To solve this CRL distribution problem, a number of proposed solutions have been suggested. Most of these solutions are based on flooding. However, under what conditions flooding is a viable approach to distribute information in an ad hoc network has not been elaborated. In this paper, we take the first step to answer this question by simulation based on a realistic model. We identify some critical factors affecting the performance of flooding. And based on the simulation results, we provide useful insights on the minimum requirement for flooding to work smoothly in MANET.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Amit Jardosh , Elizabeth M. Belding-Royer , Kevin C. Almeroth , Subhash Suri, Towards realistic mobility models for mobile ad hoc networks, Proceedings of the 9th annual international conference on Mobile computing and networking, September 14-19, 2003, San Diego, CA, USA  [doi>10.1145/938985.939008]
	2	Josh Broch , David A. Maltz , David B. Johnson , Yih-Chun Hu , Jorjeta Jetcheva, A performance comparison of multi-hop wireless ad hoc network routing protocols, Proceedings of the 4th annual ACM/IEEE international conference on Mobile computing and networking, p.85-97, October 25-30, 1998, Dallas, Texas, United States  [doi>10.1145/288235.288256]
	3	Srdjan Capkun , Levente Buttyán , Jean-Pierre Hubaux, Self-Organized Public-Key Management for Mobile Ad Hoc Networks, IEEE Transactions on Mobile Computing, v.2 n.1, p.52-64, January 2003  [doi>10.1109/TMC.2003.1195151]
	4	Claude Crépeau , Carlton R. Davis, A certificate revocation scheme for wireless ad hoc networks, Proceedings of the 1st ACM workshop on Security of ad hoc and sensor networks, October 31, 2003, Fairfax, Virginia  [doi>10.1145/986858.986866]
	5	R. Gennaro S. Jarecki, H. Krawczyk, and T. Rabin. Robust Threshold DSS Signatures. In Proceedings of Eurocrypt'96, p.354--371, 1996.
	6	Java 2 Platform, Standard Edition, v.1.4.2 (J2SE).
	7	Paul C. Kocher, On Certificate Revocation and Validation, Proceedings of the Second International Conference on Financial Cryptography, p.172-177, February 23-25, 1998
	8	Providing Robust and Ubiquitous Security Support for Mobile Ad Hoc Networks, Proceedings of the Ninth International Conference on Network Protocols, p.251, November 11-14, 2001
	9	Haiyun Luo , Petros Zerfos , Jiejun Kong , Songwu Lu , Lixia Zhang, Self-Securing Ad Hoc Wireless Networks, Proceedings of the Seventh International Symposium on Computers and Communications (ISCC'02), p.567, July 01-04, 2002
	10	S. Micali, Efficient Certificate Revocation, Massachusetts Institute of Technology, Cambridge, MA, 1996
	11	Matei Ciobanu Morogan , Sead Muftic, Certificate Management in Ad Hoc Networks, Proceedings of the 2003 Symposium on Applications and the Internet Workshops (SAINT'03 Workshops), p.337, January 27-31, 2003
	12	Maithili Narasimha , Gene Tsudik , Jeong Hyun Yi, On the Utility of Distributed Cryptography in P2P and MANETs: The Case of Membership Control, Proceedings of the 11th IEEE International Conference on Network Protocols, p.336, November 04-07, 2003
	13	R. L. Rivest , A. Shamir , L. Adleman, A method for obtaining digital signatures and public-key cryptosystems, Communications of the ACM, v.21 n.2, p.120-126, Feb. 1978  [doi>10.1145/359340.359342]
	14	E. M. Royer, P. M. Melliar-Smith, and L. E. Moser. An An Analysis of the Optimum Node Density for Ad Hoc Mobile Networks. In Proceedings of the IEE International Conference on Communications, p.857--861, 2001.
	15	Adi Shamir, How to share a secret, Communications of the ACM, v.22 n.11, p.612-613, Nov. 1979  [doi>10.1145/359168.359176]
	16	X.509 Internet Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile. RFC 3208, April 2002.
	17	X.509 Internet Public Key Infrastructure Online Certificate Status Protocol -- OCSP. RFC 2560, June, 99
	18	S. Yi and R. Kravets. MOCA: Mobile Certificate Authority for Wireless Ad Hoc Networks. In Proceedings of PKI '03, 2003.
	19	L. Zhou and Z. J. Haas. Securing Ad Hoc Networks. IEEE Network, 13(6):24--30, 1999.
	20	Philip R. Zimmermann, The official PGP user's guide, MIT Press, Cambridge, MA, 1995