How can I prevent from abusing by over clicking my ads…or using an automated system, or an iframe with the ad url to inflate the clicks.

I was wondering having the following in place but I was wondering what more can I add and how.

1). Encrypt each ad id and bind the encryption with time, so if the click is within a time limit then approve the click. However there are about 20 ads placeholders shown on some websites at once, so the encryption may be slowed down. Also what sort of encryption can I use? something that can be decrypted or validated within the time limit of the generation of the encrypted link. Also the encryption needs to be very fast. decryption can be a bit slower.
For every request there need to be about 20 encryptions on average and there are about 1000 peak requests per second so you can get the picture.

2). Having cookies generated by JavaScript and which means that the ad must have most likely been seen and then clicked on. However the frauds may open the ads in an iframe and then open a link to the ad randomly, which will the clicks look authentic. So are there any improvements that can be made here?

3)Another one was to make sure that if the ad link was opened in an iframe then use the iframe breaking script.

4) Any other suggestions…You can also say the methods used by the advertisers such as adsense but please only keep them relevant to the scale of my situation as it is not even 1% of that of the adsense.
I am using a php/mysql/javscript/ajax/json based system.