[1] Zhang Yong, Zhang Yi, Wang Weinong,. A new group key management schemebased on keys tree, XOR operation and one-way function [J]. Journal of Southeast University (English Edition), 2006, 22 (1): 54-58. [doi:10.3969/j.issn.1003-7985.2006.01.012]
Copy
A new group key management schemebased on keys tree, XOR operation and one-way function(
)
一种新的基于密钥树、XOR操作及单向函数的组密钥管理方案
)Journal of Southeast University (English Edition)[ISSN:1003-7985/CN:32-1325/N]
- Volumn:
- 22
- Issue:
- 2006 1
- Page:
- 54-58
- Research Field:
- Computer Science and Engineering
- Publishing date:
- 2006-03-20
Info
- Title:
- A new group key management schemebased on keys tree, XOR operation and one-way function
- 一种新的基于密钥树、XOR操作及单向函数的组密钥管理方案
- Author(s):
- Zhang Yong; Zhang Yi; Wang Weinong
- Network and Information Center, Shanghai Jiaotong University, Shanghai 200030, China
- PACS:
- TP393.08
- DOI:
- 10.3969/j.issn.1003-7985.2006.01.012
- Abstract:
- By introducing XOR operation and one-way function chains to group key management schemes based on the keys tree, a new group key management scheme based on the keys tree, XOR operation and one-way function chains is proposed.Initialization, member adding and member evicting operations are introduced.The new scheme is compared with three other group key management schemes which are based on the keys tree:SKDC, LKH, and OFT.As far as transmission, computation and storage costs are concerned, the performance of the new group key management scheme is the best.The security problem of the new scheme is analyzed.This new scheme provides backward and forward security, i.e., newly admitted group members cannot read previous multicast messages and evicted members cannot read future multicast messages, even with collusion by many arbitrarily evicted members.
- 在基于密钥树的组密钥管理方案中引入了XOR操作以及单向函数链, 提出了一种新的基于密钥树、XOR操作以及单向函数链的组密钥管理方案, 介绍了新方案中初始化、成员加入以及成员退出的操作, 将新方案与3种基于密钥树的组密钥管理方案SKDC, LKH, OFT进行了比较, 数据表明:就传输、计算以及存储开销而言, 新的组密钥管理方案性能最优.分析了新方案的安全性问题, 该方案能保证前向以及后向安全性:新加入的组成员不能获得以前的组播报文, 而且即使任意多个退出组播组的组成员进行合谋也不能获得以后的组播报文.
References:
[1] Moyer Matthew J, Rao Josyula R, Rohatgi Pankaj.A survey of security issues in multicast communications[J].IEEE Network, 1999, 13(6):12-23.
[2] Judge Paul, Ammar Mostafa.Gothic:a group access control architecture for secure multicast and anycast[C]//IEEE Information and Communications Conference.New York, 2002: 1547-1556.
[3] Stein M, Tsudik G, Waidner M.Key agreement in dynamic peer groups [J].IEEE Trans on Parallel and Distributed Systems, 2000, 11(8):769-780.
[4] Harney H, Muckenhirn C, Rivers T.RFC2093:group key management protocol(GKMP)specification[R].USA:IETF, 1997.
[5] Harney H, Muckenhirn C, Rivers C.RFC2094:group key management protocol(GKMP)architecture [R].USA:IETF, 1997.
[6] Harney H, Harder E.Logical key hierarchy protocol [R].USA:IETF, 1999.
[7] Sherman Alan T, McGrew David A.Key establishment in large dynamic groups using one-way function trees [J].IEEE Transactions on Software Engineering, 2003, 29(5):444-458.
Memo
- Memo:
- Biographies: Zhang Yong(1976—), male, graduate;Wang Weinong(corresponding author), male, doctor, professor, wn-wang@sjtu.edu.cn.