计算机科学

计算机科学 ›› 2014, Vol. 41 ›› Issue (5): 41-45.doi: 10.11896/j.issn.1002-137X.2014.05.009

• 2013容错计算 • 上一篇    下一篇

基于多叉树的多权限群组密钥管理

徐旸,周薇,杜秋双,王国军   

  1. 中南大学信息科学与工程学院 长沙410083;中南大学信息科学与工程学院 长沙410083;中南大学信息科学与工程学院 长沙410083;中南大学信息科学与工程学院 长沙410083
  • 出版日期:2018-11-14 发布日期:2018-11-14
  • 基金资助:
    本文受国家自然科学基金项目(61272151,61073037),高等学校博士学科点专项科研基金(20110162110043)资助

Multiway Tree-based Group Key Management Scheme for Multi-privileged Group Communications

XU Yang,ZHOU Wei,DU Qiu-shuang and WANG Guo-jun   

  • Online:2018-11-14 Published:2018-11-14

PDF (PC)

548

摘要: 在多权限群组通信中,由于用户可根据不同权限获取不同的数据资源,因此其安全问题比传统(单一权限)群组通信更难处理。为此,提出一种新的集中式多权限群组密钥管理方案,即采用多叉树构建密钥图,并为图中节点分配ID,以便用户快速推算出节点间的关系,从而确定需更新的密钥。当群组内的用户关系发生变化时,其他用户可通过单向函数、旧密钥以及密钥更新素材来实现密钥的更新。理论分析与模拟实验显示,相比现有的方案,新方案在保证前/后向安全性的同时,降低了密钥存储和更新的开销,具有更好的性能表现。

Abstract: In multi-privileged group communications,since users can access multiple data resources according to their different privileges,security issues become more difficult to solve than that in traditional group communications.Therefore,this paper proposed a novel centralized group key management scheme for multi-privileged environments.The proposed scheme employs multiway tree to construct a key graph and assigns a unique ID for every node in the key graph,so that the relationship between keys can be deduced by an ID which will contribute to locating the affected keys efficiently.As a result,the related users can update the affected keys through previous keys or with a rekeying material by using a one-way function when membership changes dynamically.Theoretical analysis and experimental simulation results show that the proposed scheme can reduce the storage and rekeying overhead efficiently,and it outperforms some previous schemes.Meanwhile,the forward and backward security is also guaranteed.

[1] Rafaeli S,Hutchison D.A Survey of Key Management for Se-cure Group Communication[J].ACM Computing Surveys,2003,35(3):309-329
[2] Trappe W,Song J,Poovendran R,et al.Key distribution for secure multimedia multicasts via data embedding[C]∥Proceedings of the Acoustics,Speech,and Signal Processing.Salt Lake City:IEEE Signal Processing Society,2001:1449-1452
[3] Wong C K,Gouda M,Lam S.Secure Group Communications Using Key Graphs[J].IEEE/ACM Transactions on Networking,2000,8(1):16-30
[4] 许建真,董永先,梁克会.一种高效的动态组播密钥管理方案[J].计算机应用研究,2010,27(3):1061-1063
[5] 张志军,郭渊博,刘伟,等.基于m叉树与DH协议的组密钥协商协议[J].计算机工程,2010,36(1):161-163
[6] Sun Y,Liu K J R.Scalable hierarchical access control in secure group communications[J].Proceedings of IEEE INFOCOM’04,2004,2(7-11):1296-1306
[7] 欧阳洁,王国军.基于单向函数的多权限群组密钥管理协议[J].计算机工程,2008,34(8):156-158
[8] Wang G,Ouyang J,Chen H,et al.Efficient group key management for multi-privileged groups[J].Computer Communications,Elsevier,2007,30(11/12):2497-2509
[9] Eskicioglu A M,Dexter S,Delp E J.Protection of MulticastScalable Video by Secret Sharing:Simulation Results[C]∥Proceedings of the SPIE International Conference on Security and Watermarking of Multimedia Contents.Santa Clara,USA:the International Society for Optical Engineering,2003,7:505-515
[10] Lin J C,Lai P F,Lee H C.Efficient group key management protocol with one-way key derivation[C]∥Proceedings of IEEE conference on Local Computer Networks 30th Anniversary.2005:336-343
[11] Muthulakshmi A,Anitha R,Sumathi M.Non-split balancinghigher order tree for multi-privileged groups[J].WSEAS Transactions on Communications,2011,10(10):308-321
[12] Muthulakshmi A,Anitha R.Balanced key tree management for multi-privileged groups using(N,T) policy[J].Security and Communication Networks,2012,5(5):545-555
[13] Cruz J R P,Hernandez S E P,Gomez G R,et al.Multi-session key management scheme for multimedia group communications[J].Journal of Internet Technology,2012,1(1):67-78
No related articles found!
Viewed
Full text


Abstract

Cited
  Shared   
  Discussed   
No Suggested Reading articles found!
渝ICP备16013121号-4
地址:重庆市渝北区洪湖西路18号    邮编:401121  
电话:023-63500828(编辑部) 023-67039612(会议/专题) 023-67039623(财务/发票)
E-mail:jsjkx12@163.com
本系统由北京玛格泰克科技发展有限公司设计开发