基于时钟同步的混合型安全组播密钥管理  

Hybrid key management scheme based on time synchronization in secure multicast

在线阅读下载全文

作  者:朱文涛[1] 熊继平[2] 李津生[2] 洪佩琳[2] 戴英侠[1] 

机构地区:[1]中国科学院研究生院信息安全国家重点实验室,北京100039 [2]中国科学技术大学电子工程与信息科学系,安徽合肥230027

出  处:《系统工程与电子技术》2005年第2期370-373,380,共5页Systems Engineering and Electronics

基  金:国家"863"高技术计划信息技术领域"宽带网络中的组播安全协议及应用研究"(2002AA121067);国家自然科学基金"宽带网络中的组播播安全模型及其机制的研究"(60272043);国家973重点基础研究发展规划"信息与网络安全体系结构研究"(G1999035801)资助课题

摘  要:为保护组播通信的机密性,安全组播使用不为组外成员所知的密钥来加密数据,并随组成员关系的变化而动态更新。提出一种将平坦型和分层型密钥管理相结合的、基于IGMPv3的混合型方案,它将群组划分为多个独立的小区,有效地解决了与安全组播相关的扩展性和可靠性问题。提出了一种新的基于时钟同步的密钥管理算法,各小区代理不进行信息交换而只通过定时来执行批次密钥更新,从而有效地降低了系统的通信开销。To provide communication confidentiality in multicasting applications, traffic data in secure multicast is encrypted with a session key known only by certificated group members. Whenever there is a change in the group membership, the session key must be updated dynamically. Key management is thus indicated as the sticking point in secure multicast research, and the proposed schemes can be mainly classified as flat ones and hierarchical ones. By incorporating the flat scheme with the hierarchical scheme, a hybrid scheme based on the Internet Group Management Protocol Version 3 is presented. The multicast group is divided into a couple of separate areas and thus not only the scalability problem but also the reliability problem involved in secure multicast is effectively solved. Based on this hybrid scheme, a novel key management algorithm based on time synchronization among the agents of those separate areas is proposed. Without any message exchanges between agents after the algorithm initialization, the agents periodically update the session key in a batch style, thus the communication cost of the entire system is observably lowered.

关 键 词:安全组播 密钥管理 混合型方案 时钟同步 批次密钥 

分 类 号:TP309[自动化与计算机技术—计算机系统结构]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象