论文标题:多播安全中密钥管理问题的研究
Research on Issues of Key Management in Multicast Security
论文作者
论文导师 杨波,论文学位 硕士,论文专业 密码学
论文单位 西安电子科技大学,点击次数 172,论文页数 51页File Size862K
2006-01-01论文网 http://www.lw23.com/lunwen_293069397/
multicast; multicast security ;key management;group key
随着互联网的发展和宽带网络的普及,多播通信由于其高效、快捷的数据传输技术而得到越来越广泛的应用。多播是一种群体间进行通信的方式,介于单播和广播之间。相对于单播和广播来说,多播具有节省带宽、减轻网络负载、减少拥塞等优点,所以成为近年研究的热点和焦点。 安全问题一直是多播技术发展中的一个亟待解决的问题。在所有的多播安全问题中,多播组密钥管理是研究的焦点问题。在多播通信中,所有的成员都共享一个组密钥。在多播通信前,所有的数据都使用这个组密钥来加密。在收到多播消息后,组成员使用这个共享的组密钥来解密,而非多播的成员则不能解密。为了达到较高的安全性,对于刚加入多播组的成员,不能访问加入之前的数据;组成员离开后,不能继续访问以后的数据,这意味着组密钥在组成员变化时必须更新。多播密钥管理的主要问题是在组成员变化时如何安全有效地对密钥进行分配。本论文的主要研究成果如下: 对目前存在的多播组密钥管理方案进行了详细的研究分析,提出了一种改进的树型管理方案,与逻辑密钥分层(LKH)方案和单向函数树(OFT)方案进行分析比较,它在密钥存储、密钥更新、通信量以及组管理者的计算量方面均有较好的性能。 提出了一种基于时间结构树的密钥管理方案,采用周期性的密钥更新机制,通过安全滤波器分配新的组密钥,大大减少了密钥更新时的传输消息,提高了密钥更新的效率,实现密钥更新的可靠性。
With the development of Internet and popularity of broadband network, multicast communication is getting into wide application because of its efficient and timely data transmission. Multicast is a communication technique between unicast and broadcast, which have the advantage of economizing bandwidth, easing network burden and decreasing congestion. Multicast security is an urgent problem now, of which group key management are a core problem. All members in a multicast group share a group key. Messages should be encrypted by the key before they are multicast. On receiving an encrypted message, group members can extract the message using the group key, while others cannot. For the sake of security, a new member can not access the multicast messages sent before it joins the group. Similarly, a group member can not access the multicast messages sent after it leaves the group. Consequently, distributing new group keys to group member will take place often in dynamic groups in which membership changes frequently. Our goal is to has a way to distribute the new group key securely and efficiently. Following are the main results of this thesis: Detailedly analyze some related schemes concerning group key management, We reconstruct a tree key management scheme, in comparison with Logical Key Hierarchy and One-way Function Tree schemes, we find that it has good performance of key storage, re-key communication costs and calculation of group manager. present a scheme of key management based time-structure tree, which adopts periodic rekeying mechanism and distributes new group keys through secure filter. This method decreases the number of messages when rekeying greatly, thus enhances its efficiency and makes it reliable.
|
