a survey of key management for secure group communication
play

A survey of Key Management for Secure Group Communication Sandro - PowerPoint PPT Presentation

Feb 19, 2023 •349 likes •543 views

A survey of Key Management for Secure Group Communication Sandro Rafaeli and David Hutchison Presented By: Anil Bazaz CS6204, Spring 2005 Intro: Group Communication Uses IP multicast to transmit data Does not limit access to data No

  1. A survey of Key Management for Secure Group Communication Sandro Rafaeli and David Hutchison Presented By: Anil Bazaz CS6204, Spring 2005

  2. Intro: Group Communication ♦ Uses IP multicast to transmit data ♦ Does not limit access to data ♦ No authentication or access control CS6204, Spring 2005

  3. Intro: Basic Solution ♦ Encryption – Encryption using a group key – Selective Key Distribution ♦ Challenges – Rekeying Group Key with membership changes – Backward Secrecy – Forward Secrecy CS6204, Spring 2005

  4. A simple scheme ♦ A secret key for all members ♦ Group key distributed using secret keys ♦ Problems: – Requires extensive computation – Size of message containing group key CS6204, Spring 2005

  5. Categories of key management schemes ♦ Centralized key management protocols ♦ Decentralized key management protocols ♦ Distributed key management protocols CS6204, Spring 2005

  6. Centralized Key Management ♦ Single Entity Controls the group (KDC) ♦ Single point of failure ♦ Scalability Issues ♦ Measuring Efficiency – Storage Requirements – Size of Messages – Backward & forward Secrecy – Collusion CS6204, Spring 2005

  7. Logical Key Hierarchy CS6204, Spring 2005

  8. Logical Key Hierarchy Join Operation Leave Operation CS6204, Spring 2005

  9. Centralized Flat Table ♦ Table has one entry for TEK ♦ 2w entries for KEKs (w = No. of Bits in member ID) ♦ ID determines KEKs held by members CS6204, Spring 2005

  10. Centralized flat table ♦ Rekeying: – {TEK new } unchanged KEKs – {KEKs new }KEKs old , TEK new ♦ Susceptible to collusion attacks CS6204, Spring 2005

  11. Decentralized Architecture ♦ Large group split into smaller groups ♦ Controllers for subgroups ♦ More fault tolerant ♦ Measuring Efficiency – Key independence – Decentralized controller – Local Rekey – Key vs. Data – Backward & forward secrecy – Type of Communication (1 to n or n to n) CS6204, Spring 2005

  12. Intra-Domain Group Key Management ♦ DKD: Domain Key Distributor ♦ AKD: Area Key Distributor ♦ Single key for everybody ♦ Single point of failure CS6204, Spring 2005

  13. MARKS ♦ Applies to time lengths (TV transmission) ♦ Keys changed as function of time CS6204, Spring 2005

  14. Distributed Key Management ♦ No group controller ♦ Group key generation: contributory or single member ♦ Evaluating efficiency – Number of rounds – Number of messages – Processing during setup – DH key CS6204, Spring 2005

  15. Group Diffie-Hellman Key Exchange ♦ Group agrees on public Values q and α ♦ Upflow: – First member calculates α x1 , passes it along – Subsequent members receive set, raise it, pass it along – Example: • Fourth member receives set: { α x1 , α x1x2 , α x1x2x3 } • Sends set: { α x1 , α x1x2 , α x1x2x3 , α x1x2x3x4 } CS6204, Spring 2005

  16. Group Diffie-Hellman Key Exchange ♦ Member n calculates key using : α x1x2x3…Xn mod q ♦ Downflow: – Each member calculates Key – Each member provides intermediate values to lower index members – Example (n = 5) • Fourth member recieves: { α x5 , α x1x5 , α x1x2x5 , α x1x2x3x5 } • Fourth member sends: { α x5x4 , α x1x5x4 , α x1x2x5x4 } CS6204, Spring 2005

  17. Distributed Logical Key Hierarchy ♦ Key Hierarchy generated among members ♦ Subtrees agree on mutual key ♦ Left subtree: leader m l , key k L ♦ Right subtree: leader m r , key k R ♦ Protocol – m l chooses k LR , sends it to k R – m l encrypts k LR with k L sends it to subtree L – m r encrypts k LR with k r sends it to subtree R CS6204, Spring 2005

  18. Distributed Logical Key Hierarchy CS6204, Spring 2005

  19. Conclusion ♦ Lots of schemes for key management ♦ Centralized: – Simplest and easiest – Single point of failure, scalability ♦ Decentralized: – Relatively harder – Interfering with data paths ♦ Distributed – Not scalable – Not fault tolerant CS6204, Spring 2005

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Secure and Privacy Preserving Vehicular Communication Systems: Identity and Credential Management

Secure and Privacy Preserving Vehicular Communication Systems: Identity and Credential Management

KTH ROYAL INSTITUTE OF TECHNOLOGY Secure and Privacy Preserving Vehicular Communication Systems: Identity and Credential Management Infrastructure Mohammad Khodaei Networked Systems Security Group (NSS) November 1, 2016 July 2, 2018

1.03k views • 38 slides
Secure Communication Secure Communication Lecture 14 Wrap-Up We saw... Symmetric-Key

Secure Communication Secure Communication Lecture 14 Wrap-Up We saw... Symmetric-Key

Secure Communication Secure Communication Lecture 14 Wrap-Up We saw... Symmetric-Key Components SKE, MAC Public-Key Components PKE, Digital Signatures Building blocks: Block-ciphers (AES), Hash-functions (SHA-3), Trapdoor PRG/OWP for PKE

1.07k views • 72 slides
Secure Group Communication Related Issues Presenter: Haiyan Cheng CS 6204, Spring 2005 1

Secure Group Communication Related Issues Presenter: Haiyan Cheng CS 6204, Spring 2005 1

Secure Group Communication Related Issues Presenter: Haiyan Cheng CS 6204, Spring 2005 1 Outlines Addresses relevant security issues for IP multicast network Investigates steps to create secure multicast sessions Group membership

444 views • 19 slides
Lab 2 Group Communication Desired group communication Multicast communication Andreas

Lab 2 Group Communication Desired group communication Multicast communication Andreas

Overview Introduction to group communication Lab 2 Group Communication Desired group communication Multicast communication Andreas Larsson Group membership service 2009-02-04 DSII: Group Comm. 2 A Distributed System in

415 views • 6 slides
Secure Vehicular Communication System: Design & Implementation of VPKI (Providing Credential

Secure Vehicular Communication System: Design & Implementation of VPKI (Providing Credential

Secure Vehicular Communication System: Design & Implementation of VPKI (Providing Credential Management in a Secure VANET) Supervisor: MSc Thesis: Prof. Panos Papadimitratos Mohammad Khodaei LCN KTH October, 2012 1 / 38 Outline

519 views • 48 slides
Group Communication Point-to-point vs. one-to-many Multicast communication Atomic

Group Communication Point-to-point vs. one-to-many Multicast communication Atomic

CPSC-662 Distributed Computing Group Communication Group Communication Point-to-point vs. one-to-many Multicast communication Atomic multicast Virtual synchrony Group management ISIS Reading: Coulouris:

520 views • 22 slides
Simple and Communication Complexity Efficient Almost Secure and Perfectly Secure Message

Simple and Communication Complexity Efficient Almost Secure and Perfectly Secure Message

Simple and Communication Complexity Efficient Almost Secure and Perfectly Secure Message Transmission Schemes Yvo Desmedt 1 , 2 Stelios Erotokritou 1 Reihaneh Safavi-Naini 3 1 Department of Computer Science University College London, UK 2

459 views • 33 slides
Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in

Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in

Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in the Quantum Era (SPS G5448) February 5th, 2020 Christian Colombo Mark Vella Cryptographic Protocols Design Proofs to validate design against

467 views • 20 slides
Secure Communication Hacking/Hustling Workshop @ Eyebeam About me Liz! She/Her Electrical

Secure Communication Hacking/Hustling Workshop @ Eyebeam About me Liz! She/Her Electrical

Secure Communication Hacking/Hustling Workshop @ Eyebeam About me Liz! She/Her Electrical Engineer/Embedded developer Teaching for a while Overview Signal is one example of a third-party app for secure texting. Well go over what it does

819 views • 32 slides
TLS/SSL TLS (Transport Layer Security) A suite of protocols to provide secure communication

TLS/SSL TLS (Transport Layer Security) A suite of protocols to provide secure communication

TLS/SSL TLS (Transport Layer Security) A suite of protocols to provide secure communication Confidentiality by applying block & stream ciphers - Integrity with MACs - Authenticity with certificates - Predecessor: SSL (secure

557 views • 13 slides
Secure Computation with Low Communication from Cross-checking Dov Gordon (George Mason U.)

Secure Computation with Low Communication from Cross-checking Dov Gordon (George Mason U.)

Secure Computation with Low Communication from Cross-checking Dov Gordon (George Mason U.) Samuel Ranellucci (Unbound Tech) Xiao Wang (MIT & Boston U.) Secure Computation 4 parties each hold private data. They wish to compute C(x 1

414 views • 24 slides
Communication Locality in C i i L li i Secure Multi Party Secure Multi-Party Computation

Communication Locality in C i i L li i Secure Multi Party Secure Multi-Party Computation

Communication Locality in C i i L li i Secure Multi Party Secure Multi-Party Computation Computation How to Run Sublinear Algorithms in a Distributed Algorithms in a Distributed Setting Elette Boyle Shafi Goldwasser Stefano Tessaro

1.01k views • 36 slides
Communication Effectiveness Survey Report November 20, 2019 Pearl City School District

Communication Effectiveness Survey Report November 20, 2019 Pearl City School District

Communication Effectiveness Survey Report November 20, 2019 Pearl City School District Introduction In October 2019, PCUSD conducted a Communication Effectiveness Survey of local stakeholders, The survey had several purposes: 1) To measure

502 views • 15 slides
web address, full management functions to control access and communication for both parents and

web address, full management functions to control access and communication for both parents and

Tapestry is a secure website with its own web address, full management functions to control access and communication for both parents and staff. Collecting evidence and observations of learning in school . Parent access. Once we have your

321 views • 8 slides
Coal & Ore SURVEY Its Shipping & Survey ABOUT COMPANY COAL CISS GROUP is a Group

Coal & Ore SURVEY Its Shipping & Survey ABOUT COMPANY COAL CISS GROUP is a Group

Coal & Ore SURVEY Its Shipping & Survey ABOUT COMPANY COAL CISS GROUP is a Group of companies spread around the world with the HQ located in Singapore. SANDS CISS GROUP is a GLOBAL provider of independent inspection, IRON

544 views • 15 slides
SK Telecom 1 U U U U U U U- U - - communication - - - - - communication

SK Telecom 1 U U U U U U U- U - - communication - - - - - communication

U U U U U U U- U - - communication - - - - - communication communication communication communication communication communication communication Korea Mobile Market Trend for Convergence & Ubiquitous Communication 2004.

400 views • 16 slides
Crypto Fundamentals Dr. Mohammed Shafiul Alam Khan Assistant Professor Institute of Information

Crypto Fundamentals Dr. Mohammed Shafiul Alam Khan Assistant Professor Institute of Information

Crypto Fundamentals Dr. Mohammed Shafiul Alam Khan Assistant Professor Institute of Information Technology (IIT), University of Dhaka (DU) shafiul@du.ac.bd December 10, 2017 M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 1 / 31

596 views • 32 slides
Discrete-Log Based Public Key Cryptosystems Jim Royer September 25, 2018 Introduction to

Discrete-Log Based Public Key Cryptosystems Jim Royer September 25, 2018 Introduction to

Note: Log = logarithm, not Discrete-Log Based Public Key Cryptosystems Jim Royer September 25, 2018 Introduction to Cryptography 1 References Symmetric and Asymmetric Cryptosystems Public-Key Cryptosystems Based on the Discrete

436 views • 9 slides
Isogeny-based cryptography, a quantum-safe alternative Annamaria Iezzi University of South

Isogeny-based cryptography, a quantum-safe alternative Annamaria Iezzi University of South

Isogeny-based cryptography, a quantum-safe alternative Annamaria Iezzi University of South Florida FWIMD - February 9, 2019 The key exchange problem ALICE and BELLE, communicating over a public channel, want to agree on a common secret

499 views • 18 slides
15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline

15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline

15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline Introduction: terminology, cryptanalysis, security Private-Key Algorithms: Rijndael, DES Number Theory Groups Public-Key Algorithms: RSA, ElGamal,

525 views • 26 slides
Elliptic Curve Isogeny Based Cryptosystems Frederik Vercauteren Open Security Research (China)

Elliptic Curve Isogeny Based Cryptosystems Frederik Vercauteren Open Security Research (China)

Elliptic Curve Isogeny Based Cryptosystems Frederik Vercauteren Open Security Research (China) KU Leuven ESAT/COSIC (Belgium) frederik.vercauteren@gmail.com 23 August 2016 Frederik Vercauteren Elliptic Curve Isogeny Based Cryptosystems 23

839 views • 52 slides
POST-QUANTUM CRYPTOGRAPHY HOW WILL WE ENCRYPT TOMORROW? Hanno Bck https://hboeck.de 1

POST-QUANTUM CRYPTOGRAPHY HOW WILL WE ENCRYPT TOMORROW? Hanno Bck https://hboeck.de 1

POST-QUANTUM CRYPTOGRAPHY HOW WILL WE ENCRYPT TOMORROW? Hanno Bck https://hboeck.de 1 INTRODUCTION Hanno Bck, freelance journalist and hacker. Writing for Golem.de and others. Fuzzing Project , funded by Linux Foundation's Core

1.09k views • 46 slides
Lecture 8 Public Key Cryptography (Diffie-Hellman and RSA) 1 Public Key Cryptography

Lecture 8 Public Key Cryptography (Diffie-Hellman and RSA) 1 Public Key Cryptography

Lecture 8 Public Key Cryptography (Diffie-Hellman and RSA) 1 Public Key Cryptography Asymmetric cryptography Invented in 1974-1978 (Diffie-Hellman and Rivest-Shamir- Adleman) Two keys: private (SK), public (PK) Encryption: with

445 views • 17 slides
Fast, uniform scalar multiplication for genus 2 Jacobians with fast Kummers Ping Ngai (Brian)

Fast, uniform scalar multiplication for genus 2 Jacobians with fast Kummers Ping Ngai (Brian)

Fast, uniform scalar multiplication for genus 2 Jacobians with fast Kummers Ping Ngai (Brian) Chung Craig Costello Benjamin Smith University of Chicago Microsoft Research INRIA + Laboratoire dInformatique de l Ecole polytechnique

498 views • 20 slides

More recommend