Lin Yao,Xiangwei Kong,Guowei Wu,Chi Lin,Qingna Fan

DOI: https://doi.org/10.1504/ijahuc.2011.041613

2011-01-01

International Journal of Ad Hoc and Ubiquitous Computing

Abstract:A Tree-based Multicast group Key Management (TMKM) protocol for ubiquitous computing is proposed to generate, distribute, and update the group key. The whole group is divided into the server layer and the user layer, and the user layer is further divided into subgroups. Every subgroup is initialised as a balanced binary tree. We employ hierarchical group key management method for the whole topology and centralised group key management method for subgroup, so TMKM takes advantage of centralised and distributed key group management. Compared with some other group key management protocols, TMKM shows higher superiority on security, scalability and computation complexity.

Qi Cheng,Zhuo Zhao,Chingfang Hsu,Maoyuan Zhang,Qing Yang,Di Wu

DOI: https://doi.org/10.1155/2021/7703466

IF: 1.43

2021-01-01

Mathematical Problems in Engineering

Abstract:Although nowadays lots of group key agreement schemes have been presented, most of these protocols generate a secret key for a single group. However, in the IoT HCS, more and more communications are involved in multiple groups and users can join multiple groups to communicate at the same time. Therefore, applying the conventional public-key-based one-at-a-time group key establishment protocols has heavy computational cost or suffer from security vulnerabilities. At the same time, in an IoT HCS, a trusted KGC is usually not available and so more flexible self-organized multigroup keys generation will be desired by all group members. In order to address this issue, a practical scheme for efficient and flexible KGC-free polynomial-based multigroup key establishments for IoT HCS is proposed. The proposed protocol can generate multiple group keys for all group members at once, instead of generating one key each time for a single group; more importantly, there is no need for a trusted KGC in the process of group keys establishment and each user can join multiple groups at the same time using only one reserved share. Meanwhile, the security of the proposed protocol is discussed in detail. Finally, we compare this protocol with the latest related group key distribution protocols in performance analysis. The results show that this efficient and flexible KGC-free polynomial-based multiple group keys establishment protocol is more suitable for practical group key agreement in IoT HCS.

Zhijun Zhang,Pla Information

2010-01-01

Abstract:A group key agreement protocol based on m-tree and DMDH assumption is developed to improve the poor scalability and efficiency of most existing group key agreement protocols in dynamic peer communication.This protocol combined m-tree with DMDH assumption,which key agreement is completed by which all group members agreed on variable m to fix on key tree and selected corresponding multilinear map from cluster of multilinear maps.Meanwhile,it much more applied to LAN and WAN by which communication and computation costs are balanced by variable m.Compared with TGDH and GDH,it made a great progress in security,scalability and efficiency.

ZHANG Jiang,ZHANG Meng,CHEN Chunxiao,YANG Shiqiang

DOI: https://doi.org/10.3321/j.issn:1000-0054.2008.01.027

2008-01-01

Abstract:An efficient distributed group key agreement scheme was developed to improve the poor scalability of most existing distributed group key agreement schemes which require each member to maintain the whole key tree structure. In this scheme, each group member maintains only a key tree branch including five element sets, which reduces the storage and communication costs of each member. A distributed tree balancing algorithm is used to keep the whole key tree as balanced as possible for rekeying efficiency, even though each member has only partial information for the whole key tree. Test results demonstrate that the scheme significantly reduces the storage and communication costs for each member for maintaining the key tree, thus, the scheme can be scaled to large groups.

Qiuhua Wang,Huifang Chen,Lei Xie,Kuang Wang

DOI: https://doi.org/10.1002/sec.429

IF: 1.968

2012-01-01

Security and Communication Networks

Abstract:The self-healing group key distribution scheme with revocation can deal with the problem of distributing session keys for secure group communication over an unreliable wireless network, with the capability to resist packet loss and collusion attack. However, existing access-polynomial-based self-healing key management schemes have some problems, such as the small number of active group members, much redundancy in the key updating broadcast packet, and limited collusion attack resistance capability. In order to increase the number of active group members and improve the performance of self-healing group key distribution schemes, we propose a self-healing group key distribution scheme based on the access polynomial and one-way hash key chain for resource-constrained wireless networks in this paper. In our proposed scheme, by binding the time at which the user joins the group with the capability of recovering previous group session keys, some novel methods to construct the personal secret, the access polynomial, and the session key updating broadcast packet are presented. Compared with existing schemes under same conditions, analysis and simulation results show that our proposed scheme not only supports much more group members and sessions, but also provides a stronger security, considering that it can deal with more colluding users. Moreover, our proposed scheme is especially suitable to resource-constrained wireless networks in a very bad environment. Copyright © 2012 John Wiley & Sons, Ltd.

Jiang Zhang,Bin Li,Chunxiao Chen,Pin Tao,Shiqiang Yang

DOI: https://doi.org/10.1109/cesa.2006.4281826

2006-01-01

Abstract:The increasing popularity of distributed and collaborative applications prompts the need for secure communication in collaborative groups. Some distributed collaborative key management protocols have been proposed to provide group communication privacy and data confidentiality for collaborative groups. However, most of them rekey on each member change, and the costs of group rekeying can be quite substantial for large groups with frequent membership changes. In this paper, we propose a efficient distributed key agreement scheme using a distributed one-way function tree named EDKAS which can significantly reduce the computation and communication costs of maintaining the group key especially in a highly dynamical environment based upon period-based group rekeying. Performance of the period-based group rekeying algorithm is analyzed and evaluated under different settings. A comparison with previous work has shown that EDKAS provides high rekeying efficiency while preserving both distributed and collaborative properties.

Vinod Kumar,Rajendra Kumar,S. K. Pandey

DOI: https://doi.org/10.1007/978-3-030-30577-2_13

2019-09-24

Abstract:The problem of controlling unauthorized access to group communication requires secure distribution and maintenance of group key. In this paper, we present, implement and analyze an efficient distributed key management scheme using ternary tree for establishing secure communication in large and dynamically updating groups. The computational overhead of proposed protocol is reduced drastically since it requires only one key to transmit and only one encryption at member join. Similarly, at member leave, it requires only one key to transmit and $$ {\mathcal{O}}(log_{3} n) $$ encryptions. The storage and communication costs are also minimized. The proposed protocol is implemented on ternary tree based architecture and results are compared with other reference protocols. From performance analysis it is cleared that our protocol provides much better results in comparison with related protocols.

Muhammad Yasir Malik

DOI: https://doi.org/10.48550/arXiv.1211.3502

2012-11-15

Abstract:Key management in multicast dynamic groups, where users can leave or join at their ease is one of the most crucial and essential part of secure communication. Various efficient management strategies have been proposed during last decade that aim to decrease encryption costs and transmission overheads. In this report, two different types of key management schemes are proposed. First proposed scheme is based on One-way function tree (OFT). The proposed scheme fulfills the security gaps that have been pointed out in recent years. Second proposed scheme is based on logical key hierarchy (LKH). This proposed scheme provides better performance for, rather inflexible and expensive, LKH scheme.

Cryptography and Security,Networking and Internet Architecture

Jiang Zhang,Li-Feng Sun,Yun Tang,Shi-Qiang Yang

DOI: https://doi.org/10.1093/ietcom/e90-b.4.750

2007-01-01

IEICE Transactions on Communications

Abstract:Key agreement for collaborative groups has become an increasingly popular research area. However, most of previous work requires each member to not only maintain the whole key tree structure whose size is O(N), where N is the size of group, but also involve rekeying operation upon each membership change, resulting in high costs in terms of storage, communication and computation and thus suffers from poor scalability. In this paper, we propose a scalable Distributed and collaborative group key agreement scheme using a Virtual Key Tree (D-VKT). Each group member in D-VKT only reserves and maintains partial information of the whole key tree structure with requirement of O(log N). Furthermore, a distributed tree balancing algorithm is presented to keep the whole key tree as balanced as possible for rekeying efficiency. In addition, a distributed group batch rekeying protocol is proposed to further reduce the computation and communication workload of group rekeying in a highly dynamic environment. The experiment results demonstrate that D-VKT can scale to large and dynamic collaborative groups.

Jiang Zhang,Xan-Guang Luo,Bin Li,Shi-Qiang Yang

DOI: https://doi.org/10.1109/icme.2006.262753

2006-01-01

Abstract:The increasing popularity of distributed and collaborative applications prompts the need for secure communication in collaborative groups. Some distributed collaborative key management protocols have been proposed to provide group communication privacy and data confidentiality for collaborative groups. However, most of them rekey on each member change, and the costs of group rekeying can be quite substantial for large groups with frequent membership changes. In this paper, we propose a scalable distributed key management scheme using a distributed one-way function tree named SIKAS which can significantly reduce the computation and communication costs of maintaining the group key based upon period-based group rekeying. A comparison with previous work has shown that SIKAS provides scalability and rekeying efficiency while preserving both distributed and collaborative properties.

K. Sudheeradh,N. Neha Jahnavi,Pramod N. Chine,Gaurav S. Kasbekar

DOI: https://doi.org/10.1109/access.2024.3350780

IF: 3.9

2024-01-01

IEEE Access

Abstract:The Internet of Things (IoT) extends Internet connectivity to resource-constrained devices such as sensors and actuators. It is prone to several security threats and attacks, due to which defence mechanisms such as encryption, message authentication codes, authentication, etc., need to be employed. Several IoT scenarios require secure communication to and data acquisition from multiple devices, which constitute a “group”. Also, in dynamic IoT scenarios, devices join or leave a group from time to time, due to which the group keys, which are used for multicasting information within the group, need to be efficiently updated. We propose a novel scheme, based on factorial trees and the Chinese Remainder Theorem, for efficient Group Key Management. Our proposed scheme prevents malicious users from accessing information from a group and efficiently updates the group keys when devices join or leave a group, while guaranteeing forward and backward secrecy. We evaluate the performance of the proposed scheme via extensive mathematical analysis and numerical computations, and show that it outperforms schemes proposed in prior work in terms of the communication and computation costs incurred by IoT devices.

computer science, information systems,telecommunications,engineering, electrical & electronic

Yixin Jiang,Minghui Shi,Xuemin Shen,Chuang Lin

DOI: https://doi.org/10.1109/WCNC.2008.463

2008-01-01

Abstract:In this paper, we propose a communication-efficient re-keying scheme by using a polynomial-based efficient code method. Compared with the previous schemes, the re-keying cost is significantly reduced, since no extra re-keying message header is needed. In addition, the computation overhead is also lightweight since only 2logn hash operations are required for each re-keying. Therefore, the proposed scheme is more suitable for deploying in the group application scenarios with both high dynamic memberships and limited communication channel capacity.

MA Changsha,XUE Kaiping,HONG Peilin,DING Rong

DOI: https://doi.org/10.3969/j.issn.0253-2778.2011.07.003

2011-01-01

JUSTC

Abstract:STR group key management protocol can simplify key updating for its unbalanced binary-tree structure and decrease communication cost by increasing computing cost in group key management.A hybrid group key management scheme based on STR unbalanced tree was presented.It significantly decreases computation cost,and increases key updating efficiency,while maintaining the low-communication cost feature of STR protocol at the same time.

Jia Ni,Guowei Fang,Yekang Zhao,Jingjing Ren,Long Chen,Yongjun Ren

DOI: https://doi.org/10.3390/electronics13112216

IF: 2.9

2024-06-07

Electronics

Abstract:Against the backdrop of rapidly advancing cloud storage technology, as well as 5G and 6G communication technologies, group key management faces increasingly daunting challenges. Traditional key management encounters difficulties in key distribution, security threats, management complexity, and issues of trustworthiness. Particularly in scenarios with a large number of members or frequent member turnover within groups, this may lead to security vulnerabilities such as permission confusion, exacerbating the security risks and management complexity faced by the system. To address these issues, this paper utilizes blockchain technology to achieve distributed storage and management of group keys. This solution combines key management with the distributed characteristics of blockchain, enhancing scalability, and enabling tracking of malicious members. Simultaneously, by integrating intelligent authentication mechanisms and lightweight data update mechanisms, it effectively enhances the security, trustworthiness, and scalability of the key management system. This provides important technical support for constructing a more secure and reliable network environment.

engineering, electrical & electronic,physics, applied,computer science, information systems

Teng Long,Huifang Chen,Lei Xie

DOI: https://doi.org/10.1016/j.adhoc.2013.05.015

2012-01-01

Journal of Networks

Abstract:Distributing session keys for secure communication in an unreliable wireless network is a challenging issue due to the traffic congestion and the security problem. The self-healing key distribution is an efficient technique to reduce the traffic and provide good security performance. In this paper, we propose a new self-healing key distribution scheme based on the key-chain tree (KCT) for wireless networks. In the proposed scheme, group manager selects keys to encrypt session keys according to the position of revoked users in the KCT. Simulation results show that compared to existing schemes, the proposed scheme achieves a higher flexibility and a lower communication overhead.

Kaiping Xue,Peilin Hong,Zhengjun Chen,Lianhe Luo,Hancheng Lu

DOI: https://doi.org/10.1109/GCC.2008.30

2008-01-01

Abstract:An effective group key agreement protocol is important for group-oriented applications. Some key tree approaches have been proposed by other researchers. The rekey cost of some of them scales with the logarithm of the group size for a join or leaving request, in which TGDH (tree based group Diffie-Hellman) is considered as one of the most effective and secure protocols. But the rekey cost is still considerable when the group size is very large and with nodes' frequent joining and leaving (churn problem). In this paper, we present a novel group key agreement protocol KAP-AOT improved on TGDH protocol. Our protocol takes nodes' average online time into consideration and is proved to be able to further reduce computation overhead of the rekey process.

Xiaozhuo Gu,Youjian Zhao,Jianzu Yang

DOI: https://doi.org/10.1109/jcn.2012.6292248

2012-01-01

Journal of Communications and Networks

Abstract:With the requirement for providing multiple levels of access control for group members, many group key management schemes designed for hierarchical access control have been put forward. However, most of these schemes focus on the efficiency of group key establishment and rekeying in centralized environments. This paper proposes an integrated group key agreement (IGK) scheme for contributory environments. The IGK scheme employs the integrated key graph to remove key redundancies existing in single key trees, and reduces key establishment and rekeying time while providing hierarchical access control. Performance analyses and simulations conducted with respect to computation and communication overheads indicate that our proposed IGK scheme is more efficient than the independent group key agreement scheme.

Lin Yao,Bing Liu,Feng Xia,Guowei Wu,Qiang Lin

DOI: https://doi.org/10.48550/arXiv.1205.1465

2011-12-30

Cryptography and Security

Abstract:Multicast in Wireless Sensor Networks (WSNs) is an attractive mechanism for delivering data to multiple receivers as it saves bandwidth. To guarantee the security of multicast, the group key is used to encrypt and decrypt the packages. However, providing key management services in WSNs is complicated because sensor nodes possess limited resources of computing, storage and communication. To address the balance between security and limited resources, a multicast group key management protocol based on the weight-balanced 2-3 tree is proposed to generate, distribute, and update the group key securely and efficiently. The decentralized group key management method is employed. A weight-balanced 2-3 key tree is formed in every subgroup. Instead of using the conventional symmetric and non-symmetric encryption algorithms, the Maximum Distance Separable (MDS) code technique is used to distribute the multicast key dynamically. During the key updating, a series of adjustment rules are summarized to keep the tree weight-balanced, where pseudo-nodes as leaves are added to reduce the computation and communication complexity. Compared with some other group key management protocols, our scheme shows higher superiority on security and performance.

Huifang Chen,Hiroshi Mineno,Yoshitsugu Obashi,Tomohiro Kokogawa,Tadanori Mizuno

DOI: https://doi.org/10.1007/978-3-540-72685-2_58

2007-01-01

Abstract:Confidentiality, integrity, and authentication services are critical to preventing an adversary from compromising the security of a Wireless Sensor Network (WSN). An essential component of any key-based security solution is managing the encryption keys to providing this protection. Hence, we propose a novel group key management scheme based on the key-chain tree mechanism for the clustered WSNs in this paper. In this scheme, the functions of key management are decoupled and distributed among multiple network elements of the clustered WSNs for providing compromise/failure resistance. This scheme also supports rekeying to enhance network security and survivability against the node capture. Analysis results show that the scheme does provide a secure encryption of the messages even if the revoked sensor nodes collude with each other or the cluster head is compromised.

Minming Li,Ze Feng,Ronald L. Graham,Frances F. Yao

DOI: https://doi.org/10.1137/06064929x

IF: 0.868

2007-01-01

SIAM Journal on Discrete Mathematics

Abstract:We investigate the key management problem for broadcasting applications. Previous work showed that batch rekeying can be more cost-effective than individual rekeying. Under the assumption that every user has probability $p$ of being replaced by a new user during a batch rekeying period, we study the structure of the optimal key trees. Constant bounds on both the branching degree and the subtree size at any internal node are established for the optimal tree. These limits are then utilized to give an $O(n)$ dynamic programming algorithm for constructing the optimal tree for $n$ users and any fixed value of $p$. In particular, we show that when $p > 1 - 3^{-1/3} \thickapprox 0.307$, the optimal tree is an $n$-star, and when $p\leq 1 - 3^{-1/3}$, each nonroot internal node has a branching degree of at most 4. We also study the case when $p$ tends to $0$ and show that the optimal tree resembles a balanced ternary tree to varying degrees depending on certain number-theoretical properties of $n$.