Self-healing key distribution with revocation

Author

Staddon, Jessica ; Miner, Sara ; Franklin, Matt ; Balfanz, Dirk ; Malkin, Michael ; Dean, Drew

Author_Institution

Xerox Palo Alto Res. Center, CA, USA

fYear

2002

fDate

6/24/1905 12:00:00 AM

Firstpage

241

Lastpage

257

Abstract

We address the problem of establishing a group key amongst a dynamic group of users over an unreliable, or lossy, network. We term our key distribution mechanisms self-healing because users are capable of recovering lost group keys on their own, without requesting additional transmissions from the group manager thus cutting back on network traffic, decreasing the load on the group manager and reducing the risk of user exposure through traffic analysis. A user must be a member both before and after the session in which a particular key is sent in order to be able to recover the key through self-healing. Binding the ability to recover keys to membership status enables the group manager to use short broadcasts to establish group keys, independent of the group size. In addition, the self-healing approach to key distribution is stateless, meaning that a group member who has been off-line for some time is able to recover new session keys immediately after coming back on-line.

Keywords

cryptography; multicast communication; telecommunication security; dynamic user group; group manager; lossy network; lost group key recovery; membership status; network traffic; revocation; self-healing key distribution; short broadcasts; traffic analysis; unreliable network; user exposure risk; Broadcasting; Cryptography; Multicast communication; Privacy; Risk analysis; Risk management; Security; Telecommunication traffic;

fLanguage

English

Publisher

ieee

Conference_Titel

Security and Privacy, 2002. Proceedings. 2002 IEEE Symposium on

ISSN

1081-6011

Print_ISBN

0-7695-1543-6

Type

conf

DOI

10.1109/SECPRI.2002.1004375

Filename

1004375