运用PRF和XOR运算的安全组播密钥更新改进方案

doi:10.13190/jbupt.200801.92.064

北京邮电大学学报 ›› 2008, Vol. 31 ›› Issue (1): 92-96.doi: 10.13190/jbupt.200801.92.064

运用PRF和XOR运算的安全组播密钥更新改进方案

李洋1, 辛阳1, 高雪松2, 钮心忻1, 杨义先1

(1. 北京邮电大学网络与交换技术国家重点实验室，北京 100876; 2. 华为技术有限公司，北京 100085)

收稿日期:2007-05-27 修回日期:1900-01-01 出版日期:2008-02-28 发布日期:2008-02-28
通讯作者: 李洋

Optimized Re-Keying Solution for Secure Multicast Using PRF and XOR Operation

LI Yang1, XIN Yang1, GAO Xue-song2, NIU Xin-xin1, YANG Yi-xian1

(1. State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing 100876, China; 2. Huawei Technologies Corporation Ltd., Beijing 100085, China)

Received:2007-05-27 Revised:1900-01-01 Online:2008-02-28 Published:2008-02-28
Contact: LI Yang

摘要/Abstract

摘要：

提出了一种基于pseudo random function (PRF)和exclusive OR (XOR)运算的组播密钥更新改进算法，全部更新密钥通过PRF计算生成，并且密钥间保持一定的相关性；组播的密钥更新报文通过PRF和XOR共同计算生成，替代了常规的加解密运算.除保证安全性之外，显著降低了通信开销、计算开销和存储开销.Linux下原型验证系统的仿真结果表明，该算法在一定程度上提高了安全组播密钥管理的性能.

关键词: 安全组播, 密钥管理, 逻辑密钥层, 伪随机函数, 异或运算

Abstract:

An optimized re-keying algorithm for secure multicast based on pseudo-random function (PRF) and exclusive OR (XOR) operation was presented. According to algorithm design concept, all updated keys with relativity were generated by PRF operation, and re-keying messages in multicast were generated by PRF and XOR operation together instead of conventional encryption and decryption. The communication cost, computation cost and storage cost are obviously decreased without destroy of the insurance of security. The simulation results of prototype under Linux verify that the optimized algorithm improves key management performance to some extent in secure multicast.

Key words: secure multicast, key management, logical key hierarchy, pseudo-random function, exclusive OR

中图分类号:

TP393.08

李洋1, 辛阳1, 高雪松2, 钮心忻1, 杨义先1. 运用PRF和XOR运算的安全组播密钥更新改进方案[J]. 北京邮电大学学报, 2008, 31(1): 92-96.

LI Yang1, XIN Yang1, GAO Xue-song2, NIU Xin-xin1, YANG Yi-xian1. Optimized Re-Keying Solution for Secure Multicast Using PRF and XOR Operation[J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2008, 31(1): 92-96.

参考文献

[1] Wong C K, Gouda M, Lam S S. Secure group communications using key graphs[J]. IEEE/ACM Transactions on Networking, 2000, 8(1): 16-30.
[2] Dierks T, Rescorla E. RFC4346—2006, The transport layer security (TLS) protocol version 1.1[S]. USA: IETF, 2006: 24-51.
[3] Waldvogel M, Caronni G, Sun D. The versaKey framework: versatile group key management[J]. IEEE Journal on Selected Areas in Communications, 1999, 17(9): 1614-1631.
[4] Canetti R, Garay J, Itkis G. Multicast security: a taxonomy and some efficient construction//Proceedings of the INFOCOM. New York: IEEE Press, 1999: 708-716.
[5] Rafaeli S, Mathy L, Hutchison D. Draft-rafaeli-lkh2-00-2002, LKH+2: An improvement on the LKH+ algorithm for removal operations[S]. USA: IETF, 2002: 8-11.
[6] Sherman A T, McGrew D A. Key establishment in large dynamic groups using one-way function trees[J]. IEEE Transactions on Software Engineering, 2003, 29(5): 444-458.
[7] Duma C, Shahmehri N, Lambrix P. A hybrid key tree scheme for multicast to balance security and efficiency requirements//Proceedings of the WETICE'03. Linz: IEEE Press, 2003: 208-213.
[8] Ghanem S M, Abdel-Wahab H. A simple XOR-based technique for distributing group key in secure multicasting//Proceedings of the ISCC 2000. Antibes: IEEE Press, 2000: 166-171.
[9] Lin Jenchiun, Tzeng Chienhua, Lai Feipei. Optimizing centralized secure group communications with binary key tree recomposition//Proceedings of the AINA'04. Fukuoka: IEEE Press, 2004: 202-207.
[10] Zhu Wentao. Optimizing the tree structure in secure multicast key management[J]. Communications Letters, IEEE, 2005, 9(5): 477-479.
[11] Onen M, Molva R. Reliable group rekeying with a customer perspective//Proceedings of the GLOBECOM'04. Dallas: IEEE Press, 2004: 2072-2076.
[12] Bruce Schneier. Applied cryptography[M]. Second Edition. USA: John Wiley & Sons, Inc, 1996: 359-383.

运用PRF和XOR运算的安全组播密钥更新改进方案

Optimized Re-Keying Solution for Secure Multicast Using PRF and XOR Operation

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 9

编辑推荐

Metrics

本文评价

[1]	周景贤刘惠悦周亚建吕宗平. 面向区块链的航空自组网密钥管理方案[J]. 北京邮电大学学报, 2023, 46(1): 63-68.
[2]	徐津, 温巧燕, 王大印. XOR-MAC的结构分析和安全性证明[J]. 北京邮电大学学报, 2014, 37(2): 1-4.
[3]	孙莹，瞿成勤，石颖. 进位返加与异或运算异或差值的概率分布[J]. 北京邮电大学学报, 2011, 34(2): 35-38.
[4]	王锋,谷利泽,郑世慧，杨义先，胡正名. 可验证的多策略秘密共享方案[J]. 北京邮电大学学报, 2010, 33(6): 72-75.
[5]	郭宇飞, 王换招, 曹宁，赵青苹. 簇状传感器网络临时分类密钥管理协议[J]. 北京邮电大学学报, 2008, 31(3): 63-66.
[6]	孙斌. 基于MANET虚拟骨干网的密钥管理体系的研究（增刊）[J]. 北京邮电大学学报, 2007, 29(s1): 109-113.
[7]	张龙, 吴文玲, 温巧燕. mod2n加运算与F2上异或运算的差值的概率分布和递推公式[J]. 北京邮电大学学报, 2007, 30(1): 85-89.
[8]	宋荣功, 胡正名, 杨义先. 建立部分密钥托管系统的新途径[J]. 北京邮电大学学报, 1999, 22(4): 100-104.
[9]	夏光升, 杨义先. 一种新的密钥分享方案——叠像术[J]. 北京邮电大学学报, 1999, 22(1): 57-61.