Efficient self-healing group key distribution with revocation capability

Liu, Donggang; Ning, Peng; Sun, Kun

doi:10.1145/948109.948141

Cited by 167 publications

(122 citation statements)

References 44 publications

Supporting

Mentioning

120

Contrasting

Unclassified

Order By: Relevance

“…Typical examples include Naor-Pinkas schemes [26], Kogan et al's schemes [18] and Liu et al's schemes [21]. The Naor-Pinkas scheme for single revocation can revoke i (BN) users per revocation, where N is the maximum number of revoked users.…”

Section: Related Workmentioning

confidence: 99%

“…Kogan et al's scheme with the triangular construction can revoke up to i Á N=T (where T is the total number of revocations) users in the ith revocation, and the overall number of revoked users is N. Kogan et al's scheme with the rectangular construction allows to revoke up to N users in one revocation, and the overall number of revoked users is still upper-bounded at N. These schemes need to re-card all smart cards after up to N users are revoked. Based on selfhealing group key distribution (with revocation capability) developed in [29], Liu et al proposed a scheme to allow users who do not receive a particular session key via the key distribution broadcast to recover the session key on their own in [21]. Although the Liu et al scheme was proposed for self-healing group key distribution, it can be simplified to distribute broadcast keys to a set of privileged users as we show at the beginning of Sect.…”

Section: Related Workmentioning

confidence: 99%

“…If (21) holds, most likely, the attacker has found K 0 ða j Þ successfully. The probability of success in finding K 0 ða j Þ is Wireless Netw (2010) 16:153-165 159 about jR t j=p kþ1 ; where k is the number of randomly chosen k i .…”

Section: Security Of Our Polynomial Refresh Schemementioning

confidence: 99%

“…Although the Liu-Ning-Sun scheme [21] was proposed for self-healing group key distribution, it can be simplified to distribute broadcast keys to a set of privileged users as follows. In order to revoke users R 0…”

Section: Performance Comparisonsmentioning

confidence: 99%

“…A few such schemes already exist, such as Naor-Pinkas schemes [26], Kogan et al's schemes [18], and Liu et al's schemes [21]. Recently, some schemes based on pairing were proposed, such as [9][10][11].…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

Wireless broadcast encryption based on smart cards

Batten

2008

Wireless Netw

View full text Add to dashboard Cite

Wireless broadcasting is an efficient way to broadcast data to a large number of users. Some commercial applications of wireless broadcasting, such as satellite pay-TV, desire that only those users who have paid for the service can retrieve broadcast data. This is often achieved by broadcast encryption, which allows a station securely to broadcast data to a dynamically changing set of privileged users through open air. Most existing broadcast encryption schemes can only revoke a pre-specified number of users before system re-setup or require high computation, communication and storage overheads in receivers. In this paper, we propose a new broadcast encryption scheme based on smart cards. In our scheme, smart cards are used to prevent users from leaking secret keys. Additionally, once an illegally cloned smart card is captured, our scheme also allows tracing of the compromised smart card by which illegal smart cards are cloned, and can then revoke all cloned smart cards. The new features of our scheme include minimal computation needs of only a few modular multiplications in the smart card, and the capability to revoke up to any number of users in one revocation. Furthermore, our scheme is secure against both passive and active attacks and has better performance than other schemes.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Security Of Our Polynomial Refresh Schemementioning

confidence: 99%

Section: Performance Comparisonsmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Wireless broadcast encryption based on smart cards

Batten

2008

Wireless Netw

View full text Add to dashboard Cite

show abstract

Group and hierarchical key management for secure communications in internet of things

Karrothu

Norman

2018

Int J Communication

View full text Add to dashboard Cite

SummaryDifferent devices with different characteristics form a network to communicate among themselves in Internet of Things (IoT). Thus, IoT is of heterogeneous in nature. Also, Internet plays a major role in IoT. So, issues related to security in Internet become issues of IoT also. Hence, the group and hierarchical management scheme for solving security issues in Internet of Things is proposed in this paper. The devices in the network are formed into groups. One of the devices is selected as a leader of each group. The communication of the devices from each group takes place with the help of the leader of the corresponding group using encrypted key to enhance the security in the network. Blom's key predistribution technique is used to establish secure communication among any nodes of group. The hierarchy is maintained such that the security can be increased further, but the delay is increased as it takes time to encrypt at every level of hierarchy. Hence, the numbers of levels of hierarchy need to be optimized such that delay is balanced. Hence, this algorithm is more suitable for delay‐tolerant applications. The performance of the proposed Algorithm is evaluated and is proved to perform better when compared with the legacy systems like Decentralized Batch‐based Group Key Management Protocol for Mobile Internet of Things (DBGK).

show abstract

A novel self‐healing key distribution scheme based on vector space access structure and MDS codes

Vadlamudi

Vadlamudi²

2019

Int J Communication

View full text Add to dashboard Cite

Self-healing group key distribution protocols are useful in applications that have a dynamic group structure. These include broadcast transmission systems and multicast networks such as pay-per-view television, embedded and sensor networks, and cellular and wireless networks. To cater to the requirements of these applications, several self-healing group key distribution protocols are proposed in the literature. Many of these schemes are vulnerable to polynomial factorization or insider replay attacks. Some other schemes impose constraints on the users joining the group or revoked from the group. Motivated by these and other shortcomings of the existing schemes, we hereby propose a novel self-healing group key distribution protocol. Some of the features of this scheme include that (a) the number and the set of revoked users is not constrained, (b) the communication group can consist of any set of users, and (c) a revoked user is allowed to rejoin the group in any of the later sessions. The scheme is analyzed for its security, and it is found to provide anywise forward and backward secrecy. It is also found to resist anywise collusion attack. Communication and computation complexity of the scheme is analyzed; while doing so, various possible realizations of the scheme is discussed. In addition to the theoretical analysis, the proposed scheme is experimentally verified for its correctness using OMNET++ network simulator. KEYWORDSgroup key distribution, MDS codes, self-healing, vector space access structure Int J Commun Syst. 2019;32:e4088.wileyonlinelibrary.com/journal/dac Wireless networks, especially mobile wireless ad hoc networks, are likely to be unreliable and highly dynamic in the sense that the nodes may move in and out of range frequently and sometimes be completely separate from the network. Also, an adversary may intentionally disrupt the wireless communication using various methods. 5 A good group key mechanism should be resilient to this dynamic nature of the network as well as to the said attacks of the adversary. So, a specialized group key distribution protocols, known as self-healing group key distribution protocols, have been proposed in the literature. 7-15 These are useful in several settings such as group keys needed to be used for a short period because of frequent changes in the group structure. 12,14,16 In these protocols, group lifetime is divided into epochs called sessions, 7,8,12,17 where each session has a unique group key. At the beginning of each session, the GM transmits a broadcast message in order to provide a common key, called the session key, to each member of the group. 12,16 Every user belonging to the group computes the group key using the message and some private information.Using self-healing key distribution schemes, users, in a large and dynamic group communication over an unreliable network, can recover lost session keys on their own, even if some previous key distribution messages are lost, without requesting additional transmissions from the GM. 7,8,14,16,18,19 That is,...

show abstract

Efficient self-healing group key distribution with revocation capability

Cited by 167 publications

References 44 publications

Wireless broadcast encryption based on smart cards

Wireless broadcast encryption based on smart cards

Group and hierarchical key management for secure communications in internet of things

A novel self‐healing key distribution scheme based on vector space access structure and MDS codes

Contact Info

Product

Resources

About