Hydra: A decentralised group key management
Resumo
In this paper, we describe Hydra, a scaleable decentralised architecture to create and distribute symmetric cryptographic keys to large multicast-based groups. In order to support large multicast groups, the group is divided into a number of TTL-scoped regions. The purpose of having several regions is to achieve flexible and efficient key management, particularly in face of group membership changes. Hydra servers are designated as subgroup managers. They are responsible for managing group membership and distributing secret keys at the subgroup level. Hydra does not employ a manager for subgroup managers, and hence, it is not vulnerable to failure of single entities.
Referências
L. Dondeti, S, Mukherjee, aud A, Samal. Survey and Comparison of Secure Group Communication Protocols. Department of Computer Science, University of Maryland 1999.
M. Handley and V, Jacobson. SDP: Session Description Protocol. REC 2327, November 1997.
M. Handley, C. Perkins, and E. Whelan. Session Announcement Protocol. REC2974 October 2000.
T. Hardjono, B. Cain, and 1. Monga. Intra-domain Group Key Management Protocol. IETF Internet draft (work in progress), September 2000.
K.P.Birman, Building Secure and Reliable Network Applications, Manning Publications Co., 1996.
D. Meyer. Administratively Seoped IP Multicast, RFC 2365, July 1998.
S. Mittra, Iolus: A Framework for Scalable Secure Multicasting. In ACM SIGCOMM, volume 27,4 of Computer Communication Review, pages 277-288, New York, September 1997. ACM Press.
L. Moser, Y. Amir, P, Melliar-Smith, and D. agarwal. Extended virtual synchrony. In In Proceedings of the 14th IEEE International Conference on Distributed Computing Systems, pages 56-65, 1994.
S. Setia, S. Koussih, aud S. Jajodia. Kronos: A Scalable Group Re-keying Approach for Secure Multicast, In 2000 IEEE Symposium on Security and Privacy, Oakland CA, May 2000.