The requirements of group key management scheme in pervasive environment were analyzed.A new identitybased group key management scheme was proposed by combing the identity-based cryptography and STR protocol.Concerning nodes' free joining and leaving the group, group key renewing protocol was proposed, which could guarantee the forward security and backward security of the group key.The scheme can achieve security requirements and has less computation and communications load.%分析了普适环境中组密钥管理方案的需求,结合基于身份的公钥密码技术和STR组密协商协议,设计了一种新的基于身份的可认证组密钥管理方案.针对普适环境中节点随时加入和退出群组的特点,设计了组密钥更新协议,保证了组密钥的前向和后向安全性.方案在满足安全性要求的前提下,具有较小的计算和通信开销.
展开▼