DISTRIBUTED GROUP KEY MANAGEMENT SCHEME FOR SECURE MANY-TO-MANY COMMUNICATION

摘要

A group key management system (20) and method for providing secure many-to-many communication is presented. The system (20) employs a binary distribution tree structure (26). The binary tree (26) includes a first internal node having a first branch and a second branch depending therefrom. Each of the branches includes a first member (22, 22a) assigned to a corresponding leaf node. The first member (22, 22a) has a unique binary ID (24) that is associated with the corresponding leaf node to which the first member (22, 22a) is assigned. A first secret key (28) of the first member (22, 22a) is operable for encrypting data to be sent to other members (22, 22a). The first member (22, 22a) is associated with a key association group (33) that is comprised of other members (22, 22a). The other members (22, 22a) have blinded keys (30). A blinded key (30) derived from the first secret key (28) of the first member (22, 22a) is transmitted to the key association group (33). Wherein, the first member (22, 22a) uses the blinded keys (30) received from the key association group (33) and the first secret key (28) to calculate an unblinded key of the first internal node. The unblinded key is used for encrypting data that is communicated between members (22, 22a) located on branches depending from the first internal node.