An Efficient Key Tree Management Algorithm for LKH Group Key Management
The efficiency and security of secure group communication are dependent on the group key manager (GKM), which manages the group keys and membership. Although a GKM can employ any kind of group key management algorithm, we adopt the logical key hierarchy (LKH) in this paper for its efficiency and scalability. LKH is a tree-based group key management algorithm and it is more efficient when the key tree is balanced. However, only a few papers or documents have dealt with practical tree balancing techniques so far. In this paper, we propose LKHTreeManager, an LKH key tree management algorithm that is efficient for a large and highly dynamic secure group. The proposed technique efficiently manages the key tree by combining LKH and AVL (Adelson-Velskii and Landis) tree. We show that LKHTreeManager reduces the membership processing time, as well as the number of key messages.
KeywordsSearch Tree Management Algorithm Secure Group Node Insertion Secure Group Communication
Unable to display preview. Download preview PDF.
- 1.Moyer, M., Rao, J., Rohatgi, P.: A survey of security issues in multicast communications. IEEE Network 13 (November/December 1999)Google Scholar
- 2.Wallner, D., Harder, E., Agee, R.: Key management for multicast: Issues and architecture, IETF RFC 2627 (June 1999)Google Scholar
- 3.Moyer, M., Rao, J., Rohatgi, P.: Maintaining balanced key tress for secure multicast, draft-irtf-smug-key-tree-balance-00.txt (June 1999)Google Scholar
- 4.Ghanem, S., Abdel-Wahab, H.: A secure group key management framework: Design and rekey issues. IEEE Computer Communication (2003)Google Scholar
- 5.Wong, C., Gouda, M., Lam, S.: Secure group communications using key graphs. IEEE/ACM Trans. on Networking (February 2000)Google Scholar
- 6.Wong, C., Lam, S.: Keystone: A group key management service. In: Proc. International Conference on Telecommunications (May 2000)Google Scholar
- 7.Rodeh, O., Birman, K., Dolev, D.: Using AVL trees for fault tolerant group key management, Hebrew University, Computer Science TR 2000-45 (November 2000)Google Scholar
- 8.Horowitz, E., Sahni, S., Anderson-Freed, S.: Fundamentals of Data Structures in C. Computer Science Press (1992)Google Scholar
- 9.Krawczyk, H.: SKEME: A versatile secure key exchange mechanism for Internet. In: Proc. of the 1996 Symposium on Network and Distributed System Security (SNDSS 1996) IEEE Symposium on Security and Privacy (1996)Google Scholar