This is archived content, mostly untouched since 2003. For newer content/updated versions, see netfuture.ch/Publications.

W and AWaldvogel & Aschwanden
Roman Pletka
Nicola Aschwanden
Lars Waldvogel
Kinderlieder+Spiele
Marcel Waldvogel
Contact
Publications
Security
VersaKey
Research
Tutorials
Classes
Software
Archive
Fun
  

The VersaKey Framework: Versatile Group Key Management

Marcel Waldvogel, Germano Caronni, Dan Sun, Nathalie Weiler, Bernhard Plattner:
The VersaKey Framework: Versatile Group Key Management,
Journal on Selected Areas in Communications: Special Issue on Middleware, Volume 17, Number 9, pp. 1614-1631, 1999.

Abstract

Middleware supporting secure applications in a distributed environment faces several challenges. Scalable security in the context of multicasting or broadcasting is especially hard when privacy and authenticity is to be assured to highly dynamic groups where the application allows participants to join and leave at any time. Unicast security is well-known and has widely advanced into production state. But proposals for multicast security solutions that have been published so far are complex, often require trust in network components or are inefficient. In this paper, we propose a framework of new approaches for achieving scalable security in IP multicasting. Our solutions assure that that newly joining members are not able to understand past group traffic, and that leaving members may not follow future communication. For versatility, our framework supports a range of closely related schemes for key management, ranging from tightly centralized to fully distributed and even allows switching between these schemes on-the-fly with low overhead. Operations have low complexity (O(log N) for joins and leaves), thus granting scalability even for very large groups. We also present a novel concurrency-enabling scheme, which was devised for fully distributed key management. In this paper we discuss the requirements for secure multicasting, present our flexible system, and evaluate its properties, based on the existing prototype implementation.

Documents

BibTeX entry

@Article{waldvogel99versakey,
  Author =       {Marcel Waldvogel and Germano Caronni and Dan Sun and
                  Nathalie Weiler and Bernhard Plattner},
  Title =        {The {VersaKey} Framework: Versatile Group Key
                  Management},
  Journal =      {IEEE Journal on Selected Areas in Communications},
  Year =         1999,
  Volume =       17,
  Number =       9,
  Pages =        {1614--1631},
  Month =        sep
}

@TechReport{waldvogel98versakey-techreport,
  Author =       {Marcel Waldvogel and Germano Caronni and Dan Sun and
                  Nathalie Weiler and Bernhard Plattner},
  Title =        {The {VersaKey} Framework: Versatile Key Management
                  for Large and Dynamic Multicast Groups},
  Institution =  {TIK, ETH {Z\"urich}},
  Type =         {TIK Technical Report},
  Number =       {TIK-57},
  Month =        sep,
  Year =         1998,
  Note =         {{\url
                  ftp:/\slash{}ftp.tik.ee.ethz.ch\slash{}pub\slash{}publications\slash{}TIK-Report57.ps.gz}}
}

The documents distributed by this server have been provided by the contributing authors as a means to ensure timely dissemination of scholarly and technical work on a noncommercial basis. Copyright and all rights therein are maintained by the authors or by other copyright holders, notwithstanding that they have offered their works here electronically. It is understood that all persons copying this information will adhere to the terms and constraints invoked by each author's copyright. These works may not be reposted without the explicit permission of the copyright holder.