| The development of digital communication, computer and information technolo-gies have made group communications widely applied into various kinds of networkservices to achieve effective one-to-many and many-to-many information exchanges.The general method to secure the group communication is encrypting the commu-nication messages by a group key shared among all the group members. The groupkey should be updated securely and effciently during the group member dynamics.In secure group communications, the key management mechanism determines thesecurity, stability and reliability of the communication, and thus, the study of groupkey management mechanism is of significance. The main contributions of this thesisare as follows:1. A hierarchical key assignment scheme based on Diffe-Hellman algorithm isproposed, which consists of the phases of system initialization and key updating,and supports user dynamics and topology changes. This scheme is ffexible and easyto deploy. It can be used for content access control.2. The key hierarchies in hierarchical access control systems are studied, andthey are divided into user-based, resource-based and unified key hierarchies. Therelationships among these different kinds of hierarchies are studied. The existinghierarchical key assignment models are combined with these hierarchies, and theireffciency is evaluated.3. An hierarchical key pre-distribution scheme which aims to revoke the com-promised sensor nodes in wireless sensor networks is proposed. This scheme is basedon a novel application of an a-ary logical key tree, and it consists of the phases of sys-tem initialization, pairwise key establishment, node revocation and addition. Theperformance analysis shows this scheme could provide suffcient secrecy with lowstorage, communication and computational overheads.4. In wireless networks with poor communication conditions, it cannot beguaranteed that every user could receive all the rekey packages. A logical key treebased and stateless hierarchical key pre-distribution scheme is proposed, which usesthe shared key of a maximum subtree to revoke the promised nodes. At last, theproposed scheme is improved by using Akl-Taylor and Hiffe-Hellman hierarchicalkey assignment algorithms respectively.
|
PDF Full Text Request