Title :
Distributed key management for secure role based messaging
Author :
Zhao, Gansen ; Otenko, Sassa ; Chadwick, David
Author_Institution :
Comput. Lab., Kent Univ., Canterbury, UK
Abstract :
Secure role based messaging (SRBM) augments messaging systems with role oriented communication in a secure manner. Role occupants can sign and decrypt messages on behalf of roles. This paper identifies the requirements of SRBM and recognises the need for: distributed key shares, fast membership revocation, mandatory security controls and detection of identity spoofing. A shared RSA scheme is constructed. RSA keys are shared and distributed to role occupants and role gate keepers. Role occupants and role gate keepers must cooperate together to use the key shares to sign and decrypt the messages. Role occupant signatures can be verified by an audit service. SRBM system architecture is developed to show the security related performance of the proposed scheme, which also demonstrates the implementation of fast membership revocation, mandatory security control and prevention of spoofing. It is shown that the proposed scheme has successfully coupled distributed security with mandatory security controls to realize secure role based messaging.
Keywords :
message authentication; private key cryptography; public key cryptography; telecommunication network management; telecommunication security; SRBM; distributed key management; identity spoofing detection; mandatory security control; membership revocation; message decryption; role oriented communication; secure role based messaging; shared RSA scheme; Communication system control; Communication system security; Control systems; Cryptography; Information security; Laboratories; Marketing and sales; Performance analysis; Postal services; Wrapping;
Conference_Titel :
Advanced Information Networking and Applications, 2006. AINA 2006. 20th International Conference on
Print_ISBN :
0-7695-2466-4
DOI :
10.1109/AINA.2006.146
