Title :
A centralized key management scheme for hierarchical access control
Author :
Zhang, Qiong ; Wang, Yuke
Author_Institution :
Dept. of Comput. Sci., Texas Univ., Richardson, TX, USA
fDate :
29 Nov.-3 Dec. 2004
Abstract :
Key management schemes are used to provide access control to data streams for legitimate users. The users often have certain partially ordered relations, while data streams also form some partially ordered relations. Previous key management schemes have failed to take into consideration either the user relations or data stream relations. We propose a centralized key management scheme for hierarchical access control that considers both partially ordered users and partially ordered data streams. Our scheme improves the efficiency of key management by encrypting multiple equivalent data streams with a single data encryption key, instead of encrypting each data stream with a unique data encryption key in the multi-group key management scheme (Sun, Y. and Ray Liu, K.J., IEEE INFOCOM, 2004). We develop a simulation model to evaluate the performance of our proposed scheme. Simulation results show that our scheme reduces at least 20% of storage overhead at every user and rekey overhead compared to the multi-group key management scheme.
Keywords :
Internet; authorisation; computer network management; cryptography; telecommunication security; Internet applications; centralized key management scheme; data encryption key; data stream relations; hierarchical access control; multi-group key management scheme; multiple equivalent data streams; user relations; Access control; Broadcasting; Computer science; Cryptography; Finance; Gold; Permission; Silver; Teleconferencing; Web and internet services;
Conference_Titel :
Global Telecommunications Conference, 2004. GLOBECOM '04. IEEE
Print_ISBN :
0-7803-8794-5
DOI :
10.1109/GLOCOM.2004.1378375
