èŠ‚ç‚¹æ–‡çŒ®

å¤šæƒé™ç»„æ’é€šä¿¡ä¸å¯†é’¥ç®¡ç†åè®®å’ŒåŠ å¯†æ–¹æ¡ˆçš„ç ”ç©¶

Designing Key Management and Encryption Scheme in Multi-Privileged Group Communications

åˆ†é¡µä¸‹è½½
åˆ†ç« ä¸‹è½½
æ•´æœ¬ä¸‹è½½
åœ¨çº¿é˜…è¯»
ä¸æ”¯æŒè¿…é›·ç‰ä¸‹è½½å·¥å…·ï¼Œè¯·å–æ¶ˆåŠ é€Ÿå·¥å…·åŽä¸‹è½½ã€‚

ã€ä½œè€…ã€‘ æœç§‹åŒï¼›

ã€ä½œè€…åŸºæœ¬ä¿¡æ¯ã€‘ ä¸å—å¤§å¦ ï¼Œ è®¡ç®—æœºç§‘å¦ä¸ŽæŠ€æœ¯ï¼Œ 2011ï¼Œ ç¡•å£«

ã€æ‘˜è¦ã€‘ åœ¨ä¿¡æ¯æŠ€æœ¯æœç€é«˜æ€§èƒ½ã€å¤šæ ·åŒ–ã€æ™®é€‚åŒ–å’Œæ™ºèƒ½åŒ–ç‰ä¸»è¦æ–¹å‘æŒç»å‘å±•çš„ä»Šå¤©,å› ç‰¹ç½‘ä¸Šçš„å¤šåª’ä½“ä¸šåŠ¡å˜å¾—å¤šç§å¤šæ ·ã€‚ç»„æ’é€šä¿¡èƒ½å¤Ÿå¾ˆå¥½åœ°è§£å†³å¤šä¸ªç”¨æˆ·çš„æŽ¥æ”¶é—®é¢˜,å…¶å®žè´¨å°±æ˜¯é’ˆå¯¹ä¸ªæ€§åŒ–éœ€æ±‚,é«˜æ•ˆç»„ç»‡è®¡ç®—èµ„æº,æž„é€ å¯ä»¥é€‚åº”ç”¨æˆ·éœ€æ±‚çš„å®‰å…¨ç½‘ç»œåº”ç”¨çŽ¯å¢ƒã€‚éšç€ç»„æ’é€šä¿¡å¼€å§‹ä»Žç†è®ºç ”ç©¶èµ°å‘å®žé™…åº”ç”¨,å…¶å®‰å…¨é—®é¢˜è¶Šæ¥è¶Šçªå‡ºã€‚ç‰¹åˆ«æ˜¯å¤šæƒé™ç»„æ’é€šä¿¡ä¸çš„å®‰å…¨é—®é¢˜,æ¯”ä¼ ç»Ÿ(å•ä¸€æƒé™)ç»„æ’é€šä¿¡ä¸çš„å®‰å…¨é—®é¢˜æ›´éš¾è§£å†³ã€‚æœ¬è®ºæ–‡é¦–å…ˆä»‹ç»äº†ç»„æ’é€šä¿¡æŠ€æœ¯ä¸å·²æœ‰çš„ç¾¤ç»„å¯†é’¥ç®¡ç†åè®®,å¹¶é’ˆå¯¹è¿™äº›åè®®ä¸çš„å¯†é’¥æ ‘éƒ½æ˜¯äºŒå‰æ ‘ã€ä¸åˆ©äºŽç³»ç»Ÿæ‰©å±•çš„å±€é™,æå‡ºäº†åŸºäºŽå•å‘å‡½æ•°å’Œå¤šå‰æ ‘çš„ç¾¤ç»„å¯†é’¥ç®¡ç†åè®®(One-Way Function and Multiway Tree-Based Group Key Management Protocol,ç®€ç§°OMGM)ã€‚è¯¥åè®®å°†å¤šå‰æ ‘ä½œä¸ºå¯†é’¥å›¾çš„æž„é€ åŸºç¡€,æœ‰æ•ˆé™ä½Žäº†å¯†é’¥æ ‘é«˜åº¦,è¿›è€Œå‡å°‘äº†ç¾¤ç»„ç®¡ç†è€…å’Œç”¨æˆ·çš„å¯†é’¥å˜å‚¨ã€å¯†é’¥æ›´æ–°å’Œç½‘ç»œå¼€é”€ã€‚åŒæ—¶,è¯¥åè®®é‡‡ç”¨éšæœºæ•°è¾…åŠ©å¯†é’¥æ›´æ–°,å¯ä»¥å¤§å¤§é™ä½Žå› å¹¿æ’æ›´æ–°å¯†é’¥è€Œå¼•èµ·çš„ç½‘ç»œå¸¦å®½æ¶ˆè€—ã€‚å¦å¤–,æœ¬è®ºæ–‡åœ¨åŸºäºŽå±žæ€§åŠ å¯†çš„åŸºç¡€ä¸Šæå‡ºäº†ä¸€ç§é€‚ç”¨äºŽå¤šæƒé™ç»„æ’é€šä¿¡çš„å®‰å…¨åŠ å¯†æ–¹æ¡ˆ(A Scalable Encryption Scheme for Multi-Privileged Group Communications,ç®€ç§°EMGC)ã€‚è¯¥æ–¹æ¡ˆé‡‡ç”¨å±žæ€§æ ‡è®°æ•°æ®æµ,åŒæ—¶å°†åˆæ³•ç”¨æˆ·ä¿¡æ¯èžå…¥å¯†æ–‡,è¿™æ ·é€šè¿‡å±žæ€§å’ŒIDçš„åŒé‡é™åˆ¶æ¥ä¿è¯ç»„æ’é€šä¿¡çš„å‰å‘å’ŒåŽå‘å®‰å…¨æ€§ã€‚é’ˆå¯¹ä¸åŒçš„åº”ç”¨çŽ¯å¢ƒ,æœ¬è®ºæ–‡ç»™å‡ºäº†ä¸¤ç§åŠ å¯†æ–¹æ³•ï¼šæ–¹æ³•ä¸€é€‚ç”¨äºŽç”¨æˆ·åœ¨ä¸åŒæœåŠ¡ç»„ä¹‹é—´è½¬ç§»é¢‘çŽ‡è¾ƒé«˜çš„æƒ…å†µ,å¹¶ä¸”å…¬é’¥é•¿åº¦è¾ƒå°ï¼›æ–¹æ³•äºŒå¯¹å…¬é’¥å’Œå¯†æ–‡é•¿åº¦è¿›è¡Œäº†æŠ˜ä¸,è€Œä¸”ä¿è¯äº†åœ¨ç»„æ’æ¶ˆæ¯è¿‡ç¨‹ä¸,ç¾¤ç»„ç®¡ç†è€…å’Œç”¨æˆ·å…·æœ‰è¾ƒå°‘çš„è®¡ç®—å¼€é”€ã€‚æ€»ä¹‹,æœ¬è®ºæ–‡è§£å†³äº†å¤šæƒé™ç»„æ’é€šä¿¡ä¸çš„è‹¥å¹²å®‰å…¨é—®é¢˜,åŒ…æ‹¬å¯†é’¥ç®¡ç†åè®®å’ŒåŠ å¯†æ–¹æ¡ˆçš„è®¾è®¡ã€‚ä»Žè€Œä¿è¯äº†ç»„æ’é€šä¿¡ä¸çš„å®‰å…¨æ€§,è§£å†³äº†å¯†é’¥çš„åˆ†å‘å’Œæ›´æ–°é—®é¢˜,å‡å°‘äº†ç¾¤ç»„ç®¡ç†è€…å’Œæˆå‘˜çš„è®¡ç®—ã€å˜å‚¨å¼€é”€,é™ä½Žäº†å ç”¨çš„ç½‘ç»œå¸¦å®½ç‰ã€‚è¿™äº›ç ”ç©¶æˆæžœå°†åº”ç”¨åˆ°å®žé™…ä¸åŽ»,æ”¹å˜å¤šæƒé™ç»„æ’é€šä¿¡â€œç ”ç©¶å¤šã€åº”ç”¨å°‘â€çš„çŽ°çŠ¶ã€‚æ›´å¤š è¿˜åŽŸ

ã€Abstractã€‘ With the rapid development of network technologies, more and more multimedia applications and services are provided over the Internet. Group communications were proposed to adapt the demand for individuation, organizing computing resources efficiently, and constructing secure network applications which could meet usersâ€™needs. As group communications began to be used in practical application other than theory, security issues in them are increasingly prominent. Especially for multi-privileged group communications, they are more difficult to solve than those in traditional group communications.This thesis first introduces some existing group key management schemes. As the key graphs in these schemes are binary trees, which are not good for scalability, we propose a one-way function and multiway tree-based group key management protocol (OMGM). It is based on multiway tree, which could reduce the height of key tree effectively. Thereby the scheme can reduce the key storage overhead of server and users. Whatâ€™s more, it uses a random number to support key updating, which can greatly reduce the overhead of network bandwidth caused by broadcasting new keys during key updating.In addition, this thesis also proposes a scalable encryption scheme for multi-privileged group communications (EMGC) based on Attribute-Based Encryption (ABE). It uses attributes to describe data streams in group communications, and ciphertexts are labeled with an access control structure and the set of legal usersâ€™IDs. The forward and backward secrecy are ensured by the attributes and usersâ€™ID set. Moreover, based on the features of different multi-privileged group communication systems, it proposes two constructions for EMGC scheme. Construction 1 can benefit usersâ€™switching and has a small size of public key, while the other makes a tradeoff between the size of public key and ciphertext, and also reduces the computational overhead of server and users.This thesis studies and solves some security issues in multi-privileged group communications, including the designing of group key management protocol and encryption scheme. They can be used to ensure the security in multi-privileged group communications, achieve key distribution and updating, reduce the computational and storage overhead of servers and users, reduce the overhead of network bandwidth, and so on. These achievements can be well applied to applications, and change the "research more, while applied less" status of multi-privileged group communications.æ›´å¤š è¿˜åŽŸ

ã€å…³é”®è¯ã€‘ å¤šæƒé™ç»„æ’é€šä¿¡ï¼› å¯†é’¥æ›´æ–°ï¼› å¤šå‰æ ‘ï¼› åŸºäºŽå±žæ€§çš„å¹¿æ’åŠ å¯†ï¼› ç”¨æˆ·æ’¤é”€ï¼›
ã€Key wordsã€‘ multi-privileged group communicationsï¼› key updatingï¼› multiway treeï¼› attribute-based broadcast encryptionï¼› user revocationï¼›

ã€ç½‘ç»œå‡ºç‰ˆæŠ•ç¨¿äººã€‘ ä¸å—å¤§å¦

ã€åˆ†ç±»å·ã€‘TP393.08
ã€ä¸‹è½½é¢‘æ¬¡ã€‘35
æ”»è¯»æœŸæˆæžœ

çŸ¥ç½‘èŠ‚ä¸‹è½½

èŠ‚ç‚¹æ–‡çŒ®ä¸ï¼š

æœ¬æ–‡é“¾æŽ¥çš„æ–‡çŒ®ç½‘ç»œå›¾ç¤º:

æœ¬æ–‡çš„å¼•æ–‡ç½‘ç»œ

èŠ‚ç‚¹æ–‡çŒ®

èŠ‚ç‚¹æ–‡çŒ®

å¤šæƒé™ç»„æ’­é€šä¿¡ä¸­å¯†é’¥ç®¡ç†åè®®å’ŒåŠ å¯†æ–¹æ¡ˆçš„ç ”ç©¶

Designing Key Management and Encryption Scheme in Multi-Privileged Group Communications

æœ¬æ–‡é“¾æŽ¥çš„æ–‡çŒ®ç½‘ç»œå›¾ç¤º:

å¤šæƒé™ç»„æ’é€šä¿¡ä¸å¯†é’¥ç®¡ç†åè®®å’ŒåŠ å¯†æ–¹æ¡ˆçš„ç ”ç©¶