PRIVATE PAIRWISE KEY MANAGEMENT FOR GROUPS
First Claim
Patent Images
1. An apparatus, comprising:
- a transceiver;
logic in communication with the transceiver;
wherein the logic is configured to receive data corresponding to keying material derived from a symmetric key generation system for a predefined group; and
wherein the logic is responsive to a signal received from a device via the transceiver indicating the device is a member of the predefined group to generate a session key based on the data corresponding to keying material for the predefined group and an identifier for the device.
1 Assignment
0 Petitions
Accused Products
Abstract
In an example embodiment, a key generation system (KGS) is used to generate private pairwise keys between peers belonging to a group. Each member of the group is provisioned with a set of parameters which allows each member to generate a key with any other member of the group; however, no group member can derive a key for pairings involving other group members. The private pairwise keys may be used to derive session keys between peers belonging to the group. Optionally, an epoch value may be employed to derive the private pairwise keys.
92 Citations
21 Claims
-
1. An apparatus, comprising:
-
a transceiver; logic in communication with the transceiver; wherein the logic is configured to receive data corresponding to keying material derived from a symmetric key generation system for a predefined group; and wherein the logic is responsive to a signal received from a device via the transceiver indicating the device is a member of the predefined group to generate a session key based on the data corresponding to keying material for the predefined group and an identifier for the device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A method, comprising:
-
receiving data for a symmetric key generation system group, the data comprising data representative of an identity of the symmetric key generation system group, data representative of a public identifier, and data representative of a secret key; detecting another member of the symmetric key generation system group; exchanging identifiers with the another member; deriving a pairwise master key based on the secret key and the identifier of the another member; and deriving a session key from the pairwise master key. - View Dependent Claims (19, 20, 21)
-
Specification