GROUP KEY MANAGEMENT FOR MOBILE AD-HOC NETWORKS
First Claim
Patent Images
1. A method for providing group key management, the method comprising:
- provisioning each of a plurality of network nodes with at least one group distribution key;
deploying the plurality of network nodes as a ad-hoc network; and
electing at least one first network node as a first group key manager.
1 Assignment
0 Petitions
Accused Products
Abstract
Group key management in a mobile ad-hoc network (MANET) may be provided. Each network node associated with the MANET may comprise a group distribution key and a list of authorized member nodes from which a group key manager may be elected. The group key manager may periodically issue a new group key to be used in protecting communications among the network nodes. A compromised node may be excluded from receiving updated group keys and thus isolated from the MANET.
-
Citations
20 Claims
-
1. A method for providing group key management, the method comprising:
-
provisioning each of a plurality of network nodes with at least one group distribution key; deploying the plurality of network nodes as a ad-hoc network; and electing at least one first network node as a first group key manager. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A system for providing group key management, the system comprising:
-
a memory storage; and a processing unit coupled to the memory storage, wherein the processing unit is operative to; communicate over an ad-hoc network comprising at least one authorized network node, wherein being operative to communicate over the ad-hoc network comprises being operative to; elect a group key manager, encrypt a first data packet using a group key, send the first data packet to the at least one authorized network node, receive a second data packet encrypted using the group key, and decrypt the second data packet using the group key; and receive a new group key from the group key manager. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
-
-
20. A computer-readable medium which stores a set of instructions which when executed performs a method for providing group key management in an ad-hoc network, the method executed by the set of instructions comprising:
-
receiving a first group key from a group key manager; using the first group key to encrypt and decrypt data communications among a plurality of network nodes, wherein each of the plurality of network nodes comprises at least one of a plurality of authorized member identifiers; receiving a second group key from the group key manager; using the second group key to encrypt and decrypt data communications among the plurality of network nodes; determining whether the group key manager is no longer communicatively connected to the ad-hoc network; in response to determining that the group key manager is no longer communicatively connected to the ad-hoc network, electing a new group key manager; determining whether at least one of the plurality of network nodes comprises a compromised network node; and in response to determining that at least one of the plurality of network nodes comprises a compromised network node, revoking the authorized member identifier associated with the compromised network node.
-
Specification