METHOD FOR SECURE COMMUNICATION IN A NETWORK, A COMMUNICATION DEVICE, A NETWORK AND A COMPUTER PROGRAM THEREFOR
First Claim
1. A method for securing communications between a first node (N1) and a second node (N2) in a network (1) comprising a management device (2) provided with root keying materials, the method comprising:
- the management device generating, based on root keying materials, a first node keying material shares comprising a number of sub-elements and the first node keying material shares being arranged for generating a first complete key,the management device selecting a subset of sub-elements of the first keying material shares, the number of sub-elements selected being less or equal than the total number of sub-elements of the first keying material shares, and the selected sub-elements forming a first node partial keying material shares or symmetric-key generation engine,the first node generating, based on the first node symmetric-key generation engine and on an identifier of the second node, a first key used for securing communications with the second node.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for securing communications between a first node (N1) and a second node (N2) in a network (1) further comprising a management device (2) provided with root keying materials, the method comprising the following steps: the management device generating, based on root keying materials, a first node keying material shares comprising a number of sub-elements and the first node keying material shares being arranged for generating a first complete key, the management device selecting a subset of sub-elements of the first keying material shares, the number of sub-elements selected being less or equal than the total number of sub-elements of the first keying material shares, and the selected sub-elements forming a first node partial keying material shares or symmetric-key generation engine, the first node generating, based on the first node symmetric-key generation engine and on an identifier of the second node, a first key, used for securing communications with the second node.
29 Citations
15 Claims
-
1. A method for securing communications between a first node (N1) and a second node (N2) in a network (1) comprising a management device (2) provided with root keying materials, the method comprising:
-
the management device generating, based on root keying materials, a first node keying material shares comprising a number of sub-elements and the first node keying material shares being arranged for generating a first complete key, the management device selecting a subset of sub-elements of the first keying material shares, the number of sub-elements selected being less or equal than the total number of sub-elements of the first keying material shares, and the selected sub-elements forming a first node partial keying material shares or symmetric-key generation engine, the first node generating, based on the first node symmetric-key generation engine and on an identifier of the second node, a first key used for securing communications with the second node. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 15)
-
-
12. A management device provided with root keying material, in a network further comprising a node, the management device comprising:
-
means for generating, upon receipt of an identifier of the node, node keying material shares based on the root keying material, each keying material share being divided into sub-elements; means for selecting a subset of sub-elements of the first keying material share, the number of sub-elements selected being less or equal than the total number of sub-elements of the keying material share to form a node partial keying material share or symmetric-key generation engine adapted for generating a first key, and means for distributing the node symmetric-key generation engine to the node. - View Dependent Claims (13)
-
-
14. (canceled)
Specification