Method and system for providing secure key distribution in a communication system
First Claim
1. A method for providing secure, authenticated distribution in a communication system of a key to be used by a group of selected users, the key being distributed from a server to a sub-group consisting of the users of said group other than said server, each user of said sub-group sharing a secret user key with said server, said method comprising the steps of:
- transmitting (501,511) the user'"'"'s identification (A), a user'"'"'s nonce (Nas) and an identification (B) of a user of said sub-group other than said transmitting user from each user of said sub-group to said server through an available path of said system;
generating (502) a new, common group key (Kab) for all users of said group by said server;
computing (503,512) the value of a first function for each user of said sub-group by said server, said first function depending upon at least said user'"'"'s key (Kas), said user'"'"'s nonce (Nas), said group key (Kab) and the identification (B) of the user of said group other than said user;
computing (504,513) the value of a second function for each user of said sub-group by said server, said second function depending upon at least said user'"'"'s key (Kas), the value of said user'"'"'s first function and said group key (Kab);
transmitting (505,514) the values of said user'"'"'s first and second functions from said server to each user of said sub-group through an available path of said system;
extracting (506,515) said group key, by each user of said sub-group, from the value of said user'"'"'s second function, employing said user'"'"'s key and the value of said user'"'"'s first function; and
re-computing (507,516) the value of said user'"'"'s first function by each user of said sub-group and considering authenticated said extracted group key (Kab) if said re-computed value is equal to the value of said user'"'"'s first function received by said server.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for providing secure authenticated cryptographic key distribution in a communication system having properties very similar to a Two-Party Authentication Protocol. A new group key is distributed by a server to a selected group of users in the system. A braided structure of the messages, sent by the server to each user, allows authentication and, at the same time, secure and secret key distribution. Moreover, the braided structure makes it possible to construct minimal-length protocol messages.
108 Citations
22 Claims
-
1. A method for providing secure, authenticated distribution in a communication system of a key to be used by a group of selected users, the key being distributed from a server to a sub-group consisting of the users of said group other than said server, each user of said sub-group sharing a secret user key with said server, said method comprising the steps of:
-
transmitting (501,511) the user'"'"'s identification (A), a user'"'"'s nonce (Nas) and an identification (B) of a user of said sub-group other than said transmitting user from each user of said sub-group to said server through an available path of said system; generating (502) a new, common group key (Kab) for all users of said group by said server; computing (503,512) the value of a first function for each user of said sub-group by said server, said first function depending upon at least said user'"'"'s key (Kas), said user'"'"'s nonce (Nas), said group key (Kab) and the identification (B) of the user of said group other than said user; computing (504,513) the value of a second function for each user of said sub-group by said server, said second function depending upon at least said user'"'"'s key (Kas), the value of said user'"'"'s first function and said group key (Kab); transmitting (505,514) the values of said user'"'"'s first and second functions from said server to each user of said sub-group through an available path of said system; extracting (506,515) said group key, by each user of said sub-group, from the value of said user'"'"'s second function, employing said user'"'"'s key and the value of said user'"'"'s first function; and re-computing (507,516) the value of said user'"'"'s first function by each user of said sub-group and considering authenticated said extracted group key (Kab) if said re-computed value is equal to the value of said user'"'"'s first function received by said server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
-
-
9. A communication system (100) for providing secure, authenticated distribution of a key to be used by a group of selected users (101,102,103,109), the key being distributed from a server (109) to a sub-group of users (101,102,103) consisting of the users of said group other than said server, each user of said sub-group sharing a corresponding secret user key with said server, said system comprising:
-
means for transmitting (501,511) the user'"'"'s identification, a user'"'"'s nonce and an identification of a user of said sub-group other than said user from each user of said sub-group to said server through an available path of said system; means for generating (502) a new, common group key for all users of said group by said server; means for computing (503,512) the value of a first function for each user of said sub-group by said server, said first function depending upon at least said user'"'"'s key, said user'"'"'s nonce, said group key and the identification of the user of said group other than said user; means for computing (504,513) the value of a second function for each user of said sub-group by said server, said second function depending upon at least said user'"'"'s key, the value of said user'"'"'s first function and said group key; means for transmitting (505,514) the values of said user'"'"'s first and second functions from said server to each user of said sub-group through an available path of said system; means for extracting (506,515) said group key, by each user of said sub-group, from the value of said user'"'"'s second function, employing said user'"'"'s key and the value of said user'"'"'s first function; and means for re-computing (507,516) the value of said user'"'"'s first function by each user of said sub-group and considering authenticated said extracted group key if said re-computed value is equal to the value of said user'"'"'s first function received by said server. - View Dependent Claims (10)
-
Specification