Differentially Secure Multicasting and Its Implementation Methods
Abstract:
Though the areas of secure multicast group architecture, key distribution, and sender authentication are under scrutiny, one topic that has not been explored is how to integrate these with multilevel security. Multilevel security is the ability to distinguish subjects according to classification levels, which determines to what degree they can access confidential objects. In the case of groups, this means that some members can exchange messages at a higher sensitivity level than others. The Bell-La Padula model [1] outlines the rules of these multilevel accesses. In multicast groups that employ multilevel security, some of these rules are not desirable so a modified set of rules is developed in this paper and is termed differential security. Also, this paper proposes three methods to set up a differentially secure multicast group: (1) Naive approach, (2) Multiple tree differential security (DiffSec) approach, and (3) Single DiffSec tree approach. Our simulation studies show that both Single and Multiple Diff-Sec tree approaches offer similar performance in terms of bandwidth consumption, which is significantly better than that of the Naive approach. We also discuss the suitability of the schemes taking into account scalability and implementation issues. 1
Citations
| 268 | Secure group communications using key graphs – Wong, Gouda, et al. - 1998 |
| 109 | Multicast security: A taxonomy and some efficient constructions – Canetti, Garay, et al. - 1999 |
| 49 | Secure Computer Systems – Bell, LaPadula - 1973 |
| 40 | Host Groups: a Multicast Extension for Datagram lntemetworks – Cbe'riton, Deering - 1985 |
| 37 | Core-based trees (CBT) an architecture for scalable inter-domain multicast routing – Ballardie, Francis, et al. - 1993 |
| 26 | Inter-Domain Multicast Routing Protocols: A Survey and Taxonomy – Ramalho, “Intra- - 2000 |
| 23 | A survey of security issues in multicast communications – Moyer, Rao, et al. - 1999 |
| 18 | KHIP - a scalable protocol for secure multicast routing – Shields, Garcia-Luna-Aceves - 1999 |
| 18 | A framework for group key management for multicast security – Hardjono, Cain, et al. - 1999 |
