CN107852406B - 用于控制分组数据的加密多播发送的方法和装置 - Google Patents
用于控制分组数据的加密多播发送的方法和装置 Download PDFInfo
- Publication number
- CN107852406B CN107852406B CN201680039822.8A CN201680039822A CN107852406B CN 107852406 B CN107852406 B CN 107852406B CN 201680039822 A CN201680039822 A CN 201680039822A CN 107852406 B CN107852406 B CN 107852406B
- Authority
- CN
- China
- Prior art keywords
- network nodes
- encrypted
- keying material
- network
- secret
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 230000005540 biological transmission Effects 0.000 title claims abstract description 77
- 238000000034 method Methods 0.000 title claims abstract description 57
- 230000004044 response Effects 0.000 claims description 21
- 238000004891 communication Methods 0.000 claims description 14
- 238000013475 authorization Methods 0.000 description 24
- 230000006870 function Effects 0.000 description 21
- 238000010586 diagram Methods 0.000 description 8
- 230000000694 effects Effects 0.000 description 7
- 230000009471 action Effects 0.000 description 5
- 230000004048 modification Effects 0.000 description 4
- 238000012986 modification Methods 0.000 description 4
- 230000011664 signaling Effects 0.000 description 4
- 238000004590 computer program Methods 0.000 description 3
- 230000008878 coupling Effects 0.000 description 3
- 238000010168 coupling process Methods 0.000 description 3
- 238000005859 coupling reaction Methods 0.000 description 3
- 230000033001 locomotion Effects 0.000 description 2
- 230000008569 process Effects 0.000 description 2
- 230000006399 behavior Effects 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000009434 installation Methods 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 238000002955 isolation Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 230000002085 persistent effect Effects 0.000 description 1
- 238000010200 validation analysis Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/065—Network architectures or network communication protocols for network security for supporting key management in a packet data network for group communications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0819—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
- H04L9/083—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) involving central third party, e.g. key distribution center [KDC] or trusted third party [TTP]
- H04L9/0833—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) involving central third party, e.g. key distribution center [KDC] or trusted third party [TTP] involving conference or group key
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/085—Secret sharing or secret splitting, e.g. threshold schemes
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0891—Revocation or update of secret information, e.g. encryption key update or rekeying
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
- H04W12/041—Key generation or derivation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
- H04W12/043—Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
- H04W12/0431—Key distribution or pre-distribution; Key agreement
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
- H04W12/043—Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
- H04W12/0433—Key management protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/70—Services for machine-to-machine communication [M2M] or machine type communication [MTC]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/60—Scheduling or organising the servicing of application requests, e.g. requests for application data transmissions using the analysis and optimisation of the required network resources
- H04L67/63—Routing a service request depending on the request content or context
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (10)
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP15175535.2A EP3116196A1 (en) | 2015-07-06 | 2015-07-06 | Secure group communication |
EP15175535.2 | 2015-07-06 | ||
PCT/AT2016/060003 WO2017004651A1 (en) | 2015-07-06 | 2016-07-06 | Secure group communication |
Publications (3)
Publication Number | Publication Date |
---|---|
CN107852406A CN107852406A (zh) | 2018-03-27 |
CN107852406A8 CN107852406A8 (zh) | 2018-06-15 |
CN107852406B true CN107852406B (zh) | 2021-06-01 |
Family
ID=53540639
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201680039822.8A Active CN107852406B (zh) | 2015-07-06 | 2016-07-06 | 用于控制分组数据的加密多播发送的方法和装置 |
Country Status (4)
Country | Link |
---|---|
US (1) | US11019045B2 (zh) |
EP (2) | EP3116196A1 (zh) |
CN (1) | CN107852406B (zh) |
WO (1) | WO2017004651A1 (zh) |
Families Citing this family (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US10693878B2 (en) | 2017-04-26 | 2020-06-23 | Cisco Technology, Inc. | Broker-coordinated selective sharing of data |
CN111277543B (zh) * | 2018-12-04 | 2022-08-26 | 华为技术有限公司 | 信息同步方法、认证方法及装置 |
US10645576B1 (en) | 2018-12-20 | 2020-05-05 | Landis+Gyr Innovations, Inc. | Secure peer-to-peer communication over wireless mesh networks |
JP7047186B2 (ja) * | 2018-12-20 | 2022-04-04 | ランディス・ギア イノベーションズ インコーポレイテッド | 無線メッシュネットワークを介する安全なピアツーピア通信 |
US11240038B2 (en) * | 2019-03-15 | 2022-02-01 | Avaya Inc. | Ledger-based confidence model for content transfers across a communication network |
US11722561B2 (en) * | 2020-12-22 | 2023-08-08 | Telefonaktiebolaget Lm Ericsson (Publ) | DTLS/SCTP enhancements for RAN signaling purposes |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101150396A (zh) * | 2006-09-20 | 2008-03-26 | 华为技术有限公司 | 组播广播业务的密钥获取方法、网络及终端设备 |
CN102484583A (zh) * | 2009-08-28 | 2012-05-30 | 阿尔卡特朗讯公司 | 多媒体通信系统中的安全密钥管理 |
CN103098415A (zh) * | 2010-09-14 | 2013-05-08 | 西门子公司 | 用于认证组播消息的方法和设备 |
Family Cites Families (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7010590B1 (en) * | 1999-09-15 | 2006-03-07 | Datawire Communications Networks, Inc. | System and method for secure transactions over a network |
US7266681B1 (en) * | 2000-04-07 | 2007-09-04 | Intertrust Technologies Corp. | Network communications security agent |
US7334125B1 (en) * | 2001-11-27 | 2008-02-19 | Cisco Technology, Inc. | Facilitating secure communications among multicast nodes in a telecommunications network |
US8176317B2 (en) * | 2006-01-19 | 2012-05-08 | Helius, Inc. | System and method for multicasting IPSec protected communications |
US7907735B2 (en) * | 2007-06-15 | 2011-03-15 | Koolspan, Inc. | System and method of creating and sending broadcast and multicast data |
JP5400395B2 (ja) * | 2009-01-07 | 2014-01-29 | 株式会社日立製作所 | データ配信システム、鍵管理装置および鍵管理方法 |
US8966240B2 (en) * | 2011-10-05 | 2015-02-24 | Cisco Technology, Inc. | Enabling packet handling information in the clear for MACSEC protected frames |
US9467429B2 (en) * | 2012-11-09 | 2016-10-11 | Interdigital Patent Holdings, Inc. | Identity management with generic bootstrapping architecture |
US9853826B2 (en) * | 2013-02-25 | 2017-12-26 | Qualcomm Incorporated | Establishing groups of internet of things (IOT) devices and enabling communication among the groups of IOT devices |
US20160036813A1 (en) * | 2013-03-15 | 2016-02-04 | Hewlett-Packard Development Company, L.P. | Emulate vlans using macsec |
WO2016004301A1 (en) * | 2014-07-03 | 2016-01-07 | Convida Wireless, Llc | Application data delivery service for networks supporting multiple transport mechanisms |
-
2015
- 2015-07-06 EP EP15175535.2A patent/EP3116196A1/en not_active Ceased
-
2016
- 2016-07-06 EP EP16750356.4A patent/EP3320669B1/en active Active
- 2016-07-06 WO PCT/AT2016/060003 patent/WO2017004651A1/en active Application Filing
- 2016-07-06 CN CN201680039822.8A patent/CN107852406B/zh active Active
- 2016-07-06 US US15/738,318 patent/US11019045B2/en active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101150396A (zh) * | 2006-09-20 | 2008-03-26 | 华为技术有限公司 | 组播广播业务的密钥获取方法、网络及终端设备 |
CN102484583A (zh) * | 2009-08-28 | 2012-05-30 | 阿尔卡特朗讯公司 | 多媒体通信系统中的安全密钥管理 |
CN103098415A (zh) * | 2010-09-14 | 2013-05-08 | 西门子公司 | 用于认证组播消息的方法和设备 |
Non-Patent Citations (2)
Title |
---|
《Transport-layer Multicast Security for Low-Power and Lossy Networks (LLNs)》;S.Kumar等;《INTERNET SOCIETY (ISOC) 4》;20150309;第4页最后1段 * |
S.Kumar等.《Transport-layer Multicast Security for Low-Power and Lossy Networks (LLNs)》.《INTERNET SOCIETY (ISOC) 4》.2015, * |
Also Published As
Publication number | Publication date |
---|---|
CN107852406A8 (zh) | 2018-06-15 |
US20180167808A1 (en) | 2018-06-14 |
EP3320669A1 (en) | 2018-05-16 |
CN107852406A (zh) | 2018-03-27 |
US11019045B2 (en) | 2021-05-25 |
EP3320669B1 (en) | 2020-03-18 |
WO2017004651A1 (en) | 2017-01-12 |
EP3116196A1 (en) | 2017-01-11 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107852406B (zh) | 用于控制分组数据的加密多播发送的方法和装置 | |
Sridhar et al. | Intelligent security framework for iot devices cryptography based end-to-end security architecture | |
EP1804462B1 (en) | Method and apparatus for transmitting message to wireless devices that are classified into groups | |
EP0702477B1 (en) | System for signatureless transmission and reception of data packets between computer networks | |
JP7551080B2 (ja) | 最適化された公開鍵基盤を備える組み込みシステムのネットワークを保護および管理するための方法ならびにアーキテクチャ | |
US20170126623A1 (en) | Protected Subnet Interconnect | |
WO2019010421A1 (en) | SYSTEMS AND METHODS FOR GENERATING SYMMETRIC CRYPTOGRAPHIC KEYS | |
CN109743170B (zh) | 一种流媒体登录以及数据传输加密的方法和装置 | |
WO2019129201A1 (en) | Session management for communications between a device and a dtls server | |
EP3721579B1 (en) | Secure content routing using one-time pads | |
US11838409B2 (en) | Method and apparatus for transferring data in a publish-subscribe system | |
Hintaw et al. | A Brief Review on MQTT's Security Issues within the Internet of Things (IoT). | |
La Manna et al. | fABElous: An attribute-based scheme for industrial internet of things | |
CN113544999A (zh) | 一次性密码本加密集线器 | |
JP6054224B2 (ja) | 通信装置、通信システム、通信方法およびプログラム | |
JP2020537428A (ja) | データ送信のための装置及び方法 | |
JP2020506627A (ja) | プログラマブル・ハードウェア・セキュリティ・モジュール及びプログラマブル・ハードウェア・セキュリティ・モジュールに用いられる方法 | |
CN103354637A (zh) | 一种物联网终端m2m通信加密方法 | |
CN100365990C (zh) | 通信网络系统中安全性的自动设定 | |
Park et al. | Survey for secure IoT group communication | |
Pacheco et al. | Enhancing and evaluating an architecture for privacy in the integration of Internet of Things and cloud computing | |
CN113206815A (zh) | 用于加解密的方法、可编程交换机和计算机程序产品 | |
US11012446B2 (en) | Multicast splitting | |
WO2023228623A1 (ja) | 暗号化システムおよび暗号化方法 | |
KR101936235B1 (ko) | 퀀텀 보안인증 홈단말기 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CI02 | Correction of invention patent application |
Correction item: Applicant Correct: Arm Co., Ltd. False: Advanced Risc Machines Ltd. Number: 13-01 Number: 13-01 Volume: 34 Volume: 34 Page: The title page Correction item: Applicant Correct: Arm Co., Ltd. False: Advanced Risc Machines Ltd. Number: 13-01 Volume: 34 |
|
GR01 | Patent grant | ||
GR01 | Patent grant |