WO2002001799A3 - Method and apparatus for securely managing membership in group communications - Google Patents

Method and apparatus for securely managing membership in group communications Download PDF

Info

Publication number
WO2002001799A3
WO2002001799A3 PCT/US2001/020181 US0120181W WO0201799A3 WO 2002001799 A3 WO2002001799 A3 WO 2002001799A3 US 0120181 W US0120181 W US 0120181W WO 0201799 A3 WO0201799 A3 WO 0201799A3
Authority
WO
WIPO (PCT)
Prior art keywords
group
content
local agent
key
tgm
Prior art date
Application number
PCT/US2001/020181
Other languages
French (fr)
Other versions
WO2002001799A2 (en
Inventor
Carlos V Rozas
Original Assignee
Convera Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Convera Corp filed Critical Convera Corp
Priority to AU2001276832A priority Critical patent/AU2001276832A1/en
Publication of WO2002001799A2 publication Critical patent/WO2002001799A2/en
Publication of WO2002001799A3 publication Critical patent/WO2002001799A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/065Network architectures or network communication protocols for network security for supporting key management in a packet data network for group communications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/104Grouping of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/126Applying verification of the received information the source of the received data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/102Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying security measure for e-commerce

Abstract

Managing group membership of receivers-in-broadcast and multicast content distribution systems. The invention provides for security in group communications where a single source is broadcasting or multicasting to multiple destination points on a network such as the Internet using a local agent resident on a user system, an authorization token, and a trusted group manager (TGM) representing a content distributor. The local agent may be tamper resistant code providing support for key agreement, decryption, and message authentication functions. The authorization token describes which agents are active and available to decrypt digital content or a per packet basis. The TGM establishes a session key with a group of local agents and generates authorization tokens. The local agent adds and removes itself from a content distribution session (and associated group) based on a series of protocols that do not require a 're-key' for an encrypted content stream being broadcast or multicast by a content distributor. The protocols include operations for registering with a group, joining a group, and leaving a group.
PCT/US2001/020181 2000-06-26 2001-06-26 Method and apparatus for securely managing membership in group communications WO2002001799A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU2001276832A AU2001276832A1 (en) 2000-06-26 2001-06-26 Method and apparatus for securely managing membership in group communications

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US60307900A 2000-06-26 2000-06-26
US09/603,079 2000-06-26

Publications (2)

Publication Number Publication Date
WO2002001799A2 WO2002001799A2 (en) 2002-01-03
WO2002001799A3 true WO2002001799A3 (en) 2002-07-11

Family

ID=24414021

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2001/020181 WO2002001799A2 (en) 2000-06-26 2001-06-26 Method and apparatus for securely managing membership in group communications

Country Status (2)

Country Link
AU (1) AU2001276832A1 (en)
WO (1) WO2002001799A2 (en)

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7434046B1 (en) * 1999-09-10 2008-10-07 Cisco Technology, Inc. Method and apparatus providing secure multicast group communication
US7013389B1 (en) 1999-09-29 2006-03-14 Cisco Technology, Inc. Method and apparatus for creating a secure communication channel among multiple event service nodes
US7089211B1 (en) 2000-01-12 2006-08-08 Cisco Technology, Inc. Directory enabled secure multicast group communications
AU2003266002A1 (en) 2002-05-06 2003-11-17 Benjamin M. Goldberg Localized audio networks and associated digital accessories
DE60321275D1 (en) * 2002-07-23 2008-07-10 Matsushita Electric Ind Co Ltd Terminal, communication method and system for authenticating users in a user group in the network
CN1996835B (en) * 2006-12-31 2010-12-08 华中科技大学 Self-adapted security packet communication system based on the distributed management architecture
US10659959B2 (en) 2014-11-12 2020-05-19 Blackberry Limited Enhanced cell broadcast service via secure group broadcast
KR101940983B1 (en) * 2018-11-15 2019-01-22 주식회사 유니온플레이스 Device in multicast group

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5400403A (en) * 1993-08-16 1995-03-21 Rsa Data Security, Inc. Abuse-resistant object distribution system and method
WO1997026611A1 (en) * 1996-01-16 1997-07-24 Hughes Aircraft Company Deferred billing, broadcast, electronic document distribution system and method

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5400403A (en) * 1993-08-16 1995-03-21 Rsa Data Security, Inc. Abuse-resistant object distribution system and method
WO1997026611A1 (en) * 1996-01-16 1997-07-24 Hughes Aircraft Company Deferred billing, broadcast, electronic document distribution system and method

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
BRISCOE J., FAIRMAN I.: "Nark: Receiver Based Multicast Non-Repudiation and Key Management", ACM CONFERENCE ON ELECTRONIC COMMERCE, 3 November 1999 (1999-11-03) - 5 November 1999 (1999-11-05), Denver, Colorado, pages 1 - 9, XP002198434, Retrieved from the Internet <URL:http://www.labs.bt.com/people/briscorj/projects/ charging/content/nark/nark_ec99.pdf> [retrieved on 20020508] *
CHI-SUNG LAIH: "On the Design of Conference Key Distribution Systems for the Broadcasting Networks", INFOCOMM 1993, vol. 3, 23 March 1993 (1993-03-23) - 1 April 1993 (1993-04-01), San Fransisco, CA, USA, pages 1406 - 1413, XP002198436, Retrieved from the Internet <URL:http://crypto.ee.ncku.edu.tw/pdf/C18.pdf> [retrieved on 20020508] *
DUNIGAN TOM, CAO CATHY: "Group Key Management", ORNL/TM-13470, 30 September 1998 (1998-09-30), XP002198435, Retrieved from the Internet <URL:http://www.csm.oml.gov/unigan/gkmp.ps> [retrieved on 20020508] *

Also Published As

Publication number Publication date
WO2002001799A2 (en) 2002-01-03
AU2001276832A1 (en) 2002-01-08

Similar Documents

Publication Publication Date Title
Mittra Iolus: A framework for scalable secure multicasting
Judge et al. Security issues and solutions in multicast content distribution: A survey
US6584566B1 (en) Distributed group key management for multicast security
US7627755B2 (en) Secure broadcast/multicast service
EP1836795B1 (en) Method for managing digital rights in broadcast/multicast service
US5748736A (en) System and method for secure group communications via multicast or broadcast
TW363154B (en) Token distribution, registration, and dynamic configuration of user entitlement for and application level security system and method
DE60306835D1 (en) Device for secure multicasting
WO2002044858A3 (en) System and method for securing a non-secure communication channel
WO2005060138A3 (en) Systems and methods for preventing spam and denial of service attacks in messaging, packet multimedia, and other networks
US6785809B1 (en) Server group key for distributed group key management
JP2001265729A (en) Multicast system, authentication server terminal, multicast recipient terminal managing method and recording medium
WO2010068779A2 (en) Trust establishment from forward link only to non-forward link only devices
JP2008512924A (en) How to provide conditional access
WO1998049856A3 (en) Method for user identity protection
US6145004A (en) Intranet network system
GB2381100A (en) Message gates in a distributed computing enviroment
KR20090067170A (en) Method and system for the continuous transmission of encrypted data of a broadcast service to a mobile terminal
WO2005077134A3 (en) A method and apparatus for a per-packet encryption system
KR20060105862A (en) Method protecting contents supported broadcast service between service provider and several terminals
CN109981263B (en) Distributed verifiable random number generation method based on CP-ABE
Hardjono et al. Key establishment for IGMP authentication in IP multicast
WO2002001799A3 (en) Method and apparatus for securely managing membership in group communications
JP2003530773A (en) Method and apparatus for secure transmission of data
Oppliger et al. Distributed registration and key distribution (DiRK)

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
AK Designated states

Kind code of ref document: A3

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP