Zhao, Gansen and Otenko, Sassa and Chadwick, David W. (2006) Distributed Key Management for Secure Role Based Messaging. In: Proceeding of The IEEE 20th International Conference on Advanced Information Networking and Applications (AINA2006), Apr 18-20, 2006, Vienna, Austria, .
Secure Role Based Messaging (SRBM) augments messaging systems with role oriented communication in a secure manner. Role occupants can sign and decrypt messages on behalf of roles. This paper identifies the requirements of SRBM and recognises the need for: distributed key shares, fast membership revocation, mandatory security controls and detection of identity spoofing. A shared RSA scheme is constructed. RSA keys are shared and distributed to role occupants and role gate keepers. Role occupants and role gate keepers must cooperate together to use the key shares to sign and decrypt the messages. Role occupant signatures can be verified by an audit service. A SRBM system architecture is developed to show the security related performance of the proposed scheme, which also demonstrates the implementation of fast membership revocation, mandatory security control and prevention of spoofing. It is shown that the proposed scheme has successfully coupled distributed security with mandatory security controls to realize secure role based messaging.
|Item Type:||Conference or workshop item (Paper)|
|Uncontrolled keywords:||Distributed Key Management, RSA, Secure Role Based Messaging|
|Subjects:||Q Science > QA Mathematics (inc Computing science) > QA 76 Software, computer programming,|
|Divisions:||Faculties > Science Technology and Medical Studies > School of Computing > Security Group|
|Depositing User:||Mark Wheadon|
|Date Deposited:||24 Nov 2008 18:04|
|Last Modified:||06 Sep 2011 01:34|
|Resource URI:||http://kar.kent.ac.uk/id/eprint/14484 (The current URI for this page, for reference purposes)|
- Depositors only (login required):