WO2008022520A1 - Procédé, système et dispositif de sécurisation des communications entre plusieurs parties - Google Patents
Procédé, système et dispositif de sécurisation des communications entre plusieurs parties Download PDFInfo
- Publication number
- WO2008022520A1 WO2008022520A1 PCT/CN2007/001689 CN2007001689W WO2008022520A1 WO 2008022520 A1 WO2008022520 A1 WO 2008022520A1 CN 2007001689 W CN2007001689 W CN 2007001689W WO 2008022520 A1 WO2008022520 A1 WO 2008022520A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- group
- session
- key management
- protocol
- key
- Prior art date
Links
- 230000006854 communication Effects 0.000 title claims abstract description 57
- 238000004891 communication Methods 0.000 title claims abstract description 54
- 238000000034 method Methods 0.000 title claims abstract description 30
- 230000008569 process Effects 0.000 claims description 7
- 230000005540 biological transmission Effects 0.000 claims description 3
- 238000010586 diagram Methods 0.000 description 8
- 238000005516 engineering process Methods 0.000 description 5
- 238000013475 authorization Methods 0.000 description 2
- 230000008901 benefit Effects 0.000 description 2
- 238000013459 approach Methods 0.000 description 1
- 230000001010 compromised effect Effects 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 230000008878 coupling Effects 0.000 description 1
- 238000010168 coupling process Methods 0.000 description 1
- 238000005859 coupling reaction Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000000977 initiatory effect Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 230000004044 response Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0891—Revocation or update of secret information, e.g. encryption key update or rekeying
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/065—Network architectures or network communication protocols for network security for supporting key management in a packet data network for group communications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0819—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
- H04L9/083—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) involving central third party, e.g. key distribution center [KDC] or trusted third party [TTP]
- H04L9/0833—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) involving central third party, e.g. key distribution center [KDC] or trusted third party [TTP] involving conference or group key
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/16—Implementing security features at a particular protocol layer
- H04L63/166—Implementing security features at a particular protocol layer at the transport layer
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Description
Claims
Priority Applications (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US11/917,080 US20090271612A1 (en) | 2006-08-15 | 2007-05-24 | Method, system and device for realizing multi-party communication security |
CN2007800001854A CN101313511B (zh) | 2006-08-15 | 2007-05-24 | 一种实现多方通信安全的方法、系统及设备 |
EP07721262A EP2056521A4 (en) | 2006-08-15 | 2007-05-24 | METHOD, SYSTEM AND DEVICE FOR ACHIEVING COMMUNICATION SECURITY FOR SEVERAL PARTICIPANTS |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2006100370589A CN101127595B (zh) | 2006-08-15 | 2006-08-15 | 一种实现多方通信安全的方法、系统及设备 |
CN200610037058.9 | 2006-08-15 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2008022520A1 true WO2008022520A1 (fr) | 2008-02-28 |
Family
ID=39095532
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2007/001689 WO2008022520A1 (fr) | 2006-08-15 | 2007-05-24 | Procédé, système et dispositif de sécurisation des communications entre plusieurs parties |
Country Status (4)
Country | Link |
---|---|
US (1) | US20090271612A1 (zh) |
EP (1) | EP2056521A4 (zh) |
CN (2) | CN101127595B (zh) |
WO (1) | WO2008022520A1 (zh) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US10320842B1 (en) | 2017-03-24 | 2019-06-11 | Symantec Corporation | Securely sharing a transport layer security session with one or more trusted devices |
Families Citing this family (22)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101127595B (zh) * | 2006-08-15 | 2011-02-02 | 华为技术有限公司 | 一种实现多方通信安全的方法、系统及设备 |
US8429400B2 (en) * | 2007-06-21 | 2013-04-23 | Cisco Technology, Inc. | VPN processing via service insertion architecture |
CN101370004A (zh) * | 2007-08-16 | 2009-02-18 | 华为技术有限公司 | 一种组播会话安全策略的分发方法及组播装置 |
US8401195B2 (en) * | 2008-09-22 | 2013-03-19 | Motorola Solutions, Inc. | Method of automatically populating a list of managed secure communications group members |
CN101997835B (zh) * | 2009-08-10 | 2014-02-19 | 北京多思科技发展有限公司 | 网络安全通讯方法、数据安全处理装置和用于金融的系统 |
CN101997677B (zh) * | 2009-08-18 | 2015-01-28 | 中兴通讯股份有限公司 | Ip多媒体子系统中会议媒体流密钥的管理方法与装置 |
CN101710859B (zh) * | 2009-11-17 | 2014-02-12 | 深圳国微技术有限公司 | 一种认证密钥协商方法 |
US9294270B2 (en) * | 2010-01-05 | 2016-03-22 | Cisco Technology, Inc. | Detection of stale encryption policy by group members |
US9230373B2 (en) * | 2013-02-07 | 2016-01-05 | Honeywell International Inc. | System and method to aggregate control of multiple devices via multicast messages and automatic set up of connections |
CN103269276B (zh) * | 2013-05-22 | 2016-03-16 | 杭州华三通信技术有限公司 | 一种实现组成员设备通信的方法和设备 |
US9531704B2 (en) * | 2013-06-25 | 2016-12-27 | Google Inc. | Efficient network layer for IPv6 protocol |
JP6850530B2 (ja) * | 2014-10-20 | 2021-03-31 | タタ コンサルタンシー サービシズ リミテッドTATA Consultancy Services Limited | セキュアセッションの確立と暗号化データ交換のためのコンピュータ利用システム及びコンピュータ利用方法 |
TWI556618B (zh) * | 2015-01-16 | 2016-11-01 | Univ Nat Kaohsiung 1St Univ Sc | Network Group Authentication System and Method |
US9596079B1 (en) | 2016-04-14 | 2017-03-14 | Wickr Inc. | Secure telecommunications |
US10341100B2 (en) * | 2017-01-06 | 2019-07-02 | Microsoft Technology Licensing, Llc | Partially encrypted conversations via keys on member change |
GB201710168D0 (en) | 2017-06-26 | 2017-08-09 | Microsoft Technology Licensing Llc | Introducing middleboxes into secure communications between a client and a sever |
US10855440B1 (en) | 2017-11-08 | 2020-12-01 | Wickr Inc. | Generating new encryption keys during a secure communication session |
US11101999B2 (en) | 2017-11-08 | 2021-08-24 | Amazon Technologies, Inc. | Two-way handshake for key establishment for secure communications |
US10541814B2 (en) * | 2017-11-08 | 2020-01-21 | Wickr Inc. | End-to-end encryption during a secure communication session |
US10778432B2 (en) | 2017-11-08 | 2020-09-15 | Wickr Inc. | End-to-end encryption during a secure communication session |
CN112543100B (zh) * | 2020-11-27 | 2023-07-28 | 中国银联股份有限公司 | 一种动态密钥生成方法和系统 |
CN113612612A (zh) * | 2021-09-30 | 2021-11-05 | 阿里云计算有限公司 | 一种数据加密传输方法、系统、设备及存储介质 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6215878B1 (en) * | 1998-10-20 | 2001-04-10 | Cisco Technology, Inc. | Group key distribution |
US20050097317A1 (en) * | 2000-01-12 | 2005-05-05 | Jonathan Trostle | Directory enabled secure multicast group communications |
CN1642073A (zh) * | 2004-01-17 | 2005-07-20 | 神州亿品科技(北京)有限公司 | 无线局域网中组密钥的协商及更新方法 |
US20060029226A1 (en) * | 2004-08-05 | 2006-02-09 | Samsung Electronics Co., Ltd. | Method of updating group key of secure group during new member's registration into the secure group and communication system using the method |
Family Cites Families (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6049878A (en) * | 1998-01-20 | 2000-04-11 | Sun Microsystems, Inc. | Efficient, secure multicasting with global knowledge |
US7412058B2 (en) * | 2003-03-18 | 2008-08-12 | Delphi Technologies, Inc. | Digital receiver and method for receiving secure group data |
US7774411B2 (en) * | 2003-12-12 | 2010-08-10 | Wisys Technology Foundation, Inc. | Secure electronic message transport protocol |
US20050129236A1 (en) * | 2003-12-15 | 2005-06-16 | Nokia, Inc. | Apparatus and method for data source authentication for multicast security |
US7676679B2 (en) * | 2005-02-15 | 2010-03-09 | Cisco Technology, Inc. | Method for self-synchronizing time between communicating networked systems using timestamps |
CN101127595B (zh) * | 2006-08-15 | 2011-02-02 | 华为技术有限公司 | 一种实现多方通信安全的方法、系统及设备 |
-
2006
- 2006-08-15 CN CN2006100370589A patent/CN101127595B/zh not_active Expired - Fee Related
-
2007
- 2007-05-24 WO PCT/CN2007/001689 patent/WO2008022520A1/zh active Application Filing
- 2007-05-24 US US11/917,080 patent/US20090271612A1/en not_active Abandoned
- 2007-05-24 EP EP07721262A patent/EP2056521A4/en not_active Withdrawn
- 2007-05-24 CN CN2007800001854A patent/CN101313511B/zh not_active Expired - Fee Related
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6215878B1 (en) * | 1998-10-20 | 2001-04-10 | Cisco Technology, Inc. | Group key distribution |
US20050097317A1 (en) * | 2000-01-12 | 2005-05-05 | Jonathan Trostle | Directory enabled secure multicast group communications |
CN1642073A (zh) * | 2004-01-17 | 2005-07-20 | 神州亿品科技(北京)有限公司 | 无线局域网中组密钥的协商及更新方法 |
US20060029226A1 (en) * | 2004-08-05 | 2006-02-09 | Samsung Electronics Co., Ltd. | Method of updating group key of secure group during new member's registration into the secure group and communication system using the method |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US10320842B1 (en) | 2017-03-24 | 2019-06-11 | Symantec Corporation | Securely sharing a transport layer security session with one or more trusted devices |
US10749899B1 (en) | 2017-03-24 | 2020-08-18 | Ca, Inc. | Securely sharing a transport layer security session with one or more trusted devices |
Also Published As
Publication number | Publication date |
---|---|
US20090271612A1 (en) | 2009-10-29 |
EP2056521A1 (en) | 2009-05-06 |
CN101127595B (zh) | 2011-02-02 |
CN101127595A (zh) | 2008-02-20 |
CN101313511B (zh) | 2011-02-09 |
CN101313511A (zh) | 2008-11-26 |
EP2056521A4 (en) | 2010-01-13 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2008022520A1 (fr) | Procédé, système et dispositif de sécurisation des communications entre plusieurs parties | |
US8209532B2 (en) | System and method for implementing security of multi-party-communication | |
US8255690B2 (en) | Apparatus and method for group session key and establishment using a certified migration key | |
US7328343B2 (en) | Method and apparatus for hybrid group key management | |
KR101516909B1 (ko) | 공개키에 의존하는 키 관리를 위한 보안 연계의 발견 | |
US8769288B2 (en) | Discovery of security associations | |
US7949873B2 (en) | Secure instant messaging | |
US7957320B2 (en) | Method for changing a group key in a group of network elements in a network system | |
US20070003066A1 (en) | Secure instant messaging | |
US11736304B2 (en) | Secure authentication of remote equipment | |
JP2012019534A (ja) | 安全なコラボレーティブ・トランザクションを管理する方法及び装置 | |
KR20140069282A (ko) | 네트워크 지원 피어 투 피어의 안전한 통신 확립 | |
US8793494B2 (en) | Method and apparatus for recovering sessions | |
Maffina et al. | An improved and efficient message passing interface for secure communication on distributed clusters | |
Ingle et al. | EGSI: TGKA based security architecture for group communication in grid | |
El-Ema et al. | A network authentication protocol based on Kerberos | |
Cui et al. | FSEE: A Forward Secure End-to-End Encrypted Message Transmission System for IoT | |
Freudenthal et al. | Switchboard: secure, monitored connections for client-server communication | |
Mukherjee | Secure group communication | |
CN115102698A (zh) | 量子加密的数字签名方法及系统 | |
CN115333743A (zh) | 一种针对mqtt协议的细粒度安全通信方法 | |
Sriramulu et al. | A Secure Network Communication Based on Kerberos & MD5 | |
Yang et al. | A generic approach for providing revocation support in secret handshake | |
Singh | Fault tolerant and highly available entitlement server | |
Harney et al. | RFC 4535: GSAKMP: Group Secure Association Key Management Protocol |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
WWE | Wipo information: entry into national phase |
Ref document number: 200780000185.4 Country of ref document: CN |
|
WWE | Wipo information: entry into national phase |
Ref document number: 11917080 Country of ref document: US |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 07721262 Country of ref document: EP Kind code of ref document: A1 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2007721262 Country of ref document: EP |
|
NENP | Non-entry into the national phase |
Ref country code: RU |