CAJ | 학술논문

文中将多级安全的信息流策略引入到安全组通信系统中，设计了一种基于信息流策略的组密钥管理机制。该机制应用密钥多树图的管理方法保证了密钥管理效率。并引入虚用户组概念，一定程度上提高了可扩展性。密钥安全更新过程有效解决了组成员关系变动引起的安全隐患。安全性分析表明该密钥管理机制满足安全设计要求，是一种安全高效的组密钥管理机制。
문중장다급안전적신식류책략인입도안전조통신계통중，설계료일충기우신식류책략적조밀약관리궤제。해궤제응용밀약다수도적관리방법보증료밀약관리효솔。병인입허용호조개념，일정정도상제고료가확전성。밀약안전경신과정유효해결료조성원관계변동인기적안전은환。안전성분석표명해밀약관리궤제만족안전설계요구，시일충안전고효적조밀약관리궤제。
A multi-privileged group key management scheme based on information flow policy is proposed which is introduced to security group communication system. In the proposed scheme, the efficiency of key management is guaranteed by using the key management method based on key multi-tree graph. Virtual user group is introduced, which improves the scalability of the scheme at a certain extent. The rekeying process which can solves the potential threat caused by the change of member's privilege efficiently is designed. The security analysis shows that the proposed scheme meets the design requirements. So it is a security and efficient group key management scheme.