(Figure: broadcast encryption)In a high level, BE works as follows: Each user in the universe is given a set of symmetric keys initially. A set of messages are sent to establish a common key among the set of privileged users so that only the privileged users can decrypt the broadcast messages using the common key.
Naive approach 1
Each user is given a unique symmetric key.
When a privileged set needs to be establish, the controller selects a group key K and encrypts number of times equal to the size of the privilege set using the symmetric keys of the privileged set and sends to the users.
Subsequent broadcast messages are encrypted with the key K.
It works but it requires a very long transmission to establish the common key (number of users in the privileged set into the size of the message).
Naive approach 2
Each possible subset of users is assigned a unique symmetric key.
When broadcasting a message, encrypt it with the correct symmetric key corresponding to the privileged set.
It also works, but users need to store prohibitively many keys and revocation is also difficult.
It should be clear that BE is an optimization problem which tries to optimize the following parameters.
1. The number of keys given to each user.
2. The number of transmissions used by the controller to establish the common key.
3. The computation effort involved in retrieving the common key by the users of the privileged set.
References:
1. Broadcast encryption, Amos Fait and Moni Naor, 1998
1 comment:
Nice post, where can i find more info about BE. Is there any algorithmic implementation of BE?
Post a Comment