Key management Key generation and key distribution A user must share the key for secure communication but if user want to communicate to million of users then he has to exchange the million keys Another solution is KDC Each person shares the secret key with KDC
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
Key management
Key generation and key distributionA user must share the key for secure communication but if user want to communicate to million of users then he has to exchange the million keysAnother solution is KDCEach person shares the secret key with KDC
KDC
• 1. A request to KDC for communication to B• 2. KDC ask to B about the A request if he will
be agree then session key will be established.• • When the number of peoples increases then it
will be difficult for KDC to manage all peoples
Flat Multiple KDC
• Now multiple KDC will manage the people• Whole world is divided into domains and each
domain contains the multiple KDC
Hierarchical Multiple KDC
Simple protocol using a KDC for session KEY
Needam Schroeder Protocol
Diffie-Hellman key agreement
• User can create the session key between themselves without using KDC
Diffie-Hellman
• all users agree on global parameters:– large prime integer or polynomial q– a being a primitive root mod q
• each user (eg. A) generates their key– chooses a secret key (number): xA < q
– compute their public key: yA = axA mod q
• each user makes public that key yA
• shared session key for users A & B is KAB:
KAB = axA.xB mod q
= yA
xB mod q (which B can compute)
= yB
xA mod q (which A can compute)
• KAB is used as session key in private-key encryption scheme between Alice and Bob
• if Alice and Bob subsequently communicate, they will have the same key as before, unless they choose new public-keys
• attacker needs an x, must solve discrete log
Diffie-Hellman Example
• users Alice & Bob who wish to swap keys:• agree on prime q=353 and a=3• select random secret keys:– A chooses xA=97, B chooses xB=233