Abstract

The Dynamic Cryptographic Context Management (DCCM) project efficiently provides security for very large, dynamically changing groups of participants. The DCCM system has two novel distinguishing characteristics. First, policy plays a key role in DCCM. Groups at all levels have policies. These policies are represented; they are negotiated; they are managed; and a cryptographic context-an unambiguous set of mechanisms and configuration-is created to make particular interactions possible subject to these policies. Second, DCCM implements a scalable key management system based on One-way Function Trees (OFT) that can handle group sizes up to 100000 members and can dynamically handle members entering and leaving groups.

Date

January 25, 2000

Authors

Peter T Dinsmore, David M Balenson, Michael Heyman, Peter S Kruus, Caroline D Scace, Alan T Sherman

Source

Proceedings DARPA Information Survivability Conference and Exposition. DISCEX'00

Volume

1

Pages

64-73

Publisher

IEEE