Source specific centralized secure multicast scheme based on IPSec

Group-oriented applications require multicast communication for distributing information among the group members efficiently. The deployment of such kind of applications in strategic and military grade organizations needs the secure group-oriented mechanism. The key concerns involved in secure multicast communication are "forward and backward security", "source/recipient identification and authentication", "key revocation" and "secure rekeying". This paper proposes a source specific centralized secure multicast scheme based on IPSec infrastructure by addressing these security challenges. The key management, in proposed secure multicast scheme, has been carried out using the Group Internet Key Exchange (G-IKE v2) version 2 protocol.

[1]  Yakov Rekhter,et al.  Extranet Multicast in BGP/IP MPLS VPNs , 2016, RFC.

[2]  Jon Postel,et al.  Internet Protocol Handbook: Table of contents , 1980, RFC.

[3]  Kevin C. Almeroth,et al.  IP Multicast Applications: Challenges and Solutions , 2001, RFC.

[4]  Stephen E. Deering,et al.  Internet Protocol, Version 6 (IPv6) Specification , 1995, RFC.

[5]  Randall J. Atkinson,et al.  Security Architecture for the Internet Protocol , 1995, RFC.

[6]  Brian Weis,et al.  Multicast Extensions to the Security Architecture for the Internet Protocol , 2008, RFC.

[7]  Hugo Krawczyk,et al.  A Security Architecture for the Internet Protocol , 1999, IBM Syst. J..

[8]  Perry Metzger,et al.  Encapsulating Security Payload (ESP) , 1995 .

[9]  Christoph Karg,et al.  A daemon for multicast Internet key exchange , 2003, 28th Annual IEEE International Conference on Local Computer Networks, 2003. LCN '03. Proceedings..

[10]  Whitfield Diffie,et al.  New Directions in Cryptography , 1976, IEEE Trans. Inf. Theory.

[11]  Stephen T. Kent,et al.  IP Authentication Header , 1995, RFC.

[12]  Ran Canetti,et al.  Multicast Security (MSEC) Group Key Management Architecture , 2005, RFC.

[13]  Brian Weis,et al.  The Group Domain of Interpretation , 2003, RFC.

[14]  Zhenbin Li,et al.  Role-Based State Advertisement for Multicast in MPLS/BGP IP VPNs , 2014 .

[15]  Yakov Rekhter,et al.  BGP/MPLS IP Virtual Private Networks (VPNs) , 2006, RFC.

[16]  Muhammad Yousaf,et al.  Security Analysis of DTLS Structure and Its Application to Secure Multicast Communication , 2014, 2014 12th International Conference on Frontiers of Information Technology.

[17]  E. Ali,et al.  MESP: A Modified IPSec for Secure Multicast Communication , 2006, 2006 6th International Conference on ITS Telecommunications.