Information security — Key management — Part 5: Group key management (ISO/IEC 11770-5:2020)
This document specifies mechanisms to establish shared symmetric keys between groups of entities. Itdefines:— symmetric key-based key establishment mechanisms for multiple entities with a key distributioncentre (KDC) and— symmetric key establishment mechanisms based on a general tree-based logical key structure withboth individual rekeying and batch rekeying.It also defines key establishment mechanisms based on a key chain with group forward secrecy, groupbackward secrecy or both group forward and backward secrecy.This document also describes the required content of messages which carry keying material or arenecessary to set up the conditions under which the keying material can be established.This document does not specify information that has no relation with key establishment mechanisms,nor does it specify other messages such as error messages. The explicit format of messages is not withinthe scope of this document.This document does not specify the means to be used to establish the initial secret keys required to beshared between each entity and the KDC, nor key lifecycle management. This document also does notexplicitly address the issue of interdomain key management.
View in
