HASM: Hierarchical Application-Level Secure Multicast
draft-coan-hasm-00
| Document | Type |
Expired Internet-Draft
(individual)
Expired & archived
|
|
|---|---|---|---|
| Author | Dr. Brian A. Coan | ||
| Last updated | 2001-12-07 | ||
| RFC stream | (None) | ||
| Intended RFC status | (None) | ||
| Formats | |||
| Stream | Stream state | (No stream defined) | |
| Consensus boilerplate | Unknown | ||
| RFC Editor Note | (None) | ||
| IESG | IESG state | Expired | |
| Telechat date | (None) | ||
| Responsible AD | (None) | ||
| Send notices to | (None) |
This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:
Abstract
The HASM system addresses some of the current limitations of end-to-end secure multicast. Specifically, the techniques used in HASM can achieve: (1) multiple autonomous administrative units, each with its own locally-managed authentication and authorization server, (2) efficiency in rekeying portions of a multicast group by using network elements to translate between keys (all without trusting any single network element to securely manage message text in the clear), and (3) defense against denial-of-service attacks by using a secure extension of IGMP. The HASM system makes use of (1) network support, including extensions to the Internet Group Management Protocol (IGMP), extended firewall functionality, and router support for encryption and decryption and (2) host operating system support, specifically extensions to IGMP.
Authors
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)