Forward Secrecy. In order to provide forward secrecy property, our protocol must provide a security mechanism to protect group keys even if produced private keys are compromised. In case of a long-term private key of any B-GKAP entity (participant, network, organization) is compro- mised, computed group keys will not be affected. Because in B-GKAP, long-term keys are used only for signing the payloads of the B-GKAP functions. Additionally, each entity in B- GKAP generates their temporary public and private keys in generateAndSendPublicKey(·) function for every group key computation process. In case the temporary private key of a participant is compromised, only the corresponding group key is compromised. Given the statements above, B-GKAP ensures forward secrecy feature.
Appears in 2 contracts
Sources: Thesis Submission Agreement, Master's Thesis