Use the Keys Pre-Distribution KDP-scheme for Mandatory Access Control Implementation
S.V. Belim, S.Yu. Belim

TL;DR
This paper explores adapting the Keys Pre-Distribution KDP-scheme for implementing mandatory access control in distributed hierarchical systems, proposing a modified algorithm and subset family creation method.
Contribution
It introduces a modified KDP-scheme and a new subset family creation method for effective mandatory access control in hierarchical distributed systems.
Findings
Proposed a modified keys pre-distribution algorithm.
Developed a method for creating subsets for access control.
Demonstrated potential application in distributed systems.
Abstract
The possibility of use the keys preliminary distribution KDP-scheme for mandatory access control realization in the distributed systems with user's hierarchy is considered. The modified keys preliminary distribution algorithm is suggested. It is developed a method for creation of subsets family for solution this task.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
**Use the Keys Pre-Distribution KDP-scheme for Mandatory Access Control Implementation **
S.V. Belim, S.Yu. Belim
Dostoevsky Omsk State University, Omsk, Russia
Abstract
The possibility of use the keys preliminary distribution KDP-scheme for mandatory access control realization in the distributed systems with user’s hierarchy is considered. The modified keys preliminary distribution algorithm is suggested. It is developed a method for creation of subsets family for solution this task.
Keywords: keys pre-distribution scheme, KDP-scheme, security model, mandatory access control.
1 Introduction
Mandatory differentiation of access is more rigorous in comparison with a discretionary analog. The centralized security subsystem is necessary for its realization. At system there has to be a uniform center of a decision making comparing mandates of access. This problem is easily solved in local systems. There are some difficulties for the distributed systems. Now this problem is solved on the basis of open keys certificates. Such decision cannot be considered satisfactory. Certificates use sluggish asymmetric cryptographic algorithms. The system based on certificates uses the center of confirmation.
Qualitatively other algorithm can be constructed on the basis of keys preliminary distribution schemes. In this case the role of the central server comes down only to key materials distribution. Network’s subscribers calculate keys of information exchange self-contained. The main problem consists that widely known keys preliminary distribution schemes [1, 2] provide information exchange for each user with everyone. Modification of such schemes is necessary for accounting of security policy of system. Modifications of the Blom’s keys preliminary distribution scheme, considering the forbidden channels it is suggested in work [3]. The organization of simplex channels for the same scheme is realized in article [4]. The solution similar task on the basis of the KDP scheme is proposed in articles [5, 6]. These works are focused on realization of discretionary security policy. Mandatory security policy demands accounting of hierarchy, both subjects, and objects. The decision on the basis of hash functions is suggested in article [7]. However this approach does not allow realizing exchange between users taking into account hierarchy.
The purpose of this article is development of the keys preliminary distribution scheme allowing realizing mandatory security policy in the distributed computing systems.
2 Keys preliminary distribution scheme
Mandatory access control uses a security tags set which form an algebraic lattice. Security tags are both at users, and at informational objects. At request for access there is a comparison of security tags. The decision is made on the basis of some logical condition.
Let’s designate the set of users in the distributed system . For users of system there is an order relation. We will be limited to the order relation described by the graph in the form of a tree. Dominance of the user over the user we will designate . Also the situation when users are incomparable with each other is possible. Let’s use then designation . We will be limited to a case of mandatory access control in which only informational streams from below up are resolved. This case corresponds to mandatory security policy on ensuring confidentiality of information. In this case for two users is resolved only informational stream from to . For two incomparable users informational streams in both parties are forbidden.
Let’s set the task to formation the key scheme allowing communicating according to mandatory access control. For this purpose we will construct the keys preliminary distribution scheme calculating pair keys only for the allowed channels.
For the solution this task we modify the KDP scheme of keys preliminary distribution. For system without access control in the KDP scheme key materials is formed in based of set . Key materials beforehand are sent to all users via secure channels. For development of pair keys the system subsets of set is used. – number of users in system. The set is open. For information exchange with the user the user takes subsets . Further he calculates the elements entering in the product of sets . The pair key is calculated with use the key materials , and subsets :
[TABLE]
The same operations are carried out by the user when obtaining the message from .
The scheme described above allows carrying out exchange of messages for each user with everyone in both directions. We modify the scheme, having entered into it asymmetry of keys . For this purpose also we use the key materials and a set . For calculation the key of encrypting for the channel from to we use the difference of two sets:
[TABLE]
Such approach leads to automatic implementation the requirement of keys asymmetry. For reading messages the user () will use keys (), and for sending messages – keys (). The suggested scheme is based on the symmetric encrypting that accelerates processes of encrypting and decrypting.
We realize the ban on channels of information exchange. For this purpose we will demand that the corresponding pair keys were zero , that is . From here we receive requirements to a set of subsets . The most widespread approach to creation the set of is uses of the Sperner’s families [1]. The Sperner’s family [2] is called the family of subsets such that, if , that either , or . In the unmodified KDP scheme on the basis of elements the Shperner’s family are formed . We use similar approach for the solution the problem. Let’s create the Shperner’s family with the quantity of elements equal to number of users . We will form a set , moving on a tree of users hierarchy leaves to a root. Let’s allocate ”leave’s” users , where – quantity of leave’s tops on the tree. Let’s equate, the elements of a set corresponding to them, to Sperner’s family elements (). Let’s rise from leaves to a tree root. If the top of has the closest descendants , then to this user there corresponds the set:
[TABLE]
This algorithm of formation the set leads to realization of the required condition the mandatory access control: if , then , and , but . Thus, users can create a pair key only for the allowed communication channels. Also the requirement for incomparable users is fulfilled: if , then and .
3 Example of keys preliminary distribution scheme
Let’s consider implementation the suggested scheme on a simple example. In system seven users are authorized. The hierarchy of users is shown in the figure 1.
Let’s define the key materials set with 15 one byte elements:
[TABLE]
We will set the Sperner’s family as follows:
[TABLE]
[TABLE]
For sheet tops the sets S are defined as
[TABLE]
For other users
[TABLE]
Process of formation sets is presented in the figure 2.
For calculation of pair keys we will define set differences
[TABLE]
Pair keys will be defined by equalities:
[TABLE]
The constructed keys preliminary distribution scheme satisfies the hierarchy of subjects shown in the figure 1. Only information channels are resolved ”from below-up”. Incomparable users also cannot communicate.
The suggested scheme can be used also in systems with the hierarchy of users other than a tree. Let’s review an example in the figure 3.
By the same principle elements of the set S are calculated (the Figure 4.)
The keys contradicting mandatory security policy are equal to zero.
Conclusion
The scheme suggested in this article allows realizing keys preliminary distribution of a symmetric enciphering for the distributed systems with user’s hierarchy. As well as in case of the KDP scheme the Sperner’s families are used. However KDP scheme allows forming bidirectional channels of information exchange whereas the suggested scheme is focused on simplex channels. The suggested modification of the keys preliminary distribution scheme does not increase the size of key materials. It is an indispensable condition for using this approach to creation the protected systems.
The reference list from the paper itself. Each links out to its DOI / PubMed record.
- 1[1] Blom R. An optimal class of symmetric key generation systems. Proc. of the EUROCRYPT 84 pp 335-338. (1985)
- 2[2] Mitchell C.J. and Piper C Key storage in Secure Networks Discrete and Applied Math. 21 pp 215-228. (1988)
- 3[3] Belim S.V., Belim S.Yu. and Polyakov S.Yu. The Implementation of Discretionary Access Separation Using a Modified Blom’s Scheme of Key Distribution. Information Security Problems. Computer Systems, 3, pp. 72–76. (2015)
- 4[4] Belim S.V. and Belim S.Yu. The Modification of Blom’s Key Predistribution Scheme, Taking into Account Simplex Channels. Information Security Problems. Computer Systems, 3, pp. 82–86. (2017)
- 5[5] Belim S.V. and Belim S.Yu. KDP Scheme of Preliminary Key Distribution in Discretionary Security Policy. Automatic Control and Computer Sciences, 50, 8, pp.777–786. (2016)
- 6[6] Belim S.V. and Belim S.Yu. The VPN Implementation on Base of the KDP-Scheme. CEUR Workshop Proceedings 1732. URL: http://ceur-ws.org/Vol-1732/paper 3.pdf. (2016)
- 7[7] Belim S.V. and Bogachenko N.F. Distribution of Cryptographic Keys in Systems with a Hierarchy of Objects. Automatic Control and Computer Sciences, 50, 8, pp.773–776. (2016)
- 8[8] Dyer M., Fenner T., Frieze A. and Thomason A. On key storage in secure networks. J. Cryptology, 8, pp. 189–200. (1995)
