IP Multicast and Its Security

Emilia Rosti, Università degli Studi di Milano, Italy

Introduction

IP Multicast

Addressing

Routing

Group Management

Reliable Multicast

Secure Multicast

Traffic Security

Group Security

Security Requirements

Key Management for Secure Multicast

Flat Schemes

Clustered Schemes

Tree-Based Schemes

Other Schemes

Conclusion

Glossary

Cross References

References

Further Reading

INTRODUCTION

IP multicast is an internetwork service that provides efficient delivery of data from one or more sources to a set of recipients, commonly known as a group (Deering, 1989). Examples of services that could take great advantage of multicast communication are live video/audio distribution (for example, videoconferencing and collaborative groupware), periodic data distribution (for example, software updates, newspaper/magazine distribution, and sport or stock quotes), Web server updates, pay-perview services (for example, video on demand), and distributed videogames.

The goal of multicast is to reduce sender transmission overhead, network bandwidth usage, and the latency observed by receivers. If only one IP multicast datagram, or packet as we interchangeably call it, containing, for example, video information, can be sent to multiple teleconference sites instead of one packet per site, network bandwidth is saved and time synchronization is closer to optimal. For this to be possible, special addresses and routing schemes must be devised. Group management protocols that define ...