FIELD: cryptography.
SUBSTANCE: invention relates to provision of cryptographically protected group communications. Method of secure group communication between three and more network subscribers, in which search and reception by one of subscribers of IP-addresses of other subscribers involved in communication, sending, by one of the subscribers, a message to the other subscribers on the beginning of authentication with subsequent execution by all subscribers of the authentication procedure with formation of a packet of keys, including a group session key for encrypting messages and individual ephemeral private keys of subscribers for signing messages, communication between all subscribers is realized by means of messaging using a group key and individual keys and upon reaching a predetermined number of messages, initiating the group key change with negotiation of the new group key using the key material automatic movement procedure, output of one of subscribers from group in process of communication is carried out by sending message to other subscribers on beginning of procedure of session termination, thereafter, each user device is sent to the rest of the user equipment of the group with its own ephemeral private key for signing messages in clear form and deleting from each device a group session key for encrypting messages.
EFFECT: high level of communication security and reduced risks when compromising long-term key material.
7 cl, 8 dwg
