This architecture uses reliable multicast and the group key management protocol described in section 4 as the main building block. Under group key management protocol, Trent is the trusted server who is responsible for admitting and expelling members, while updating fresh group keys during the process. With a fresh group key (K.Group), the protocol is quite simple:
Alice Group: {M, (H(M) or {H(M)}K.Alice.priv)}K.Group